ahmido/TenantAtlas
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects 1 Releases Wiki Activity
website-dev
TenantAtlas/specs/408-review-evidence-decision/data-model.md
ahmido acdea41d92 408: add review pack story surfaces and homepage polish (#405) 
## Summary
- add the localized review-pack product story routes at `/platform/review-packs` and `/en/platform/review-packs` with shared page composition, evidence/decision framing, audience sections, trust handoff, and footer/use-case/home/platform discovery
- extend `site-copy`, smoke coverage, and Spec Kit artifacts for feature 408 so the public website contract, tests, research, plan, quickstart, and checklist stay aligned
- polish the public presentation with a cleaner review-pack comparison surface, a more opaque navbar to remove homepage logo bleed-through, a higher-contrast secondary CTA, unique homepage feature icons, and less repetitive homepage use-case copy

## Validation
- `corepack pnpm --filter @tenantatlas/website build`
- `corepack pnpm --filter @tenantatlas/website test tests/smoke/public-routes.spec.ts`
- `corepack pnpm --filter @tenantatlas/website test tests/smoke/interaction.spec.ts`
- source/dist claim scans plus manual browser comprehension checks are recorded in `specs/408-review-evidence-decision/checklists/requirements.md`
- current touched website files are free of editor diagnostics; live browser console check on the homepage returned no errors

## Notes
- trust/proof messaging remains intentionally honest; this PR does not add fabricated customer logos, certifications, or unsupported compliance claims
- `origin/website-dev` is the review base for this PR

Co-authored-by: Ahmed Darrazi <ahmed.darrazi@live.de>
Reviewed-on: #405
2026-05-29 13:48:21 +00:00

6.0 KiB
Raw Permalink Blame History

Data Model: Customer-safe Review, Evidence & Decision Story

This feature has no persisted data model. The entities below are static website content structures used to render a public product-story route. They must remain content-only unless a later spec introduces runtime review workspace, review-pack export, or Evidence persistence truth.

Review Story Page

Represents: The localized public page explaining Review Packs, Evidence, Findings, Accepted Risks, Decision Summaries, customer-safe review content, and follow-up actions.

Fields:

  • locale: de or en
  • pageTitle: localized metadata title
  • metaDescription: localized metadata description
  • heroTitle: main H1
  • heroSubtitle: core product-story paragraph
  • supportingLine: short context line for governance outcomes
  • primaryCta: primary CTA label and route
  • secondaryCta: supporting CTA label and route
  • problemCards: list of governance pain cards
  • workflowSteps: list of governance workflow steps
  • reviewPackCards: list of review-pack anatomy cards
  • evidenceCards: list of evidence-type cards
  • decisionCards: list of decision-summary cards
  • boundaryColumns: customer-safe versus internal-detail comparison content
  • audienceValueCards: MSP and Enterprise IT value cards
  • comparisonRows: raw export versus Tenantial review story comparison rows
  • trustTeaser: optional trust-summary block with real destination
  • finalCta: final conversion block with real destinations only

Validation rules:

  • pageTitle and metaDescription must not claim compliance certification, automatic remediation, automatic restore, real-time drift, or unsupported providers.
  • Every CTA destination must be a real route or real contact destination.
  • The page must contain the hero, problem, workflow, review-pack anatomy, Evidence, decision-summary, customer-safe boundary, audience value, differentiation, and final CTA sections.
  • The page must not contain href="#".

Governance Workflow Step

Represents: One visible step in the path from policy truth to reviewable decision.

Fields:

  • key: stable content key
  • title: visible step label
  • content: buyer-facing explanation

Required rows:

  • policy-state capture
  • drift recognition
  • Evidence linkage
  • finding evaluation
  • risk decision
  • review-pack preparation

Validation rules:

  • Steps must explain governance flow in buyer language, not internal runtime vocabulary.
  • The workflow must show why status, reason, impact, Evidence basis, and next action matter.

Review Pack Card

Represents: One card in the review-pack anatomy section.

Fields:

  • key: stable content key
  • title: visible card title
  • content: buyer-facing description
  • availabilityTone: hard-available or soft-availability

Required rows:

  • executive-summary
  • evidence-basis
  • findings
  • accepted-risks
  • decision-summary
  • review-pack-status
  • download-export-context

Validation rules:

  • Download/export wording defaults to soft-availability unless implementation verifies a harder product truth.
  • Cards must describe governance deliverables, not raw exports or fake PDFs.

Evidence Card

Represents: One buyer-facing Evidence type on the page.

Fields:

  • key: stable content key
  • title: visible label
  • content: description of what the Evidence type helps explain

Required rows:

  • policy-evidence
  • change-evidence
  • finding-evidence
  • recovery-evidence
  • review-evidence

Validation rules:

  • Evidence must stay framed as reviewable proof context.
  • Cards must not imply court-proof or complete evidence coverage.

Decision Facet Card

Represents: One visible dimension inside the Decision Summary section.

Fields:

  • key: stable content key
  • title: visible label
  • content: buyer-facing explanation

Required rows:

  • status
  • reason
  • impact
  • evidence
  • next-action
  • review-context

Validation rules:

  • The set must explain what was found, why it matters, what supports it, what remains open, and who acts next.
  • Cards must not claim automatic decision-making or automatic risk acceptance.

Disclosure Column

Represents: One side of the customer-safe boundary comparison.

Fields:

  • title: visible column heading
  • items: list of included or excluded content bullets
  • mode: customer-safe or internal-only

Validation rules:

  • customer-safe content must emphasize executive summary, review status, findings summary, Evidence basis, Accepted Risks, Decision Summary, and next actions.
  • internal-only content must exclude raw provider payloads, internal job IDs, debug traces, stack traces, internal fingerprints, low-level operation URLs, secret context, internal reason-family names, and unredacted diagnostics by default.

Audience Value Card

Represents: One buyer-facing value block for MSPs or Enterprise IT.

Fields:

  • audience: msp or enterprise-it
  • title: short visible heading
  • content: buyer-facing explanation

Validation rules:

  • MSP value cards must frame Review Packs as repeatable governance deliverables.
  • Enterprise IT value cards must frame the story around management review, audit preparation, security review, and recovery context.

Discovery Link

Represents: A contextual public-site link to the new route.

Fields:

  • label: visible link label
  • href: localized route
  • placement: homepage, platform page, use-case page, or footer

Validation rules:

  • href must resolve to a real route.
  • Links must follow the current locale strategy.
  • Discovery surfaces must stay light and must not require a main-nav refactor.

Metadata Contract

Represents: The route title and description for the new public page.

Fields:

  • title
  • description
  • canonicalPath

Validation rules:

  • Metadata must mention Review Packs, Evidence, Findings, Accepted Risks, and Decision Summaries safely.
  • Metadata must not claim DSGVO-konform, ISO-zertifiziert, automatic remediation, automatic restore, real-time drift, or unsupported providers.