ahmido/TenantAtlas
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects 1 Releases Wiki Activity
website-dev
TenantAtlas/specs/408-review-evidence-decision/data-model.md
ahmido acdea41d92 408: add review pack story surfaces and homepage polish (#405) 
## Summary
- add the localized review-pack product story routes at `/platform/review-packs` and `/en/platform/review-packs` with shared page composition, evidence/decision framing, audience sections, trust handoff, and footer/use-case/home/platform discovery
- extend `site-copy`, smoke coverage, and Spec Kit artifacts for feature 408 so the public website contract, tests, research, plan, quickstart, and checklist stay aligned
- polish the public presentation with a cleaner review-pack comparison surface, a more opaque navbar to remove homepage logo bleed-through, a higher-contrast secondary CTA, unique homepage feature icons, and less repetitive homepage use-case copy

## Validation
- `corepack pnpm --filter @tenantatlas/website build`
- `corepack pnpm --filter @tenantatlas/website test tests/smoke/public-routes.spec.ts`
- `corepack pnpm --filter @tenantatlas/website test tests/smoke/interaction.spec.ts`
- source/dist claim scans plus manual browser comprehension checks are recorded in `specs/408-review-evidence-decision/checklists/requirements.md`
- current touched website files are free of editor diagnostics; live browser console check on the homepage returned no errors

## Notes
- trust/proof messaging remains intentionally honest; this PR does not add fabricated customer logos, certifications, or unsupported compliance claims
- `origin/website-dev` is the review base for this PR

Co-authored-by: Ahmed Darrazi <ahmed.darrazi@live.de>
Reviewed-on: #405
2026-05-29 13:48:21 +00:00

193 lines
6.0 KiB
Markdown
Raw Permalink Blame History

# Data Model: Customer-safe Review, Evidence & Decision Story
This feature has no persisted data model. The entities below are static website content structures used to render a public product-story route. They must remain content-only unless a later spec introduces runtime review workspace, review-pack export, or Evidence persistence truth.
## Review Story Page
**Represents**: The localized public page explaining Review Packs, Evidence, Findings, Accepted Risks, Decision Summaries, customer-safe review content, and follow-up actions.
**Fields**:
- `locale`: `de` or `en`
- `pageTitle`: localized metadata title
- `metaDescription`: localized metadata description
- `heroTitle`: main H1
- `heroSubtitle`: core product-story paragraph
- `supportingLine`: short context line for governance outcomes
- `primaryCta`: primary CTA label and route
- `secondaryCta`: supporting CTA label and route
- `problemCards`: list of governance pain cards
- `workflowSteps`: list of governance workflow steps
- `reviewPackCards`: list of review-pack anatomy cards
- `evidenceCards`: list of evidence-type cards
- `decisionCards`: list of decision-summary cards
- `boundaryColumns`: customer-safe versus internal-detail comparison content
- `audienceValueCards`: MSP and Enterprise IT value cards
- `comparisonRows`: raw export versus Tenantial review story comparison rows
- `trustTeaser`: optional trust-summary block with real destination
- `finalCta`: final conversion block with real destinations only
**Validation rules**:
- `pageTitle` and `metaDescription` must not claim compliance certification, automatic remediation, automatic restore, real-time drift, or unsupported providers.
- Every CTA destination must be a real route or real contact destination.
- The page must contain the hero, problem, workflow, review-pack anatomy, Evidence, decision-summary, customer-safe boundary, audience value, differentiation, and final CTA sections.
- The page must not contain `href="#"`.
## Governance Workflow Step
**Represents**: One visible step in the path from policy truth to reviewable decision.
**Fields**:
- `key`: stable content key
- `title`: visible step label
- `content`: buyer-facing explanation
**Required rows**:
- policy-state capture
- drift recognition
- Evidence linkage
- finding evaluation
- risk decision
- review-pack preparation
**Validation rules**:
- Steps must explain governance flow in buyer language, not internal runtime vocabulary.
- The workflow must show why status, reason, impact, Evidence basis, and next action matter.
## Review Pack Card
**Represents**: One card in the review-pack anatomy section.
**Fields**:
- `key`: stable content key
- `title`: visible card title
- `content`: buyer-facing description
- `availabilityTone`: `hard-available` or `soft-availability`
**Required rows**:
- executive-summary
- evidence-basis
- findings
- accepted-risks
- decision-summary
- review-pack-status
- download-export-context
**Validation rules**:
- Download/export wording defaults to `soft-availability` unless implementation verifies a harder product truth.
- Cards must describe governance deliverables, not raw exports or fake PDFs.
## Evidence Card
**Represents**: One buyer-facing Evidence type on the page.
**Fields**:
- `key`: stable content key
- `title`: visible label
- `content`: description of what the Evidence type helps explain
**Required rows**:
- policy-evidence
- change-evidence
- finding-evidence
- recovery-evidence
- review-evidence
**Validation rules**:
- Evidence must stay framed as reviewable proof context.
- Cards must not imply court-proof or complete evidence coverage.
## Decision Facet Card
**Represents**: One visible dimension inside the Decision Summary section.
**Fields**:
- `key`: stable content key
- `title`: visible label
- `content`: buyer-facing explanation
**Required rows**:
- status
- reason
- impact
- evidence
- next-action
- review-context
**Validation rules**:
- The set must explain what was found, why it matters, what supports it, what remains open, and who acts next.
- Cards must not claim automatic decision-making or automatic risk acceptance.
## Disclosure Column
**Represents**: One side of the customer-safe boundary comparison.
**Fields**:
- `title`: visible column heading
- `items`: list of included or excluded content bullets
- `mode`: `customer-safe` or `internal-only`
**Validation rules**:
- `customer-safe` content must emphasize executive summary, review status, findings summary, Evidence basis, Accepted Risks, Decision Summary, and next actions.
- `internal-only` content must exclude raw provider payloads, internal job IDs, debug traces, stack traces, internal fingerprints, low-level operation URLs, secret context, internal reason-family names, and unredacted diagnostics by default.
## Audience Value Card
**Represents**: One buyer-facing value block for MSPs or Enterprise IT.
**Fields**:
- `audience`: `msp` or `enterprise-it`
- `title`: short visible heading
- `content`: buyer-facing explanation
**Validation rules**:
- MSP value cards must frame Review Packs as repeatable governance deliverables.
- Enterprise IT value cards must frame the story around management review, audit preparation, security review, and recovery context.
## Discovery Link
**Represents**: A contextual public-site link to the new route.
**Fields**:
- `label`: visible link label
- `href`: localized route
- `placement`: homepage, platform page, use-case page, or footer
**Validation rules**:
- `href` must resolve to a real route.
- Links must follow the current locale strategy.
- Discovery surfaces must stay light and must not require a main-nav refactor.
## Metadata Contract
**Represents**: The route title and description for the new public page.
**Fields**:
- `title`
- `description`
- `canonicalPath`
**Validation rules**:
- Metadata must mention Review Packs, Evidence, Findings, Accepted Risks, and Decision Summaries safely.
- Metadata must not claim `DSGVO-konform`, `ISO-zertifiziert`, `automatic remediation`, `automatic restore`, `real-time drift`, or unsupported providers.
Reference in New Issue View Git Blame Copy Permalink