Confidentiality Declarations

Blindeforbundet's chauffeur activities expose drivers to sensitive personal information about contacts, creating a legal obligation to obtain and retain signed confidentiality declarations. Without a digital solution, declarations are collected on paper, creating storage and audit risks and making compliance verification burdensome for coordinators who must manually track which peer mentors hold current declarations. Integrating declarations into the expense registration flow ensures that no chauffeur activity can be completed without a valid declaration on record, making compliance automatic rather than dependent on manual coordinator checks. The digital audit trail supports regulatory accountability and simplifies internal review, reducing organizational risk in Blindeforbundet's operations and providing evidence in the event of a compliance inquiry.

Implement as a modal or dedicated screen triggered when a chauffeur expense type is selected. Declaration text is fetched from the backend as an org-scoped, versioned document updatable by org admins. User acceptance is recorded in the confidentiality_declarations table with user ID, timestamp, and declaration version hash. The expense submission flow checks for a valid declaration against the current version before allowing chauffeur types to proceed. If no record exists or the stored version is outdated, the user is prompted to re-sign. The Riverpod provider manages declaration state; the record is included in the Drift offline sync queue so enforcement applies without connectivity. WCAG 2.2 AA compliance is required for all declaration text rendering and acceptance controls.