Encrypted Assignment Dispatch

Blindeforbundet must transmit sensitive personal data-health records, personal identifiers, home addresses-to peer mentors while remaining fully GDPR-compliant. Without encrypted dispatch, this data travels through unprotected channels such as email, creating a serious legal and reputational liability. Delivery and read confirmations replace manual follow-up calls, giving coordinators real-time assurance that assignments have reached the right person. The automatic 10-day reminder prevents service failures for the vulnerable individuals peer mentors support and directly reduces coordinator overhead. This feature is classified MUST (Blindeforbundet) in the priority matrix and is Fase 2 critical, meaning it blocks Blindeforbundet's ability to migrate off legacy paper-based workflows.

Each peer mentor's device generates an asymmetric key pair on first login; the public key is registered server-side. Coordinators encrypt assignment payloads with the recipient's public key before upload; the server stores only the ciphertext and never decrypts it. The Flutter inbox screen decrypts payloads in memory after biometric or PIN authentication. Delivery confirmation is emitted by the server on successful payload storage; read confirmation is sent by the client when the detail screen renders decrypted content. The 10-day reminder integrates with the push notification pipeline. All consent state must be verified before displaying decrypted content, delegating to the Progressive Digital Consent feature. WCAG 2.2 AA compliance is mandatory given Blindeforbundet's screen-reader-dependent users.