AIRA AI handles receptionist work with permission-first controls.

Data Safety Guards In This Build

• Secrets stay on the server or Supabase Edge Function, never in browser code.
• Recording is disabled by default and must include caller disclosure before activation.
• Training versions, messages, calls, transcripts, and audit events have separate Supabase tables.
• Supabase row-level security is enabled in the migration for owner-scoped access.
• Service worker caching excludes `/api/` and `/voice/` traffic.
• Netlify security headers are configured for frame, MIME, referrer, and permission policy protection.

Capability Roadmap

• PWA: dashboard, install flow, training, messages, transcript review, browser media permissions.
• Telephony: company-number answering, transfers, hold music, SMS, recording after consent.
• Android companion: OS-approved call screening, overlay, settings, and device-admin flows.
• iOS companion: CallKit for AIRA-owned VoIP workflows.
• Future OS: AIRA as a full smart-phone operating layer built from native, carrier, and device AI components.

Project memory: AIRA is aimed first at call-assistant secretary duties, with a long-term plan to become a full AI smartphone operating system. Super-user-style access must be requested transparently and granted by the user or phone operator through legitimate OS or carrier mechanisms.