Read these cards out loud for the short version. Each card has an expandable technical note for IT, privacy, legal, or procurement follow-up.
1. What the pilot is
Kitchen Toolkit is asking to run a contained food-service operations pilot. Staff use the PWA to log work, managers use /admin to review records, and optional sensor nodes help monitor fridge/freezer temperature.
Show technical details
The pilot combines the PWA, admin dashboard, tenant-scoped storage, LoRa temperature nodes, a hub, exports, alerts, and restaurant workflow content.
2. What data KT collects
KT collects kitchen operations records: equipment names, device IDs, temperatures, timestamps, corrective actions, alerts, exports, support contacts, and restaurant workflow content.
Show technical details
Operational records may include equipment IDs, device IDs, node snapshots, hub heartbeats, alert state, tenant profile/env records, push subscriptions, CSV exports, and restaurant bundle content.
3. Where data lives
By default, KT runs on Vercel and stores each tenant's kitchen records in Upstash KV in AWS N. Virginia. Crew devices may keep temporary offline copies, restaurant bundles are Git-backed, and customers can bring their own KV storage for logs/equipment if needed.
Show technical details
Default hosted storage uses Vercel plus Upstash KV, documented as AWS N. Virginia us-east-1 unless a tenant supplies its own storage KV endpoint. Crew devices may cache restaurant bundles, queued offline logs, device IDs/secrets, push metadata, and short-lived cookies. Builder-published restaurant bundles live in Git-backed tenant folders and mirrored precache folders.
4. What KT does not collect
The pilot is not for school records, HR files, payroll, finance, payment cards, health records, government IDs, biometrics, camera surveillance, or employee performance monitoring.
Show full excluded-data list
- Student records or FERPA education records
- Academic, course, grading, or advising records
- HR personnel files, payroll records, or benefits data
- Finance, procurement, or accounting-system records
- Payment card numbers or direct cardholder data
- Healthcare records, PHI, or HIPAA-regulated health data
- Government ID, tax, or banking details
- Biometric, facial-recognition, or camera-surveillance data
- Named employee performance or surveillance records
- Emergency-response dispatch records
- Consumer or household-use data
Show technical details
KT does not intentionally collect student/FERPA records, HR/payroll records, finance/accounting records, cardholder data, healthcare/PHI records, government IDs, biometric data, camera surveillance data, or named employee performance records for the pilot.
5. What access KT needs
The pilot can run without customer internal Wi-Fi, VPN, AD/LDAP, SSO, student systems, HR/payroll systems, finance systems, payment systems, or healthcare systems.
Show technical details
The preferred pilot setup uses dedicated LTE connectivity and outbound HTTPS/TLS from the hub to KT APIs, with no inbound customer network ports required.
6. Security already in place
Admin access is password-protected, tenant MFA is available, passwords are hashed, sensitive tenant settings are encrypted or masked, device uploads are signed, old device requests are rejected, and records are tenant-scoped.
Show technical details
Admin sessions use signed cookies, CSRF checks protect admin writes, tenant admin email MFA is available, passwords use PBKDF2 hashes, tenant secrets use AES-256-GCM envelopes, and devices use HMAC signatures, payload hashes, fresh nonces, and tenant/equipment checks.
7. Food-safety and HACCP role
KT does not claim generic product-level HACCP certification. HACCP certification does not apply to KT software or hardware as standalone products; it applies primarily to the food operator's food-safety program. KT is designed to support the customer's HACCP-style or preventive-control procedures through logs, alerts, exports, sensor checks, and corrective-action records. Final food-safety decisions, corrective actions, equipment maintenance decisions, and regulatory compliance responsibilities remain with the customer.
Show technical details
Post-pilot evidence can support outside review by a food-safety consultant, HACCP specialist, PCQI, or lab if the customer needs additional workflow or sensor-accuracy validation.
8. Hardware model
Sensor nodes are wall-mounted away from prep areas, food, and food-contact surfaces. They monitor fridge/freezer air temperature; probes are suspended in open air and are not intended to touch food or other surfaces.
Show technical details
The deployment model minimizes food-contact and prep-surface contact, keeps primary electronics outside cold/wet interiors where practical, and treats KT as operational monitoring and recordkeeping aid rather than certified regulatory instrumentation.
9. Certifications
KT is not claiming SOC 2, ISO 27001, HACCP certification, commercial hardware certification, or guaranteed food-safety compliance today. The first major software security target is SOC 2, with ISO and hardware certifications later as the product scales.
Show technical details
Recommended sequence: pilot evidence, gap assessment, security questionnaire and policies, external security assessment or penetration test, SOC 2 Type I, SOC 2 Type II after operating evidence, ISO 27001 for larger/international customers, and FCC/ISED/CE or other hardware review before broad commercial hardware sales.
10. Deletion and retention
Admins can export records, configure retention, and delete live KT-controlled records. Copies in Git history, email, customer-owned storage, or provider backups may need separate deletion or retention handling.
Show technical details
Product deletion flows target live operational records in tenant-configured/default KV and covered platform KV records. They do not rewrite Git history or erase independent third-party backups, customer-managed KV backups, email copies, logs, or provider archives outside KT control.
11. Contract boundaries
KT has a review packet and standard legal templates. Public-sector privacy review, special data-residency promises, provider restrictions, security addenda, or SLA commitments only apply when agreed in writing.
Show technical details
The public packet includes a DPA template, transfer addendum/SCC packet, subprocessor schedule, Terms, Privacy Notice, Security & Infrastructure statement, and Data Export & Deletion policy. KT can support customer-specific privacy review, including FIPPA/Ontario public-sector review if requested, but public pages do not create customer-specific compliance claims, redlines, or service commitments.