# Guardrails policy for the Ombudsman complaint-intake process.
# Loaded by the runtime at session start; enforced by the host at every ai.* invocation.
# Aligns with EU AI Act §14 (human oversight) and §10 (data governance) for high-risk systems.

scope:
  jurisdiction: lv
  domain: public-sector-oversight
  legal_basis:
    - "Iesniegumu likums"
    - "Tiesībsarga likums"
    - "Administratīvā procesa likums"
    - "Vispārīgā datu aizsardzības regula (GDPR)"
  high_risk_classification: "EU AI Act Annex III §5(a) and §8(a)"

data_protection:
  pii_redactor: required
  forbidden_inputs_to_ai:
    - personas_kods           # Latvian personal identity code
    - bank_account_numbers
    - exact_home_address
    - children_personal_names
    - health_record_numbers
  default_redaction_categories:
    - pii_name
    - pii_id_number
    - pii_address
    - pii_financial
    - pii_health
  retention:
    audit_chain_years: 10
    ai_invocation_logs_years: 2

ai:
  allowed_models:
    - claude-opus-4-7
    - claude-sonnet-4-6
  forbidden_models:
    - "*-uncensored"
  min_confidence_for_unattended_use: 0.90
  decisions_ai_may_make_unattended: []        # Empty by design at v0.1 — no AI-only decisions
  decisions_ai_may_recommend:
    - topic_classification
    - priority_estimate
    - department_routing
    - response_drafting

human_oversight:
  required_for:
    - final_classification_acceptance
    - response_dispatch
    - case_closure
  reviewer_roles:
    - "berna-tiesibu-jurists"
    - "diskriminacijas-jurists"
    - "pilsonisko-tiesibu-jurists"
    - "socialo-tiesibu-jurists"
    - "visparejas-uzraudzibas-jurists"
  escalation:
    target_role: "nodalas-vaditajs"
    triggers:
      - "ai_confidence_below_threshold"
      - "constitutional_rights_violation_indicator"
      - "cross_institutional_coordination_needed"

audit:
  vc_signature_per_step: required
  emitter_did: "did:web:tiesibsargs.opendms.dev"
  audit_sink: "veridocs-register"
  events_required:
    - "iesniegums.received"
    - "iesniegums.pii-redacted"
    - "iesniegums.facets-extracted"
    - "iesniegums.classified"
    - "iesniegums.routed"
    - "iesniegums.persisted"

regulatory_sandbox:
  programme: "lv-mic-ai-regulatory-sandbox"
  participating_authorities:
    - "VARAM"
    - "DVI"
  scope_definition_url: "https://github.com/UAPFormat/UAPF-IP/blob/main/profiles/02-orchestrated-process.md"