calvana

quikcue/calvana

Fork 0

Commit Graph

Author	SHA1	Message	Date
Omair Saleh	865c5a1f93	bulletproof consent: Gift Aid (HMRC), email opt-in, WhatsApp opt-in with full audit trail GIFT AID (HMRC compliance): - Exact HMRC model declaration text displayed and recorded - Home address (line 1 + postcode) collected when Gift Aid is ticked - giftAidAt timestamp recorded separately from the boolean - Declaration text, donor name, timestamp stored in consentMeta JSON EMAIL + WHATSAPP (GDPR/PECR compliance): - Separate, granular opt-in checkboxes (not bundled, not pre-ticked) - Each consent records: exact text shown, timestamp, consent version - Consent checkboxes only appear when relevant contact info is provided - Cron reminders gated on consent — no sends without opt-in - Pledge creation WhatsApp receipt gated on whatsappOptIn AUDIT TRAIL (consentMeta JSON on every pledge): - giftAid: {declared, declarationText, declaredAt} - email: {granted, consentText, grantedAt} - whatsapp: {granted, consentText, grantedAt} - IP address captured server-side from x-forwarded-for - User agent captured client-side - consentVersion field for tracking wording changes EXPORTS: - CRM CSV now includes: donor_address, donor_postcode, gift_aid_declared_at, is_zakat, email_opt_in, whatsapp_opt_in - Gift Aid export has full HMRC-required fields Schema: 6 new columns on Pledge (donorAddressLine1, donorPostcode, giftAidAt, emailOptIn, whatsappOptIn, consentMeta)	2026-03-03 07:38:51 +08:00
Omair Saleh	c79b9bcabc	production: reminder cron, dashboard overhaul, shadcn components, setup wizard - /api/cron/reminders: processes pending reminders every 15min, sends WhatsApp with email fallback - /api/cron/overdue: marks overdue pledges daily (7d deferred, 14d immediate) - /api/pledges: GET handler with filtering, search, pagination, sort by dueDate - Dashboard overview: stats, collection progress bar, needs attention, upcoming payments - Dashboard pledges: proper table with status tabs, search, actions, pagination - New shadcn components: Table, Tabs, DropdownMenu, Progress - Setup wizard: 4-step onboarding (org → bank → event → QR code) - Settings API: PUT handler for org create/update - Org resolver: single-tenant fallback to first org - Cron jobs installed: reminders every 15min, overdue check at 6am - Auto-generates installment dates when not provided - HOSTNAME=0.0.0.0 in compose for multi-network binding	2026-03-03 05:11:17 +08:00

Author

SHA1

Message

Date

Omair Saleh

865c5a1f93

bulletproof consent: Gift Aid (HMRC), email opt-in, WhatsApp opt-in with full audit trail

GIFT AID (HMRC compliance):
- Exact HMRC model declaration text displayed and recorded
- Home address (line 1 + postcode) collected when Gift Aid is ticked
- giftAidAt timestamp recorded separately from the boolean
- Declaration text, donor name, timestamp stored in consentMeta JSON

EMAIL + WHATSAPP (GDPR/PECR compliance):
- Separate, granular opt-in checkboxes (not bundled, not pre-ticked)
- Each consent records: exact text shown, timestamp, consent version
- Consent checkboxes only appear when relevant contact info is provided
- Cron reminders gated on consent — no sends without opt-in
- Pledge creation WhatsApp receipt gated on whatsappOptIn

AUDIT TRAIL (consentMeta JSON on every pledge):
- giftAid: {declared, declarationText, declaredAt}
- email: {granted, consentText, grantedAt}
- whatsapp: {granted, consentText, grantedAt}
- IP address captured server-side from x-forwarded-for
- User agent captured client-side
- consentVersion field for tracking wording changes

EXPORTS:
- CRM CSV now includes: donor_address, donor_postcode, gift_aid_declared_at,
  is_zakat, email_opt_in, whatsapp_opt_in
- Gift Aid export has full HMRC-required fields

Schema: 6 new columns on Pledge (donorAddressLine1, donorPostcode,
giftAidAt, emailOptIn, whatsappOptIn, consentMeta)

2026-03-03 07:38:51 +08:00

Omair Saleh

c79b9bcabc

production: reminder cron, dashboard overhaul, shadcn components, setup wizard

- /api/cron/reminders: processes pending reminders every 15min, sends WhatsApp with email fallback
- /api/cron/overdue: marks overdue pledges daily (7d deferred, 14d immediate)
- /api/pledges: GET handler with filtering, search, pagination, sort by dueDate
- Dashboard overview: stats, collection progress bar, needs attention, upcoming payments
- Dashboard pledges: proper table with status tabs, search, actions, pagination
- New shadcn components: Table, Tabs, DropdownMenu, Progress
- Setup wizard: 4-step onboarding (org → bank → event → QR code)
- Settings API: PUT handler for org create/update
- Org resolver: single-tenant fallback to first org
- Cron jobs installed: reminders every 15min, overdue check at 6am
- Auto-generates installment dates when not provided
- HOSTNAME=0.0.0.0 in compose for multi-network binding

2026-03-03 05:11:17 +08:00

2 Commits