Raw email is not stored by default
Email is normalized, converted to an HMAC SHA-256 identity with a server-side pepper, and matched against subject summaries.
Security and privacy
This is not a public email search engine.
FRDDB is designed for authenticated B2B risk decisions. No public email search. No raw email storage by default. No fake compliance badges.
Report notes are encrypted
Notes are optional, length-limited, and encrypted before persistence. They are not used as scoring magic dust.
API keys are hashed
FRDDB stores prefixes and hashes, not full API keys. Scopes and revocation keep blast radius tight.
Audit logs are first-class
Lookup, report, key, billing, and dashboard actions produce org-scoped audit trails.
Paid and verified reporters
Reporting access is tied to authenticated organizations. Reporter trust affects scoring weight over time.
Correction path planned
The schema reserves appeals. A correction path is not optional for this product category.
Data model
Minimize, encrypt, audit.
Subjects store HMAC identity and version. Reports store evidence metadata and encrypted notes. Lookups store operational fields, not arbitrary request context.
normalized email email_hmac + hmac_version risk summary audit log