Encrypted Assignment Dispatch

Blindeforbundet currently distributes sensitive personal data such as medical summaries through insecure channels, creating GDPR exposure for the organization. End-to-end encrypted assignment dispatch eliminates that risk, satisfies regulatory requirements, and builds trust with both coordinators and the contacts whose data is being shared. Delivery and read confirmations replace manual coordinator follow-up calls, reducing administrative burden and providing an auditable trail. The 10-day reminder closes the gap between assignment dispatch and first contact, improving outcomes for referred individuals and reducing the chance of forgotten referrals during busy periods.

Assignments use per-tenant asymmetric key pairs; private keys are stored in Flutter Secure Storage (Keychain on iOS, Keystore on Android) and never sent to the server. The backend stores only ciphertext in the assignments table. Delivery confirmation is written to assignment_deliveries on first sync; read confirmation is written when the peer mentor navigates to the assignment detail screen. The 10-day reminder is a server-side scheduled job querying assignment_deliveries for entries where no linked activity exists after the threshold. The mutation outbox must queue read confirmations when offline and flush on reconnect. Drift local DB stores encrypted assignment ciphertext with SQLCipher, consistent with the offline-first architecture.