> ## Documentation Index
> Fetch the complete documentation index at: https://docs.usenexio.com/llms.txt
> Use this file to discover all available pages before exploring further.

# Data use and subprocessors

> Generated field-level processing facts and approval states.

This page is generated from egress manifest SHA-256 `747d9c973448d9f5718423dbeac4f1c9cdb38cdc3f8663112964b277b29d0431`. Approval states are reproduced exactly. A `pending` processor is not approved for live launch.

| Processor                                 | Payload family              | Field                                              | Purpose                                                                  | Classification | Approval state |
| ----------------------------------------- | --------------------------- | -------------------------------------------------- | ------------------------------------------------------------------------ | -------------- | -------------- |
| Anthropic                                 | `messages`                  | `headers.Content-Type`                             | Declare JSON payload encoding                                            | `public`       | `pending`      |
| Anthropic                                 | `messages`                  | `headers.anthropic-version`                        | Select the Anthropic wire API version                                    | `public`       | `pending`      |
| Anthropic                                 | `messages`                  | `headers.x-api-key`                                | Authenticate the model or grounding request                              | `confidential` | `pending`      |
| Anthropic                                 | `messages`                  | `max_tokens`                                       | Cap provider output                                                      | `confidential` | `pending`      |
| Anthropic                                 | `messages`                  | `messages[].content`                               | Provide serialized run input when no attachments are present             | `restricted`   | `pending`      |
| Anthropic                                 | `messages`                  | `messages[].content[].source.data`                 | Provide an attachment                                                    | `restricted`   | `pending`      |
| Anthropic                                 | `messages`                  | `messages[].content[].source.media_type`           | Identify the attachment media type                                       | `public`       | `pending`      |
| Anthropic                                 | `messages`                  | `messages[].content[].source.type`                 | Identify base64 attachment encoding                                      | `public`       | `pending`      |
| Anthropic                                 | `messages`                  | `messages[].content[].text`                        | Provide serialized run input alongside attachments                       | `restricted`   | `pending`      |
| Anthropic                                 | `messages`                  | `messages[].content[].type`                        | Identify document, image, or text content                                | `public`       | `pending`      |
| Anthropic                                 | `messages`                  | `messages[].role`                                  | Identify the user message                                                | `public`       | `pending`      |
| Anthropic                                 | `messages`                  | `model`                                            | Select the configured model                                              | `confidential` | `pending`      |
| Anthropic                                 | `messages`                  | `system`                                           | Provide versioned engine instructions                                    | `confidential` | `pending`      |
| Anthropic                                 | `messages`                  | `tool_choice.name`                                 | Select the structured output tool                                        | `confidential` | `pending`      |
| Anthropic                                 | `messages`                  | `tool_choice.type`                                 | Require a tool call                                                      | `public`       | `pending`      |
| Anthropic                                 | `messages`                  | `tools[].description`                              | Describe the structured output tool                                      | `confidential` | `pending`      |
| Anthropic                                 | `messages`                  | `tools[].input_schema.*`                           | Declare the versioned output schema                                      | `confidential` | `pending`      |
| Anthropic                                 | `messages`                  | `tools[].max_uses`                                 | Cap grounding searches                                                   | `confidential` | `pending`      |
| Anthropic                                 | `messages`                  | `tools[].name`                                     | Name the structured output or grounding tool                             | `confidential` | `pending`      |
| Anthropic                                 | `messages`                  | `tools[].type`                                     | Select the grounding tool implementation                                 | `public`       | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `events[].attributes.*`                            | Export redacted event attributes                                         | `restricted`   | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `events[].content_ref`                             | Link content evidence                                                    | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `events[].created_at`                              | Record event creation time                                               | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `events[].duration_ms`                             | Record event duration                                                    | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `events[].end_at`                                  | Record event end time                                                    | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `events[].error_details.*`                         | Export redacted structured event errors                                  | `restricted`   | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `events[].id`                                      | Identify a timeline event                                                | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `events[].kind`                                    | Classify a timeline event                                                | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `events[].name`                                    | Name a timeline event                                                    | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `events[].parent_event_id`                         | Record parent-event lineage                                              | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `events[].parent_run_id`                           | Record parent-run lineage                                                | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `events[].region`                                  | Identify the execution region                                            | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `events[].schema_version`                          | Version the event contract                                               | `public`       | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `events[].service`                                 | Identify the producing service                                           | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `events[].service_version`                         | Identify the producing build                                             | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `events[].stage`                                   | Identify the pipeline stage                                              | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `events[].start_at`                                | Record event start time                                                  | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `events[].status`                                  | State the event outcome                                                  | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `events[].trace_id`                                | Correlate trace evidence                                                 | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `events[].triggered_by_run_id`                     | Record triggering-run lineage                                            | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `external_calls[].blob.*`                          | Export redacted enrichment request and response evidence                 | `restricted`   | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `external_calls[].blob_type`                       | Identify the external-call evidence type                                 | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `external_calls[].stage`                           | Identify the enrichment stage                                            | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `llm_summary.by_model[].calls`                     | Export model-specific call count                                         | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `llm_summary.by_model[].cost_micros`               | Export model-specific cost                                               | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `llm_summary.by_model[].input_tokens`              | Export model-specific input tokens                                       | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `llm_summary.by_model[].model`                     | Identify the model in the usage rollup                                   | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `llm_summary.by_model[].output_tokens`             | Export model-specific output tokens                                      | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `llm_summary.by_model[].provider`                  | Identify the model provider in the usage rollup                          | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `llm_summary.cache_hit_rate`                       | Export aggregate prompt-cache utilization                                | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `llm_summary.total_calls`                          | Export aggregate model call count                                        | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `llm_summary.total_cost_micros`                    | Export aggregate model cost                                              | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `llm_summary.total_tokens`                         | Export aggregate model token count                                       | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `model_calls[].blob`                               | Emit null in the customer export after raw model-call content is removed | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `model_calls[].blob_type`                          | Identify the attestation type                                            | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `model_calls[].stage`                              | Attest the pipeline stage that called a model                            | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `output.*`                                         | Export the customer-visible run output                                   | `restricted`   | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `provenance.*`                                     | Export per-element sourcing lineage                                      | `restricted`   | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `provenance_coverage`                              | State whether provenance evidence is present                             | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `redaction.fields_redacted`                        | Report packet redaction count                                            | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `run.completed_at`                                 | Record when run execution completed                                      | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `run.cost_rollup.cost_micros`                      | Export aggregate model cost                                              | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `run.cost_rollup.input_tokens`                     | Export aggregate model input tokens                                      | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `run.cost_rollup.output_tokens`                    | Export aggregate model output tokens                                     | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `run.engine_config_version_hash`                   | Pin the released engine configuration                                    | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `run.engine_id`                                    | Identify the engine                                                      | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `run.engine_type`                                  | Identify the engine family                                               | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `run.environment`                                  | Identify the execution environment                                       | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `run.error_details.*`                              | Export structured safe terminal errors                                   | `restricted`   | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `run.id`                                           | Identify the exported run                                                | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `run.parent_run_id`                                | Record parent-run lineage                                                | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `run.started_at`                                   | Record when run execution started                                        | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `run.status`                                       | State the terminal run status                                            | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `run.submitted_by`                                 | Attest the stable submitter reference                                    | `restricted`   | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `run.submitted_by_label`                           | Provide the resolved submitter label                                     | `restricted`   | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `run.trace_id`                                     | Correlate trace evidence                                                 | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `run.triggered_by_run_id`                          | Record triggering-run lineage                                            | `confidential` | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `run.warning_details.*`                            | Export structured input or execution warnings                            | `restricted`   | `pending`      |
| Authorized defensibility-packet recipient | `customer_packet_v1`        | `version`                                          | Version the packet contract                                              | `public`       | `pending`      |
| FEMA National Flood Hazard Layer          | `nfhl_point_query`          | `query.f`                                          | Request a JSON response                                                  | `public`       | `pending`      |
| FEMA National Flood Hazard Layer          | `nfhl_point_query`          | `query.geometry.spatialReference.wkid`             | Declare WGS84 coordinate reference                                       | `public`       | `pending`      |
| FEMA National Flood Hazard Layer          | `nfhl_point_query`          | `query.geometry.x`                                 | Select the longitude of the geocoded property point                      | `restricted`   | `pending`      |
| FEMA National Flood Hazard Layer          | `nfhl_point_query`          | `query.geometry.y`                                 | Select the latitude of the geocoded property point                       | `restricted`   | `pending`      |
| FEMA National Flood Hazard Layer          | `nfhl_point_query`          | `query.geometryType`                               | Declare point geometry                                                   | `public`       | `pending`      |
| FEMA National Flood Hazard Layer          | `nfhl_point_query`          | `query.inSR`                                       | Declare the input spatial reference                                      | `public`       | `pending`      |
| FEMA National Flood Hazard Layer          | `nfhl_point_query`          | `query.outFields`                                  | Request flood zone and base flood elevation                              | `public`       | `pending`      |
| FEMA National Flood Hazard Layer          | `nfhl_point_query`          | `query.returnGeometry`                             | Suppress unneeded polygon geometry                                       | `public`       | `pending`      |
| FEMA National Flood Hazard Layer          | `nfhl_point_query`          | `query.spatialRel`                                 | Select intersecting flood features                                       | `public`       | `pending`      |
| Google Gemini API                         | `grounded_generate_content` | `contents[].parts[].text`                          | Provide the claim, location, date, and event to verify                   | `restricted`   | `pending`      |
| Google Gemini API                         | `grounded_generate_content` | `headers.Content-Type`                             | Declare JSON payload encoding                                            | `public`       | `pending`      |
| Google Gemini API                         | `grounded_generate_content` | `headers.x-goog-api-key`                           | Authenticate the grounding request                                       | `confidential` | `pending`      |
| Google Gemini API                         | `grounded_generate_content` | `systemInstruction.parts[].text`                   | Provide research and citation instructions                               | `confidential` | `pending`      |
| Google Gemini API                         | `grounded_generate_content` | `tools[].google_search`                            | Enable web grounding                                                     | `public`       | `pending`      |
| Google Maps Geocoding API                 | `geocode_query`             | `headers.Accept`                                   | Request a JSON response                                                  | `public`       | `pending`      |
| Google Maps Geocoding API                 | `geocode_query`             | `headers.User-Agent`                               | Identify the calling service                                             | `public`       | `pending`      |
| Google Maps Geocoding API                 | `geocode_query`             | `query.address`                                    | Resolve a submitted physical address to coordinates                      | `restricted`   | `pending`      |
| Google Maps Geocoding API                 | `geocode_query`             | `query.components`                                 | Constrain the match by country and postal code                           | `restricted`   | `pending`      |
| Google Maps Geocoding API                 | `geocode_query`             | `query.key`                                        | Authenticate the geocoding request                                       | `confidential` | `pending`      |
| Google Maps Geocoding API                 | `geocode_query`             | `query.region`                                     | Bias geocoding to the United States                                      | `public`       | `pending`      |
| HazardHub                                 | `risks_query`               | `headers.Authorization`                            | Authenticate the hazard lookup                                           | `confidential` | `pending`      |
| HazardHub                                 | `risks_query`               | `query.address`                                    | Resolve property-level hazard signals                                    | `restricted`   | `pending`      |
| HazardHub                                 | `risks_query`               | `query.city`                                       | Disambiguate the submitted property address                              | `restricted`   | `pending`      |
| HazardHub                                 | `risks_query`               | `query.state`                                      | Disambiguate the submitted property address                              | `restricted`   | `pending`      |
| HazardHub                                 | `risks_query`               | `query.zip`                                        | Disambiguate the submitted property address                              | `restricted`   | `pending`      |
| OpenAI                                    | `chat_completions`          | `headers.Authorization`                            | Authenticate the model request                                           | `confidential` | `pending`      |
| OpenAI                                    | `chat_completions`          | `headers.Content-Type`                             | Declare JSON payload encoding                                            | `public`       | `pending`      |
| OpenAI                                    | `chat_completions`          | `messages[].content`                               | Provide engine instructions and run-derived input                        | `restricted`   | `pending`      |
| OpenAI                                    | `chat_completions`          | `messages[].role`                                  | Separate system and user instructions                                    | `confidential` | `pending`      |
| OpenAI                                    | `chat_completions`          | `model`                                            | Select the configured model                                              | `confidential` | `pending`      |
| OpenAI                                    | `chat_completions`          | `reasoning_effort`                                 | Select the configured reasoning effort                                   | `confidential` | `pending`      |
| OpenAI                                    | `chat_completions`          | `service_tier`                                     | Select the configured service tier                                       | `confidential` | `pending`      |
| OpenAI                                    | `grounded_responses`        | `headers.Authorization`                            | Authenticate the grounding request                                       | `confidential` | `pending`      |
| OpenAI                                    | `grounded_responses`        | `headers.Content-Type`                             | Declare JSON payload encoding                                            | `public`       | `pending`      |
| OpenAI                                    | `grounded_responses`        | `input`                                            | Provide the claim, location, date, and event to verify                   | `restricted`   | `pending`      |
| OpenAI                                    | `grounded_responses`        | `instructions`                                     | Provide research and citation instructions                               | `confidential` | `pending`      |
| OpenAI                                    | `grounded_responses`        | `model`                                            | Select the configured grounding model                                    | `confidential` | `pending`      |
| OpenAI                                    | `grounded_responses`        | `tool_choice`                                      | Require grounding tool use                                               | `public`       | `pending`      |
| OpenAI                                    | `grounded_responses`        | `tools[].type`                                     | Enable web search                                                        | `public`       | `pending`      |
| OpenAI                                    | `structured_responses`      | `headers.Authorization`                            | Authenticate the model request                                           | `confidential` | `pending`      |
| OpenAI                                    | `structured_responses`      | `headers.Content-Type`                             | Declare JSON payload encoding                                            | `public`       | `pending`      |
| OpenAI                                    | `structured_responses`      | `input`                                            | Provide serialized run input when no attachments are present             | `restricted`   | `pending`      |
| OpenAI                                    | `structured_responses`      | `input[].content[].file_data`                      | Provide a file attachment as a data URL                                  | `restricted`   | `pending`      |
| OpenAI                                    | `structured_responses`      | `input[].content[].filename`                       | Identify an attached file type                                           | `public`       | `pending`      |
| OpenAI                                    | `structured_responses`      | `input[].content[].image_url`                      | Provide an image attachment as a data URL                                | `restricted`   | `pending`      |
| OpenAI                                    | `structured_responses`      | `input[].content[].text`                           | Provide serialized run input alongside attachments                       | `restricted`   | `pending`      |
| OpenAI                                    | `structured_responses`      | `input[].content[].type`                           | Identify text, image, or file content                                    | `public`       | `pending`      |
| OpenAI                                    | `structured_responses`      | `input[].role`                                     | Identify the attachment-bearing user message                             | `public`       | `pending`      |
| OpenAI                                    | `structured_responses`      | `instructions`                                     | Provide versioned engine instructions                                    | `confidential` | `pending`      |
| OpenAI                                    | `structured_responses`      | `max_output_tokens`                                | Cap provider output                                                      | `confidential` | `pending`      |
| OpenAI                                    | `structured_responses`      | `model`                                            | Select the configured model                                              | `confidential` | `pending`      |
| OpenAI                                    | `structured_responses`      | `reasoning.effort`                                 | Select the configured reasoning effort                                   | `confidential` | `pending`      |
| OpenAI                                    | `structured_responses`      | `service_tier`                                     | Select the configured service tier                                       | `confidential` | `pending`      |
| OpenAI                                    | `structured_responses`      | `text.format.name`                                 | Name the structured output schema                                        | `confidential` | `pending`      |
| OpenAI                                    | `structured_responses`      | `text.format.schema.*`                             | Declare the versioned output schema                                      | `confidential` | `pending`      |
| OpenAI                                    | `structured_responses`      | `text.format.strict`                               | Require strict schema conformance                                        | `public`       | `pending`      |
| OpenAI                                    | `structured_responses`      | `text.format.type`                                 | Request JSON Schema structured output                                    | `public`       | `pending`      |
| Configured partner webhook receiver       | `run_event`                 | `body.created_at`                                  | Timestamp event creation                                                 | `confidential` | `pending`      |
| Configured partner webhook receiver       | `run_event`                 | `body.data.run.attempt`                            | Communicate execution attempt count                                      | `confidential` | `pending`      |
| Configured partner webhook receiver       | `run_event`                 | `body.data.run.completed_at`                       | Communicate run completion time                                          | `confidential` | `pending`      |
| Configured partner webhook receiver       | `run_event`                 | `body.data.run.created_at`                         | Communicate run creation time                                            | `confidential` | `pending`      |
| Configured partner webhook receiver       | `run_event`                 | `body.data.run.duration_ms`                        | Communicate final-attempt duration                                       | `confidential` | `pending`      |
| Configured partner webhook receiver       | `run_event`                 | `body.data.run.engine_type`                        | Identify the engine family                                               | `confidential` | `pending`      |
| Configured partner webhook receiver       | `run_event`                 | `body.data.run.engine_version`                     | Identify the released engine version                                     | `confidential` | `pending`      |
| Configured partner webhook receiver       | `run_event`                 | `body.data.run.environment`                        | Identify the run environment                                             | `confidential` | `pending`      |
| Configured partner webhook receiver       | `run_event`                 | `body.data.run.error`                              | Communicate a safe terminal error                                        | `confidential` | `pending`      |
| Configured partner webhook receiver       | `run_event`                 | `body.data.run.error_details.*`                    | Communicate structured safe error details                                | `confidential` | `pending`      |
| Configured partner webhook receiver       | `run_event`                 | `body.data.run.output.*`                           | Deliver the engine's customer-visible output                             | `restricted`   | `pending`      |
| Configured partner webhook receiver       | `run_event`                 | `body.data.run.run_id`                             | Identify the run                                                         | `confidential` | `pending`      |
| Configured partner webhook receiver       | `run_event`                 | `body.data.run.solutions[].bundle.*`               | Deliver the solution bundle                                              | `restricted`   | `pending`      |
| Configured partner webhook receiver       | `run_event`                 | `body.data.run.solutions[].cluster_label`          | Label the ranked solution cluster                                        | `confidential` | `pending`      |
| Configured partner webhook receiver       | `run_event`                 | `body.data.run.solutions[].consolidation_discount` | Provide estimated consolidation discount                                 | `restricted`   | `pending`      |
| Configured partner webhook receiver       | `run_event`                 | `body.data.run.solutions[].est_cost_high`          | Provide estimated cost range                                             | `restricted`   | `pending`      |
| Configured partner webhook receiver       | `run_event`                 | `body.data.run.solutions[].est_cost_low`           | Provide estimated cost range                                             | `restricted`   | `pending`      |
| Configured partner webhook receiver       | `run_event`                 | `body.data.run.solutions[].id`                     | Identify a ranked solution                                               | `confidential` | `pending`      |
| Configured partner webhook receiver       | `run_event`                 | `body.data.run.solutions[].offerings.*`            | Deliver the solution's submitted or sourced offerings                    | `restricted`   | `pending`      |
| Configured partner webhook receiver       | `run_event`                 | `body.data.run.solutions[].provider_count`         | Summarize solution composition                                           | `confidential` | `pending`      |
| Configured partner webhook receiver       | `run_event`                 | `body.data.run.solutions[].rank`                   | Communicate solution rank                                                | `confidential` | `pending`      |
| Configured partner webhook receiver       | `run_event`                 | `body.data.run.solutions[].requirements_met[]`     | Explain matched requirements                                             | `restricted`   | `pending`      |
| Configured partner webhook receiver       | `run_event`                 | `body.data.run.solutions[].scorecard.*`            | Deliver the solution scorecard                                           | `restricted`   | `pending`      |
| Configured partner webhook receiver       | `run_event`                 | `body.data.run.stage`                              | Communicate the active or terminal stage                                 | `confidential` | `pending`      |
| Configured partner webhook receiver       | `run_event`                 | `body.data.run.status`                             | Communicate run state                                                    | `confidential` | `pending`      |
| Configured partner webhook receiver       | `run_event`                 | `body.data.run.total_duration_ms`                  | Communicate end-to-end duration                                          | `confidential` | `pending`      |
| Configured partner webhook receiver       | `run_event`                 | `body.data.run.trace_id`                           | Support request correlation                                              | `confidential` | `pending`      |
| Configured partner webhook receiver       | `run_event`                 | `body.data.run.warnings.*`                         | Communicate approved input-quality warnings                              | `restricted`   | `pending`      |
| Configured partner webhook receiver       | `run_event`                 | `body.id`                                          | Identify the durable event                                               | `confidential` | `pending`      |
| Configured partner webhook receiver       | `run_event`                 | `body.type`                                        | Identify the event type                                                  | `confidential` | `pending`      |
| Configured partner webhook receiver       | `run_event`                 | `body.webhook_version`                             | Version the webhook contract                                             | `public`       | `pending`      |
| Configured partner webhook receiver       | `run_event`                 | `headers.Authorization`                            | Authenticate to an optionally protected receiver                         | `confidential` | `pending`      |
| Configured partner webhook receiver       | `run_event`                 | `headers.Content-Type`                             | Declare JSON payload encoding                                            | `public`       | `pending`      |
| Configured partner webhook receiver       | `run_event`                 | `headers.User-Agent`                               | Identify the webhook sender                                              | `public`       | `pending`      |
| Configured partner webhook receiver       | `run_event`                 | `headers.X-Nexio-Delivery`                         | Support receiver deduplication                                           | `confidential` | `pending`      |
| Configured partner webhook receiver       | `run_event`                 | `headers.X-Nexio-Event`                            | Identify the event type                                                  | `confidential` | `pending`      |
| Configured partner webhook receiver       | `run_event`                 | `headers.X-Nexio-Signature`                        | Authenticate exact request bytes                                         | `confidential` | `pending`      |
| Configured partner webhook receiver       | `run_event`                 | `headers.X-Nexio-Timestamp`                        | Support signature freshness validation                                   | `confidential` | `pending`      |
| Configured partner webhook receiver       | `run_event`                 | `headers.X-Nexio-Webhook-Version`                  | Version the webhook contract                                             | `public`       | `pending`      |

Processing is limited to the listed fields and purposes. Undeclared processor references fail closed. Final live approval remains an environment launch condition.
