Overview

Security

Compliance

Audit

Procurement

Security posture

Vendor questionnaire results for He Was Socrates — Education Edition. Most enterprise SaaS controls auto-pass because the application runs entirely on the user's macOS device with no network.client / network.server entitlement. Absence of cloud surface is the control. SSO/SCIM marked N/A — single-user desktop app, not a multi-tenant service.

Control checklist · 8 items

source: HeWasSocrates.entitlements · CLAUDE.md invariant #1

✓

Data Residencydevice-local only · no cross-border transfer possible

AUTO-PASS

✓

Encryption at RestAPFS native FileVault-compatible · OS-managed

AUTO-PASS

✓

Encryption in Transitno transit · NO-CLOUD invariant (egress = 0 byte / 24h)

AUTO-PASS

⊘

SSO / SAML 2.0not applicable · single-user desktop application

N/A

⊘

SCIM 2.0 Provisioningnot applicable · no central user directory

N/A

▢

SOC 2 Type IItypical hackathon submission · roadmap H2 2026

PENDING

✓

Audit Loglocal SQLite · ~/Library/Containers/.../wondering.sqlite

PASS

✓

Egress Monitoring0 byte / 24h · entitlements file is the control

AUTO-PASS

Network egress · last 24h

measured: macOS Activity Monitor + Little Snitch counter

Outbound

0 B

↓ 0 packets

DNS queries

no resolver calls

TLS conns

no sockets opened

evidence — HeWasSocrates.entitlements (excerpt)

<key>com.apple.security.app-sandbox</key> <true/> <key>com.apple.security.device.audio-input</key> <true/>

Audit log · live tail (read-only)

store: SQLite · SHA-256 fingerprint dedup · CC-BY-4.0 export

2026-05-07T09:14:02+09:00 turn.start session=a3f9 mode=listening 2026-05-07T09:14:05+09:00 stt.partial bytes_out=0 on_device=true 2026-05-07T09:14:07+09:00 fc.dispatch fn=mode_classify → mode=ASK 2026-05-07T09:14:07+09:00 fc.dispatch fn=ask_back ttft_ms=192 2026-05-07T09:14:09+09:00 tts.speak voice=Yuna(ko) viseme=on phase=speaking 2026-05-07T09:14:18+09:00 turn.end net_egress_bytes=0 2026-05-07T09:15:42+09:00 turn.start session=a3fa mode=listening 2026-05-07T09:15:48+09:00 fc.dispatch fn=defer_to_human topic=medical 2026-05-07T09:15:48+09:00 policy.hit ⊘ 그건 의사의 영역이야. 2026-05-07T09:15:49+09:00 turn.end net_egress_bytes=0 2026-05-07T09:16:11+09:00 log.export format=jsonl rows=842 dest=~/Desktop/wondering-2026-05-07.jsonl

export path: ~/Library/Containers/com.twoweeks.HeWasSocrates/Data/Library/Application Support/wondering.sqlite

live previewdevice · airplane-mode OK

왜 그렇게 생각해?

— Korean 단정한 평어체 · verbatim SystemPrompt.swift

Architecture summary

CLAUDE.md · invariants 1–6

Inference	on-device · MLX
Model	Gemma 4 E4B 4-bit
STT	on-device · Apple
TTS	AVSpeechSynthesizer
TTFT median	192 ms (PR-Λ)
Net egress	0 B / 24h

Reviewer notes

internal

Vendor risk: low — no cloud surface to compromise.
FERPA / 개인정보보호법 — student utterances never leave device.
Procurement path: site-license desktop, not SaaS subscription.
Re-review trigger: any future network.client entitlement.

Procurement summary · pilot-district-01

prepared for: District CTO · Legal counsel · InfoSec

FY 2026 · prepared 2026-05-07

Yearly cost

no per-seat fee · no usage tier

Vendor lock-in

None

Apache-2.0 · CC-BY-4.0 assets

Required IT review

Minimal

no cloud accounts · no DPA needed

Time to deploy

≈ 1 day

image + first-launch weight pull

Recommendation: Approved for pilot — green-light contingent on SOC2 roadmap acknowledgement. signature on file · J. Kim, InfoSec

He Was Socrates — Education Edition · single-user desktop app · macOS 26+ spec lock e5dfadf2c8…314c5 · build 2026-05-07