Privacy data marking system — unified sensitive resource management with pre-operation checks and audit logging.
| Level | Meaning | Example |
|---|---|---|
| ------- | --------- | --------- |
owner_only | Owner can view/use only | Photos, personal info |
private | No external disclosure, internal use OK | Model info, API keys |
no_export | Must not leave the machine | Memory files, ontology |
public | Free to use | Non-sensitive data |
# Mark a file or directory
python scripts/registry.py mark media/images/people/ --level owner_only --reason "Family photos"
# Mark a rule category
python scripts/registry.py mark --type rule "model_info" --level private --reason "Infrastructure"
# Check if a resource can be shared
python scripts/registry.py check media/images/people/photo.jpg --action share
# Check privacy level only
python scripts/registry.py check media/images/people/photo.jpg
python scripts/registry.py list
python scripts/registry.py list --level owner_only
python scripts/registry.py unmark media/images/old-photo.jpg
python scripts/registry.py audit
python scripts/registry.py audit --deny-only
Before any data output operation:
python scripts/registry.py check --action owner_only → Output only when owner requestsprivate → No external disclosure, internal processing OKno_export → Never leave this machineLocation: data/privacy-registry.json
{
"version": "1.0.0",
"rules": {
"photos": {"level": "owner_only", "reason": "Family photos"},
"model_info": {"level": "private", "reason": "Infrastructure"}
},
"resources": [
{
"path": "media/images/people/",
"level": "owner_only",
"reason": "Family photos",
"marked_at": "2026-03-20T09:53:00+08:00"
}
]
}
--privacy flag)共 1 个版本