@thinkai/tai-api-contract 2.48.0 → 2.50.0-pr.877.6ff333f6

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
@@ -66,6 +66,156 @@ export interface paths {
66
66
  patch?: never;
67
67
  trace?: never;
68
68
  };
69
+ "/privacy-requests": {
70
+ parameters: {
71
+ query?: never;
72
+ header?: never;
73
+ path?: never;
74
+ cookie?: never;
75
+ };
76
+ get?: never;
77
+ put?: never;
78
+ /**
79
+ * Submit a privacy rights request (public)
80
+ * @description Public, unauthenticated intake for data subject access, erasure, portability, rectification, restriction, and objection requests (#611). No bearer token required.
81
+ * **Abuse controls:** requests are rate limited per client IP (`429` with `Retry-After` when exceeded). A hidden honeypot field (`companyWebsite`) silently absorbs bot submissions. The response shape is identical whether or not the email matches an existing account, so the endpoint cannot be used to enumerate users. Duplicate open requests for the same email and request type within 24h are rejected with `409`.
82
+ * **Identity is not proven** by this route; privacy ops must verify identity before any export or erasure is fulfilled.
83
+ */
84
+ post: operations["submitPublicPrivacyRequest"];
85
+ delete?: never;
86
+ options?: never;
87
+ head?: never;
88
+ patch?: never;
89
+ trace?: never;
90
+ };
91
+ "/me/privacy-requests": {
92
+ parameters: {
93
+ query?: never;
94
+ header?: never;
95
+ path?: never;
96
+ cookie?: never;
97
+ };
98
+ /**
99
+ * List the caller's privacy requests
100
+ * @description Returns privacy requests whose subject is the authenticated caller (matched by user id or email), limited to a reference code and status so callers can track progress.
101
+ */
102
+ get: operations["listMyPrivacyRequests"];
103
+ put?: never;
104
+ /**
105
+ * Submit a privacy request as the authenticated user
106
+ * @description Authenticated intake. The subject is always the caller's own profile; the request is auto-marked identity-verified because the JWT proves identity. Supplying an `email` that does not match the caller is rejected with `400`.
107
+ */
108
+ post: operations["submitMyPrivacyRequest"];
109
+ delete?: never;
110
+ options?: never;
111
+ head?: never;
112
+ patch?: never;
113
+ trace?: never;
114
+ };
115
+ "/workspaces/{workspaceId}/privacy-requests": {
116
+ parameters: {
117
+ query?: never;
118
+ header?: never;
119
+ path?: never;
120
+ cookie?: never;
121
+ };
122
+ get?: never;
123
+ put?: never;
124
+ /**
125
+ * Submit a privacy request on behalf of a workspace member (B2B controller)
126
+ * @description Workspace-admin route for B2B controllers to raise a privacy request on behalf of an employee (`subjectEmail`). The request is bound to the workspace and requires manual identity verification by privacy ops before fulfillment. Non-admin members receive `403`.
127
+ */
128
+ post: operations["submitWorkspacePrivacyRequest"];
129
+ delete?: never;
130
+ options?: never;
131
+ head?: never;
132
+ patch?: never;
133
+ trace?: never;
134
+ };
135
+ "/admin/privacy-requests": {
136
+ parameters: {
137
+ query?: never;
138
+ header?: never;
139
+ path?: never;
140
+ cookie?: never;
141
+ };
142
+ /**
143
+ * List privacy requests (privacy-ops queue)
144
+ * @description Platform-admin queue of privacy requests, newest first, with SLA due dates for triage.
145
+ * **Authorization:** Bearer JWT required. Caller email must appear in `PLATFORM_ADMIN_EMAILS`.
146
+ */
147
+ get: operations["adminListPrivacyRequests"];
148
+ put?: never;
149
+ post?: never;
150
+ delete?: never;
151
+ options?: never;
152
+ head?: never;
153
+ patch?: never;
154
+ trace?: never;
155
+ };
156
+ "/admin/privacy-requests/{requestId}": {
157
+ parameters: {
158
+ query?: never;
159
+ header?: never;
160
+ path?: never;
161
+ cookie?: never;
162
+ };
163
+ /** Get a privacy request with its event timeline */
164
+ get: operations["adminGetPrivacyRequest"];
165
+ put?: never;
166
+ post?: never;
167
+ delete?: never;
168
+ options?: never;
169
+ head?: never;
170
+ /**
171
+ * Update a privacy request (status, assignee, notes, identity verification)
172
+ * @description Update workflow fields. Setting `markIdentityVerified: true` records the verifying admin and unlocks export and erasure fulfillment. Transitioning `status` to `completed` requires both `fulfillmentAction` and `fulfillmentRef`.
173
+ */
174
+ patch: operations["adminUpdatePrivacyRequest"];
175
+ trace?: never;
176
+ };
177
+ "/admin/privacy-requests/{requestId}/export": {
178
+ parameters: {
179
+ query?: never;
180
+ header?: never;
181
+ path?: never;
182
+ cookie?: never;
183
+ };
184
+ get?: never;
185
+ put?: never;
186
+ /**
187
+ * Generate a DSAR export bundle for a privacy request
188
+ * @description Assembles the subject's personal data across workspaces into a single JSON bundle for an access or portability request, per the PII inventory scope. The subject is resolved by user id or email. Blocked until identity is verified (`403 identity_not_verified`). Bundles larger than the size cap return `413 export_too_large`; scope by workspace in that case. The bundle is generated on demand and not persisted server-side.
189
+ * **Authorization:** Bearer JWT required. Caller email must appear in `PLATFORM_ADMIN_EMAILS`.
190
+ */
191
+ post: operations["adminExportPrivacyRequest"];
192
+ delete?: never;
193
+ options?: never;
194
+ head?: never;
195
+ patch?: never;
196
+ trace?: never;
197
+ };
198
+ "/admin/privacy-requests/{requestId}/fulfill/person-erasure": {
199
+ parameters: {
200
+ query?: never;
201
+ header?: never;
202
+ path?: never;
203
+ cookie?: never;
204
+ };
205
+ get?: never;
206
+ put?: never;
207
+ /**
208
+ * Fulfill an erasure request by erasing workspace person-level data
209
+ * @description Thin wrapper around workspace person-level insights erasure (#706) for privacy-request fulfillment. Erases or anonymizes the subject's org-chart, AI-tool, dashboard, absence, and readiness data in one workspace. Blocked until identity is verified. Records an audit event on the privacy request with the categories erased.
210
+ * **Authorization:** Bearer JWT required. Caller email must appear in `PLATFORM_ADMIN_EMAILS`.
211
+ */
212
+ post: operations["adminFulfillPrivacyRequestPersonErasure"];
213
+ delete?: never;
214
+ options?: never;
215
+ head?: never;
216
+ patch?: never;
217
+ trace?: never;
218
+ };
69
219
  "/me": {
70
220
  parameters: {
71
221
  query?: never;
@@ -597,7 +747,7 @@ export interface paths {
597
747
  };
598
748
  /**
599
749
  * AI usage & spend insights — AI-assisted code percentage
600
- * @description Period and weekly AI-assisted code percentage for the Measure **AI-assisted code** card on `/phase-c/c7` and the **AI impact** curve on `/phase-c/c4`. When scoped productivity metrics include `aiAssistedContributionRatioPercent`, values are **measured** from ingest; otherwise the API falls back to token→LOC heuristics and sets `dataQuality` to **estimated**. Clients should not present estimated series as Cursor-measured signal.
750
+ * @description Period and weekly AI-assisted code percentage for the Measure **AI-assisted code** card on `/phase-c/c7` and the **AI impact** curve on `/phase-c/c4`. When engagement daily rows exist for the scope, values are **measured** from Σ `ai_lines_added` ÷ merged-PR lines (`dashboard_metrics`); otherwise the API falls back to token→LOC heuristics and sets `dataQuality` to **estimated**. Clients should not present estimated series as editor-measured signal.
601
751
  */
602
752
  get: operations["getAiUsageSpendAiAssistedCodePercentage"];
603
753
  put?: never;
@@ -608,6 +758,26 @@ export interface paths {
608
758
  patch?: never;
609
759
  trace?: never;
610
760
  };
761
+ "/workspaces/{workspaceId}/insights/ai-usage-spend/provider-engagement-insights": {
762
+ parameters: {
763
+ query?: never;
764
+ header?: never;
765
+ path?: never;
766
+ cookie?: never;
767
+ };
768
+ /**
769
+ * AI usage & spend insights — provider engagement cards
770
+ * @description Provider-specific engagement insight metrics derived from `tai_workspace_ai_tool_engagement_daily` (accepted AI lines, tab completions, suggestion accept rates, Claude Code sessions, etc.). Metrics are **provider- and data-gated**: structurally absent signals render as N/A, not zero. Claude per-user cards require Enterprise Analytics (`insightsPlan` ≠ team).
771
+ */
772
+ get: operations["getAiUsageSpendProviderEngagementInsights"];
773
+ put?: never;
774
+ post?: never;
775
+ delete?: never;
776
+ options?: never;
777
+ head?: never;
778
+ patch?: never;
779
+ trace?: never;
780
+ };
611
781
  "/workspaces/{workspaceId}/insights/ai-usage-spend/ai-tool-usage-spend": {
612
782
  parameters: {
613
783
  query?: never;
@@ -2630,6 +2800,21 @@ export interface components {
2630
2800
  /** @description Applied team name filter from the Measure UI. */
2631
2801
  team: string;
2632
2802
  };
2803
+ /**
2804
+ * @description Echo of the resolved time bucket for this response. `day` when the request used an `Nd`/`cr:`/`from`+`to` window; `week` for legacy weekly rangeIds or `year` heatmap mode.
2805
+ * @enum {string}
2806
+ */
2807
+ ProductivityInsightsGranularity: "day" | "week";
2808
+ ProductivityInsightsDailyBucketDto: {
2809
+ /**
2810
+ * Format: date
2811
+ * @description UTC calendar day (`YYYY-MM-DD`).
2812
+ */
2813
+ date: string;
2814
+ mergedPrCount: number;
2815
+ /** @description GitHub Actions CI build failures on this day from `ciFailureRuns` ledger when CI ingest is enabled. */
2816
+ ciFailuresCount?: number;
2817
+ };
2633
2818
  ProductivityInsightsAggregatedTeamWeekDto: {
2634
2819
  /** Format: date-time */
2635
2820
  bucketStart: string;
@@ -2662,17 +2847,27 @@ export interface components {
2662
2847
  managerLabel?: string;
2663
2848
  /** @description True when the team aggregates GitHub logins not mapped in the org chart (`teamId` `__other`). */
2664
2849
  notInOrgChart?: boolean;
2665
- weeks: components["schemas"]["ProductivityInsightsAggregatedTeamWeekDto"][];
2850
+ /** @description Present in day-mode responses — daily merged PR and CI failure counts. */
2851
+ days?: components["schemas"]["ProductivityInsightsDailyBucketDto"][];
2852
+ weeks?: components["schemas"]["ProductivityInsightsAggregatedTeamWeekDto"][];
2666
2853
  };
2667
- /**
2668
- * @description Weekly bucket count (`4w`=4, `8w`=8, `12w`=12, `16w`=16). Legacy `q` aliases 12 weeks.
2669
- * @enum {string}
2670
- */
2671
- ProductivityInsightsRangeId: "4w" | "8w" | "q" | "12w" | "16w";
2854
+ /** @description Daily windows: `7d`, `30d`, `90d`, `180d`, or custom `cr:YYYY-MM-DD:YYYY-MM-DD`. Weekly legacy: `4w`, `8w`, `q` (12 weeks), `12w`, `16w`. */
2855
+ ProductivityInsightsRangeId: string;
2672
2856
  ProductivityInsightsAggregatedTeamsDto: {
2673
2857
  /** Format: uuid */
2674
2858
  workspaceId: string;
2675
2859
  range: components["schemas"]["ProductivityInsightsRangeId"];
2860
+ granularity?: components["schemas"]["ProductivityInsightsGranularity"];
2861
+ /**
2862
+ * Format: date
2863
+ * @description Inclusive start day when `granularity` is `day`.
2864
+ */
2865
+ from?: string;
2866
+ /**
2867
+ * Format: date
2868
+ * @description Inclusive end day when `granularity` is `day`.
2869
+ */
2870
+ to?: string;
2676
2871
  scope: components["schemas"]["ProductivityInsightsAggregatedTeamsScopeDto"];
2677
2872
  /** Format: date-time */
2678
2873
  generatedAt: string;
@@ -2700,17 +2895,32 @@ export interface components {
2700
2895
  notInOrgChart?: boolean;
2701
2896
  /** @description GitHub login for unattributed contributors (when notInOrgChart is true). */
2702
2897
  githubLogin?: string;
2703
- weeks: components["schemas"]["ProductivityInsightsMergedPrTrendWeekDto"][];
2898
+ /** @description Present in day-mode responses — daily merged PR counts per contributor. */
2899
+ days?: components["schemas"]["ProductivityInsightsDailyBucketDto"][];
2900
+ weeks?: components["schemas"]["ProductivityInsightsMergedPrTrendWeekDto"][];
2704
2901
  };
2705
2902
  ProductivityInsightsMergedPrTrendsDto: {
2706
2903
  /** Format: uuid */
2707
2904
  workspaceId: string;
2708
2905
  range: components["schemas"]["ProductivityInsightsRangeId"];
2906
+ granularity?: components["schemas"]["ProductivityInsightsGranularity"];
2907
+ /**
2908
+ * Format: date
2909
+ * @description Inclusive start day when `granularity` is `day`.
2910
+ */
2911
+ from?: string;
2912
+ /**
2913
+ * Format: date
2914
+ * @description Inclusive end day when `granularity` is `day`.
2915
+ */
2916
+ to?: string;
2709
2917
  scope: components["schemas"]["ProductivityInsightsAggregatedTeamsScopeDto"];
2710
2918
  /** Format: date-time */
2711
2919
  generatedAt: string;
2712
- /** @description Sum of contributor weekly merged PR counts (matches the contributors table). Not deduplicated org-wide unique PRs when the same PR appears on multiple rows. */
2713
- weeks: components["schemas"]["ProductivityInsightsMergedPrTrendWeekDto"][];
2920
+ /** @description Portfolio daily merged PR series in day mode (max of contributor sum and org ledger). */
2921
+ days?: components["schemas"]["ProductivityInsightsDailyBucketDto"][];
2922
+ /** @description Sum of contributor weekly merged PR counts (matches the contributors table). Not deduplicated org-wide unique PRs when the same PR appears on multiple rows. Present in week-mode responses. */
2923
+ weeks?: components["schemas"]["ProductivityInsightsMergedPrTrendWeekDto"][];
2714
2924
  contributors: components["schemas"]["ProductivityInsightsMergedPrContributorRowDto"][];
2715
2925
  };
2716
2926
  ProductivityInsightsTeamLeaderItemDto: {
@@ -2745,18 +2955,31 @@ export interface components {
2745
2955
  notInOrgChart?: boolean;
2746
2956
  /** @description Present when the request included `year` — calendar-year heatmap mode. */
2747
2957
  year?: number;
2958
+ /** @description Daily merged PR and CI failure counts for the selected period when `granularity` is `day` (not present in `year` heatmap mode). */
2959
+ days?: components["schemas"]["ProductivityInsightsDailyBucketDto"][];
2748
2960
  /** @description Daily buckets aggregated from ingested person-level merged PR events for the selected period range or calendar year (same source as memberContributors). */
2749
2961
  heatmapWeeks?: components["schemas"]["ProductivityInsightsContributorActivityWeekDto"][];
2750
2962
  heatmapSummary?: components["schemas"]["ProductivityInsightsContributorActivitySummaryDto"];
2751
2963
  /** @description Per-member merged PR weekly series for the selected period or year — person-level source aligned with heatmapWeeks and the team roster table. */
2752
2964
  memberContributors?: components["schemas"]["ProductivityInsightsMergedPrContributorRowDto"][];
2753
- weeks: components["schemas"]["ProductivityInsightsAggregatedTeamWeekDto"][];
2965
+ weeks?: components["schemas"]["ProductivityInsightsAggregatedTeamWeekDto"][];
2754
2966
  summary: components["schemas"]["ProductivityInsightsTeamSummaryDto"];
2755
2967
  };
2756
2968
  ProductivityInsightsTeamsResponseDto: {
2757
2969
  /** Format: uuid */
2758
2970
  workspaceId: string;
2759
2971
  range: components["schemas"]["ProductivityInsightsRangeId"];
2972
+ granularity?: components["schemas"]["ProductivityInsightsGranularity"];
2973
+ /**
2974
+ * Format: date
2975
+ * @description Inclusive start day when `granularity` is `day`.
2976
+ */
2977
+ from?: string;
2978
+ /**
2979
+ * Format: date
2980
+ * @description Inclusive end day when `granularity` is `day`.
2981
+ */
2982
+ to?: string;
2760
2983
  /** @description Present when the request included `year` — calendar-year heatmap mode. */
2761
2984
  year?: number;
2762
2985
  scope: components["schemas"]["ProductivityInsightsAggregatedTeamsScopeDto"];
@@ -2840,6 +3063,17 @@ export interface components {
2840
3063
  workspaceId: string;
2841
3064
  contributorId: string;
2842
3065
  range: components["schemas"]["ProductivityInsightsRangeId"];
3066
+ granularity?: components["schemas"]["ProductivityInsightsGranularity"];
3067
+ /**
3068
+ * Format: date
3069
+ * @description Inclusive start day when `granularity` is `day`.
3070
+ */
3071
+ from?: string;
3072
+ /**
3073
+ * Format: date
3074
+ * @description Inclusive end day when `granularity` is `day`.
3075
+ */
3076
+ to?: string;
2843
3077
  /** @description Present when the request included `year` — calendar-year heatmap mode. */
2844
3078
  year?: number;
2845
3079
  scope: components["schemas"]["ProductivityInsightsAggregatedTeamsScopeDto"];
@@ -2848,7 +3082,9 @@ export interface components {
2848
3082
  /** @description True when the workspace has opted in to GitHub Actions CI ingest. */
2849
3083
  githubActionsCiEnabled?: boolean;
2850
3084
  contributor: components["schemas"]["ProductivityInsightsContributorProfileDto"];
2851
- weeks: components["schemas"]["ProductivityInsightsContributorActivityWeekDto"][];
3085
+ /** @description Daily merged PR and CI failure counts for the selected period when `granularity` is `day` (not present in `year` heatmap mode). */
3086
+ days?: components["schemas"]["ProductivityInsightsDailyBucketDto"][];
3087
+ weeks?: components["schemas"]["ProductivityInsightsContributorActivityWeekDto"][];
2852
3088
  summary: components["schemas"]["ProductivityInsightsContributorActivitySummaryDto"];
2853
3089
  };
2854
3090
  ProductivityInsightsNeedsAttentionItemDto: {
@@ -2872,6 +3108,17 @@ export interface components {
2872
3108
  /** Format: uuid */
2873
3109
  workspaceId: string;
2874
3110
  range: components["schemas"]["ProductivityInsightsRangeId"];
3111
+ granularity?: components["schemas"]["ProductivityInsightsGranularity"];
3112
+ /**
3113
+ * Format: date
3114
+ * @description Inclusive start day when `granularity` is `day`.
3115
+ */
3116
+ from?: string;
3117
+ /**
3118
+ * Format: date
3119
+ * @description Inclusive end day when `granularity` is `day`.
3120
+ */
3121
+ to?: string;
2875
3122
  scope: components["schemas"]["ProductivityInsightsAggregatedTeamsScopeDto"];
2876
3123
  /** @enum {string} */
2877
3124
  entityType: "teams" | "contributors";
@@ -3021,6 +3268,32 @@ export interface components {
3021
3268
  totalSpendCents?: number;
3022
3269
  weeks: components["schemas"]["AiUsageSpendAiAssistedCodeWeekDto"][];
3023
3270
  };
3271
+ /** @enum {string} */
3272
+ ProviderEngagementInsightAvailability: "measured" | "not_applicable";
3273
+ AiUsageSpendProviderEngagementMetricDto: {
3274
+ id: string;
3275
+ label: string;
3276
+ value: number | null;
3277
+ displayValue: string;
3278
+ availability: components["schemas"]["ProviderEngagementInsightAvailability"];
3279
+ unit?: string;
3280
+ methodologyNote?: string;
3281
+ };
3282
+ AiUsageSpendProviderEngagementCardDto: {
3283
+ providerId: string;
3284
+ providerName: string;
3285
+ metrics: components["schemas"]["AiUsageSpendProviderEngagementMetricDto"][];
3286
+ };
3287
+ AiUsageSpendProviderEngagementInsightsDto: {
3288
+ /** Format: uuid */
3289
+ workspaceId: string;
3290
+ /** @enum {string} */
3291
+ range: "4w" | "8w" | "q";
3292
+ scope: components["schemas"]["ProductivityInsightsAggregatedTeamsScopeDto"];
3293
+ /** Format: date-time */
3294
+ generatedAt: string;
3295
+ providers: components["schemas"]["AiUsageSpendProviderEngagementCardDto"][];
3296
+ };
3024
3297
  AiUsageSpendAiToolUsageSpendProviderItemDto: {
3025
3298
  providerId: string;
3026
3299
  providerName: string;
@@ -3181,6 +3454,8 @@ export interface components {
3181
3454
  name: string;
3182
3455
  roles: string[];
3183
3456
  defaultWorkspaceId?: string | null;
3457
+ /** @description True when the caller's email is on the `PLATFORM_ADMIN_EMAILS` allowlist. Lets the frontend gate platform-admin surfaces (e.g. the privacy-request queue) without duplicating the allowlist client-side. */
3458
+ isPlatformAdmin?: boolean;
3184
3459
  };
3185
3460
  UpdateMeBodyDto: {
3186
3461
  name?: string;
@@ -3194,6 +3469,190 @@ export interface components {
3194
3469
  */
3195
3470
  email: string;
3196
3471
  };
3472
+ /**
3473
+ * @description Data subject right being exercised (GDPR Arts. 15–21 / UAE PDPL).
3474
+ * @enum {string}
3475
+ */
3476
+ PrivacyRequestType: "access" | "erasure" | "portability" | "rectification" | "restriction" | "objection";
3477
+ /**
3478
+ * @description Workflow status of a privacy request.
3479
+ * @enum {string}
3480
+ */
3481
+ PrivacyRequestStatus: "pending" | "in_progress" | "completed" | "rejected";
3482
+ /**
3483
+ * @description How the request was submitted.
3484
+ * @enum {string}
3485
+ */
3486
+ PrivacyRequestIntakeChannel: "public" | "authenticated" | "workspace_admin";
3487
+ CreatePrivacyRequestBodyDto: {
3488
+ /**
3489
+ * Format: email
3490
+ * @description Subject's email address.
3491
+ */
3492
+ email: string;
3493
+ requestType: components["schemas"]["PrivacyRequestType"];
3494
+ /** @description Optional free-text description of the request (max 4000 chars). */
3495
+ details?: string;
3496
+ /** @description Optional free-text hint (e.g. company or workspace name) to help privacy ops locate the subject. Never bound to a workspace id on the public channel. */
3497
+ workspaceHint?: string;
3498
+ /** @description Honeypot field. Must be left empty by real clients; non-empty submissions are silently accepted but not persisted. Rendered hidden in the UI. */
3499
+ companyWebsite?: string;
3500
+ };
3501
+ CreateMyPrivacyRequestBodyDto: {
3502
+ requestType: components["schemas"]["PrivacyRequestType"];
3503
+ details?: string;
3504
+ /**
3505
+ * Format: email
3506
+ * @description Optional. If provided it must match the caller's own email; a differing value is rejected with `400 email_override_rejected`.
3507
+ */
3508
+ email?: string;
3509
+ };
3510
+ CreateWorkspacePrivacyRequestBodyDto: {
3511
+ /**
3512
+ * Format: email
3513
+ * @description Email of the workspace member the request is raised on behalf of.
3514
+ */
3515
+ subjectEmail: string;
3516
+ requestType: components["schemas"]["PrivacyRequestType"];
3517
+ details?: string;
3518
+ };
3519
+ CreatePrivacyRequestResultDto: {
3520
+ /** @description Human-friendly tracking code (e.g. `PR-2026-00042`). */
3521
+ referenceCode: string;
3522
+ requestType: components["schemas"]["PrivacyRequestType"];
3523
+ status: components["schemas"]["PrivacyRequestStatus"];
3524
+ /**
3525
+ * Format: date-time
3526
+ * @description When the request should be resolved by (default 30 days from submission).
3527
+ */
3528
+ slaDueAt: string;
3529
+ };
3530
+ MyPrivacyRequestSummaryDto: {
3531
+ referenceCode: string;
3532
+ requestType: components["schemas"]["PrivacyRequestType"];
3533
+ status: components["schemas"]["PrivacyRequestStatus"];
3534
+ /** Format: date-time */
3535
+ createdAt: string;
3536
+ /** Format: date-time */
3537
+ slaDueAt: string;
3538
+ /** Format: date-time */
3539
+ completedAt?: string | null;
3540
+ };
3541
+ MyPrivacyRequestListDto: {
3542
+ requests: components["schemas"]["MyPrivacyRequestSummaryDto"][];
3543
+ };
3544
+ PrivacyRequestDto: {
3545
+ /** Format: uuid */
3546
+ id: string;
3547
+ referenceCode: string;
3548
+ requestType: components["schemas"]["PrivacyRequestType"];
3549
+ status: components["schemas"]["PrivacyRequestStatus"];
3550
+ intakeChannel: components["schemas"]["PrivacyRequestIntakeChannel"];
3551
+ subjectEmail: string;
3552
+ /** Format: uuid */
3553
+ subjectUserId?: string | null;
3554
+ /**
3555
+ * Format: uuid
3556
+ * @description Set only for workspace-admin (B2B) submissions.
3557
+ */
3558
+ workspaceId?: string | null;
3559
+ subjectWorkspaceHint?: string | null;
3560
+ /** Format: uuid */
3561
+ requestedByUserId?: string | null;
3562
+ details?: string | null;
3563
+ internalNotes?: string | null;
3564
+ assignedTo?: string | null;
3565
+ /** Format: date-time */
3566
+ identityVerifiedAt?: string | null;
3567
+ verifiedBy?: string | null;
3568
+ fulfillmentAction?: string | null;
3569
+ fulfillmentRef?: string | null;
3570
+ /** Format: date-time */
3571
+ slaDueAt: string;
3572
+ /** Format: date-time */
3573
+ completedAt?: string | null;
3574
+ /** Format: date-time */
3575
+ createdAt: string;
3576
+ /** Format: date-time */
3577
+ updatedAt: string;
3578
+ /** @description True when the SLA due date has passed and the request is not completed/rejected. */
3579
+ overdue?: boolean;
3580
+ };
3581
+ PrivacyRequestEventDto: {
3582
+ /** Format: uuid */
3583
+ id: string;
3584
+ /** @enum {string} */
3585
+ eventType: "submitted" | "identity_verified" | "status_changed" | "assigned" | "export_generated" | "fulfillment_noted" | "duplicate_rejected";
3586
+ actorEmail?: string | null;
3587
+ payload?: {
3588
+ [key: string]: unknown;
3589
+ } | null;
3590
+ /** Format: date-time */
3591
+ createdAt: string;
3592
+ };
3593
+ PrivacyRequestDetailDto: {
3594
+ request: components["schemas"]["PrivacyRequestDto"];
3595
+ events: components["schemas"]["PrivacyRequestEventDto"][];
3596
+ };
3597
+ PrivacyRequestListDto: {
3598
+ requests: components["schemas"]["PrivacyRequestDto"][];
3599
+ };
3600
+ UpdatePrivacyRequestBodyDto: {
3601
+ status?: components["schemas"]["PrivacyRequestStatus"];
3602
+ assignedTo?: string | null;
3603
+ internalNotes?: string | null;
3604
+ /** @description When true, records the caller as the verifier and unlocks export/erasure. */
3605
+ markIdentityVerified?: boolean;
3606
+ /** @description Short label for how the request was fulfilled (required when completing). */
3607
+ fulfillmentAction?: string;
3608
+ /** @description Reference to the fulfillment artifact (e.g. deletion job id; required when completing). */
3609
+ fulfillmentRef?: string;
3610
+ };
3611
+ FulfillPersonErasureBodyDto: {
3612
+ /** Format: uuid */
3613
+ workspaceId: string;
3614
+ /** @description Org-chart person id (usually the subject's email) within the workspace. */
3615
+ personId: string;
3616
+ orgChart?: boolean;
3617
+ dashboardMetrics?: boolean;
3618
+ aiToolData?: boolean;
3619
+ absences?: boolean;
3620
+ readinessAnonymize?: boolean;
3621
+ };
3622
+ PrivacyRequestPersonErasureResultDto: {
3623
+ deleted: boolean;
3624
+ aiToolRowsDeleted?: number;
3625
+ absencesDeleted?: number;
3626
+ readinessRunsAnonymized?: number;
3627
+ auditEntriesAnonymized?: number;
3628
+ };
3629
+ /** @description DSAR export bundle assembled on demand for an access/portability request. `sections` holds the subject's data grouped by source; shapes vary by section, so values are opaque objects. */
3630
+ PrivacyRequestExportDto: {
3631
+ metadata: {
3632
+ referenceCode: string;
3633
+ /** Format: date-time */
3634
+ generatedAt: string;
3635
+ subjectEmail: string;
3636
+ subjectUserId?: string | null;
3637
+ workspaceCount?: number;
3638
+ /** @description Data categories intentionally excluded from the bundle. */
3639
+ excluded?: string[];
3640
+ /** @description Redaction policy applied to readiness runs (e.g. `requester_runs_only`). */
3641
+ readinessRedaction?: string;
3642
+ };
3643
+ /** @description Profile and consent records for the subject. */
3644
+ subject: {
3645
+ [key: string]: unknown;
3646
+ };
3647
+ /** @description Per-source personal data (memberships, AI-tool, dashboard, absences, org chart, activity). */
3648
+ sections?: {
3649
+ [key: string]: unknown;
3650
+ };
3651
+ /** @description Workspaces where person-keyed rows exist but the subject has no membership (#269). */
3652
+ residualPersonData?: {
3653
+ [key: string]: unknown;
3654
+ }[];
3655
+ };
3197
3656
  WorkspaceSummaryDto: {
3198
3657
  id: string;
3199
3658
  slug: string;
@@ -4681,9 +5140,15 @@ export interface components {
4681
5140
  NotificationId: string;
4682
5141
  /** @description Workspace member user id (`tai_users.id`). */
4683
5142
  WorkspaceMemberId: string;
5143
+ /** @description Privacy request id (`tai_privacy_requests.id`). */
5144
+ PrivacyRequestId: string;
4684
5145
  FixId: string;
4685
- /** @description Productivity insights time range in weeks (`4w`=4, `8w`=8, `12w`=12, `16w`=16). Legacy `q` is an alias for 12 weeks. */
4686
- InsightsProductivityRangeId: "4w" | "8w" | "q" | "12w" | "16w";
5146
+ /** @description Productivity insights time range. Daily windows: `7d`, `30d`, `90d`, `180d`, or custom `cr:YYYY-MM-DD:YYYY-MM-DD`. Weekly legacy: `4w`, `8w`, `q` (12 weeks), `12w`, `16w`. Omit when using explicit `from`/`to` day bounds. */
5147
+ InsightsProductivityRangeId: string;
5148
+ /** @description Inclusive start of a daily window (`YYYY-MM-DD`). When set with `to`, overrides `rangeId` for day-mode responses (max 180 days). */
5149
+ InsightsProductivityFrom: string;
5150
+ /** @description Inclusive end of a daily window (`YYYY-MM-DD`). When set with `from`, overrides `rangeId` for day-mode responses (max 180 days). */
5151
+ InsightsProductivityTo: string;
4687
5152
  /** @description Department filter; send `All departments` to include every department. Scoped using imported `thinkai_org_structure` members when present, otherwise SPA org chart `department` nodes and their descendant teams. When neither source defines the requested department, insights return no scoped teams or contributors (not org-wide data). */
4688
5153
  InsightsDepartmentFilter: string;
4689
5154
  /** @description Page size (default 25, max 100). */
@@ -4758,6 +5223,8 @@ export type DashboardProductivityMetricsDto = components['schemas']['DashboardPr
4758
5223
  export type DashboardProductivityDto = components['schemas']['DashboardProductivityDto'];
4759
5224
  export type DashboardProductivityHistoryDto = components['schemas']['DashboardProductivityHistoryDto'];
4760
5225
  export type ProductivityInsightsAggregatedTeamsScopeDto = components['schemas']['ProductivityInsightsAggregatedTeamsScopeDto'];
5226
+ export type ProductivityInsightsGranularity = components['schemas']['ProductivityInsightsGranularity'];
5227
+ export type ProductivityInsightsDailyBucketDto = components['schemas']['ProductivityInsightsDailyBucketDto'];
4761
5228
  export type ProductivityInsightsAggregatedTeamWeekDto = components['schemas']['ProductivityInsightsAggregatedTeamWeekDto'];
4762
5229
  export type ProductivityInsightsAggregatedTeamRowDto = components['schemas']['ProductivityInsightsAggregatedTeamRowDto'];
4763
5230
  export type ProductivityInsightsRangeId = components['schemas']['ProductivityInsightsRangeId'];
@@ -4791,6 +5258,10 @@ export type AiAssistedCodeDataQuality = components['schemas']['AiAssistedCodeDat
4791
5258
  export type AiAssistedCodeEstimationSource = components['schemas']['AiAssistedCodeEstimationSource'];
4792
5259
  export type AiUsageSpendAiAssistedCodeWeekDto = components['schemas']['AiUsageSpendAiAssistedCodeWeekDto'];
4793
5260
  export type AiUsageSpendAiAssistedCodePercentageDto = components['schemas']['AiUsageSpendAiAssistedCodePercentageDto'];
5261
+ export type ProviderEngagementInsightAvailability = components['schemas']['ProviderEngagementInsightAvailability'];
5262
+ export type AiUsageSpendProviderEngagementMetricDto = components['schemas']['AiUsageSpendProviderEngagementMetricDto'];
5263
+ export type AiUsageSpendProviderEngagementCardDto = components['schemas']['AiUsageSpendProviderEngagementCardDto'];
5264
+ export type AiUsageSpendProviderEngagementInsightsDto = components['schemas']['AiUsageSpendProviderEngagementInsightsDto'];
4794
5265
  export type AiUsageSpendAiToolUsageSpendProviderItemDto = components['schemas']['AiUsageSpendAiToolUsageSpendProviderItemDto'];
4795
5266
  export type AiUsageSpendAiToolUsageSpendModelItemDto = components['schemas']['AiUsageSpendAiToolUsageSpendModelItemDto'];
4796
5267
  export type AiUsageSpendAiToolUsageSpendDto = components['schemas']['AiUsageSpendAiToolUsageSpendDto'];
@@ -4811,6 +5282,23 @@ export type AiToolMemberDetailDto = components['schemas']['AiToolMemberDetailDto
4811
5282
  export type MeProfileDto = components['schemas']['MeProfileDto'];
4812
5283
  export type UpdateMeBodyDto = components['schemas']['UpdateMeBodyDto'];
4813
5284
  export type DeleteMeBodyDto = components['schemas']['DeleteMeBodyDto'];
5285
+ export type PrivacyRequestType = components['schemas']['PrivacyRequestType'];
5286
+ export type PrivacyRequestStatus = components['schemas']['PrivacyRequestStatus'];
5287
+ export type PrivacyRequestIntakeChannel = components['schemas']['PrivacyRequestIntakeChannel'];
5288
+ export type CreatePrivacyRequestBodyDto = components['schemas']['CreatePrivacyRequestBodyDto'];
5289
+ export type CreateMyPrivacyRequestBodyDto = components['schemas']['CreateMyPrivacyRequestBodyDto'];
5290
+ export type CreateWorkspacePrivacyRequestBodyDto = components['schemas']['CreateWorkspacePrivacyRequestBodyDto'];
5291
+ export type CreatePrivacyRequestResultDto = components['schemas']['CreatePrivacyRequestResultDto'];
5292
+ export type MyPrivacyRequestSummaryDto = components['schemas']['MyPrivacyRequestSummaryDto'];
5293
+ export type MyPrivacyRequestListDto = components['schemas']['MyPrivacyRequestListDto'];
5294
+ export type PrivacyRequestDto = components['schemas']['PrivacyRequestDto'];
5295
+ export type PrivacyRequestEventDto = components['schemas']['PrivacyRequestEventDto'];
5296
+ export type PrivacyRequestDetailDto = components['schemas']['PrivacyRequestDetailDto'];
5297
+ export type PrivacyRequestListDto = components['schemas']['PrivacyRequestListDto'];
5298
+ export type UpdatePrivacyRequestBodyDto = components['schemas']['UpdatePrivacyRequestBodyDto'];
5299
+ export type FulfillPersonErasureBodyDto = components['schemas']['FulfillPersonErasureBodyDto'];
5300
+ export type PrivacyRequestPersonErasureResultDto = components['schemas']['PrivacyRequestPersonErasureResultDto'];
5301
+ export type PrivacyRequestExportDto = components['schemas']['PrivacyRequestExportDto'];
4814
5302
  export type WorkspaceSummaryDto = components['schemas']['WorkspaceSummaryDto'];
4815
5303
  export type WorkspacesForUserDto = components['schemas']['WorkspacesForUserDto'];
4816
5304
  export type CreateWorkspaceBodyDto = components['schemas']['CreateWorkspaceBodyDto'];
@@ -4950,8 +5438,11 @@ export type ParameterProviderSlug = components['parameters']['ProviderSlug'];
4950
5438
  export type ParameterProjectId = components['parameters']['ProjectId'];
4951
5439
  export type ParameterNotificationId = components['parameters']['NotificationId'];
4952
5440
  export type ParameterWorkspaceMemberId = components['parameters']['WorkspaceMemberId'];
5441
+ export type ParameterPrivacyRequestId = components['parameters']['PrivacyRequestId'];
4953
5442
  export type ParameterFixId = components['parameters']['FixId'];
4954
5443
  export type ParameterInsightsProductivityRangeId = components['parameters']['InsightsProductivityRangeId'];
5444
+ export type ParameterInsightsProductivityFrom = components['parameters']['InsightsProductivityFrom'];
5445
+ export type ParameterInsightsProductivityTo = components['parameters']['InsightsProductivityTo'];
4955
5446
  export type ParameterInsightsDepartmentFilter = components['parameters']['InsightsDepartmentFilter'];
4956
5447
  export type ParameterPaginationLimit = components['parameters']['PaginationLimit'];
4957
5448
  export type ParameterPaginationOffset = components['parameters']['PaginationOffset'];
@@ -5164,14 +5655,485 @@ export interface operations {
5164
5655
  };
5165
5656
  };
5166
5657
  };
5167
- getMe: {
5658
+ submitPublicPrivacyRequest: {
5168
5659
  parameters: {
5169
5660
  query?: never;
5170
5661
  header?: never;
5171
5662
  path?: never;
5172
5663
  cookie?: never;
5173
5664
  };
5174
- requestBody?: never;
5665
+ requestBody: {
5666
+ content: {
5667
+ "application/json": components["schemas"]["CreatePrivacyRequestBodyDto"];
5668
+ };
5669
+ };
5670
+ responses: {
5671
+ /** @description Request accepted and queued for privacy ops. */
5672
+ 201: {
5673
+ headers: {
5674
+ [name: string]: unknown;
5675
+ };
5676
+ content: {
5677
+ "application/json": components["schemas"]["CreatePrivacyRequestResultDto"];
5678
+ };
5679
+ };
5680
+ /** @description Missing or invalid email, unknown request type, or details too long. */
5681
+ 400: {
5682
+ headers: {
5683
+ [name: string]: unknown;
5684
+ };
5685
+ content: {
5686
+ /**
5687
+ * @example {
5688
+ * "error": "A valid email is required",
5689
+ * "code": "invalid_email"
5690
+ * }
5691
+ */
5692
+ "application/json": components["schemas"]["ErrorMessageDto"];
5693
+ };
5694
+ };
5695
+ /** @description An open request for this email and type already exists. */
5696
+ 409: {
5697
+ headers: {
5698
+ [name: string]: unknown;
5699
+ };
5700
+ content: {
5701
+ /**
5702
+ * @example {
5703
+ * "error": "An open request for this email already exists",
5704
+ * "code": "duplicate_open_request"
5705
+ * }
5706
+ */
5707
+ "application/json": components["schemas"]["ErrorMessageDto"];
5708
+ };
5709
+ };
5710
+ /** @description Too many submissions from this client; retry later. */
5711
+ 429: {
5712
+ headers: {
5713
+ [name: string]: unknown;
5714
+ };
5715
+ content: {
5716
+ /**
5717
+ * @example {
5718
+ * "error": "Too many requests",
5719
+ * "code": "too_many_requests"
5720
+ * }
5721
+ */
5722
+ "application/json": components["schemas"]["ErrorMessageDto"];
5723
+ };
5724
+ };
5725
+ };
5726
+ };
5727
+ listMyPrivacyRequests: {
5728
+ parameters: {
5729
+ query?: never;
5730
+ header?: never;
5731
+ path?: never;
5732
+ cookie?: never;
5733
+ };
5734
+ requestBody?: never;
5735
+ responses: {
5736
+ /** @description Caller's privacy requests, newest first. */
5737
+ 200: {
5738
+ headers: {
5739
+ [name: string]: unknown;
5740
+ };
5741
+ content: {
5742
+ "application/json": components["schemas"]["MyPrivacyRequestListDto"];
5743
+ };
5744
+ };
5745
+ 401: components["responses"]["Unauthorized"];
5746
+ };
5747
+ };
5748
+ submitMyPrivacyRequest: {
5749
+ parameters: {
5750
+ query?: never;
5751
+ header?: never;
5752
+ path?: never;
5753
+ cookie?: never;
5754
+ };
5755
+ requestBody: {
5756
+ content: {
5757
+ "application/json": components["schemas"]["CreateMyPrivacyRequestBodyDto"];
5758
+ };
5759
+ };
5760
+ responses: {
5761
+ /** @description Request accepted and queued. */
5762
+ 201: {
5763
+ headers: {
5764
+ [name: string]: unknown;
5765
+ };
5766
+ content: {
5767
+ "application/json": components["schemas"]["CreatePrivacyRequestResultDto"];
5768
+ };
5769
+ };
5770
+ /** @description Unknown request type, details too long, or email override attempted. */
5771
+ 400: {
5772
+ headers: {
5773
+ [name: string]: unknown;
5774
+ };
5775
+ content: {
5776
+ /**
5777
+ * @example {
5778
+ * "error": "Email cannot be overridden on an authenticated request",
5779
+ * "code": "email_override_rejected"
5780
+ * }
5781
+ */
5782
+ "application/json": components["schemas"]["ErrorMessageDto"];
5783
+ };
5784
+ };
5785
+ 401: components["responses"]["Unauthorized"];
5786
+ /** @description An open request for this subject and type already exists. */
5787
+ 409: {
5788
+ headers: {
5789
+ [name: string]: unknown;
5790
+ };
5791
+ content: {
5792
+ "application/json": components["schemas"]["ErrorMessageDto"];
5793
+ };
5794
+ };
5795
+ };
5796
+ };
5797
+ submitWorkspacePrivacyRequest: {
5798
+ parameters: {
5799
+ query?: never;
5800
+ header?: never;
5801
+ path: {
5802
+ workspaceId: components["parameters"]["WorkspaceId"];
5803
+ };
5804
+ cookie?: never;
5805
+ };
5806
+ requestBody: {
5807
+ content: {
5808
+ "application/json": components["schemas"]["CreateWorkspacePrivacyRequestBodyDto"];
5809
+ };
5810
+ };
5811
+ responses: {
5812
+ /** @description Request accepted and queued. */
5813
+ 201: {
5814
+ headers: {
5815
+ [name: string]: unknown;
5816
+ };
5817
+ content: {
5818
+ "application/json": components["schemas"]["CreatePrivacyRequestResultDto"];
5819
+ };
5820
+ };
5821
+ /** @description Invalid subject email, unknown request type, or details too long. */
5822
+ 400: {
5823
+ headers: {
5824
+ [name: string]: unknown;
5825
+ };
5826
+ content: {
5827
+ "application/json": components["schemas"]["ErrorMessageDto"];
5828
+ };
5829
+ };
5830
+ 401: components["responses"]["Unauthorized"];
5831
+ /** @description Caller is not a workspace admin. */
5832
+ 403: {
5833
+ headers: {
5834
+ [name: string]: unknown;
5835
+ };
5836
+ content: {
5837
+ /**
5838
+ * @example {
5839
+ * "error": "Forbidden",
5840
+ * "code": "workspace_admin_required"
5841
+ * }
5842
+ */
5843
+ "application/json": components["schemas"]["ErrorMessageDto"];
5844
+ };
5845
+ };
5846
+ /** @description Workspace not found. */
5847
+ 404: {
5848
+ headers: {
5849
+ [name: string]: unknown;
5850
+ };
5851
+ content: {
5852
+ "application/json": components["schemas"]["ErrorMessageDto"];
5853
+ };
5854
+ };
5855
+ };
5856
+ };
5857
+ adminListPrivacyRequests: {
5858
+ parameters: {
5859
+ query?: {
5860
+ /** @description Filter by workflow status. */
5861
+ status?: components["schemas"]["PrivacyRequestStatus"];
5862
+ /** @description Filter by request type. */
5863
+ requestType?: components["schemas"]["PrivacyRequestType"];
5864
+ /** @description When true, return only requests past their SLA due date and not yet completed. */
5865
+ overdue?: boolean;
5866
+ /** @description Maximum number of rows to return (default 100, max 200). */
5867
+ limit?: number;
5868
+ };
5869
+ header?: never;
5870
+ path?: never;
5871
+ cookie?: never;
5872
+ };
5873
+ requestBody?: never;
5874
+ responses: {
5875
+ /** @description Privacy request queue. */
5876
+ 200: {
5877
+ headers: {
5878
+ [name: string]: unknown;
5879
+ };
5880
+ content: {
5881
+ "application/json": components["schemas"]["PrivacyRequestListDto"];
5882
+ };
5883
+ };
5884
+ 401: components["responses"]["Unauthorized"];
5885
+ /** @description Caller is not a platform admin. */
5886
+ 403: {
5887
+ headers: {
5888
+ [name: string]: unknown;
5889
+ };
5890
+ content: {
5891
+ /**
5892
+ * @example {
5893
+ * "error": "Forbidden",
5894
+ * "code": "forbidden"
5895
+ * }
5896
+ */
5897
+ "application/json": components["schemas"]["ErrorMessageDto"];
5898
+ };
5899
+ };
5900
+ };
5901
+ };
5902
+ adminGetPrivacyRequest: {
5903
+ parameters: {
5904
+ query?: never;
5905
+ header?: never;
5906
+ path: {
5907
+ /** @description Privacy request id (`tai_privacy_requests.id`). */
5908
+ requestId: components["parameters"]["PrivacyRequestId"];
5909
+ };
5910
+ cookie?: never;
5911
+ };
5912
+ requestBody?: never;
5913
+ responses: {
5914
+ /** @description Privacy request detail with audit timeline. */
5915
+ 200: {
5916
+ headers: {
5917
+ [name: string]: unknown;
5918
+ };
5919
+ content: {
5920
+ "application/json": components["schemas"]["PrivacyRequestDetailDto"];
5921
+ };
5922
+ };
5923
+ 401: components["responses"]["Unauthorized"];
5924
+ /** @description Caller is not a platform admin. */
5925
+ 403: {
5926
+ headers: {
5927
+ [name: string]: unknown;
5928
+ };
5929
+ content: {
5930
+ "application/json": components["schemas"]["ErrorMessageDto"];
5931
+ };
5932
+ };
5933
+ /** @description Request not found. */
5934
+ 404: {
5935
+ headers: {
5936
+ [name: string]: unknown;
5937
+ };
5938
+ content: {
5939
+ "application/json": components["schemas"]["ErrorMessageDto"];
5940
+ };
5941
+ };
5942
+ };
5943
+ };
5944
+ adminUpdatePrivacyRequest: {
5945
+ parameters: {
5946
+ query?: never;
5947
+ header?: never;
5948
+ path: {
5949
+ /** @description Privacy request id (`tai_privacy_requests.id`). */
5950
+ requestId: components["parameters"]["PrivacyRequestId"];
5951
+ };
5952
+ cookie?: never;
5953
+ };
5954
+ requestBody: {
5955
+ content: {
5956
+ "application/json": components["schemas"]["UpdatePrivacyRequestBodyDto"];
5957
+ };
5958
+ };
5959
+ responses: {
5960
+ /** @description Updated privacy request detail. */
5961
+ 200: {
5962
+ headers: {
5963
+ [name: string]: unknown;
5964
+ };
5965
+ content: {
5966
+ "application/json": components["schemas"]["PrivacyRequestDetailDto"];
5967
+ };
5968
+ };
5969
+ /** @description Invalid field value or missing fulfillment metadata for completion. */
5970
+ 400: {
5971
+ headers: {
5972
+ [name: string]: unknown;
5973
+ };
5974
+ content: {
5975
+ /**
5976
+ * @example {
5977
+ * "error": "Completing a request requires a fulfillment action and reference",
5978
+ * "code": "fulfillment_metadata_required"
5979
+ * }
5980
+ */
5981
+ "application/json": components["schemas"]["ErrorMessageDto"];
5982
+ };
5983
+ };
5984
+ 401: components["responses"]["Unauthorized"];
5985
+ /** @description Caller is not a platform admin. */
5986
+ 403: {
5987
+ headers: {
5988
+ [name: string]: unknown;
5989
+ };
5990
+ content: {
5991
+ "application/json": components["schemas"]["ErrorMessageDto"];
5992
+ };
5993
+ };
5994
+ /** @description Request not found. */
5995
+ 404: {
5996
+ headers: {
5997
+ [name: string]: unknown;
5998
+ };
5999
+ content: {
6000
+ "application/json": components["schemas"]["ErrorMessageDto"];
6001
+ };
6002
+ };
6003
+ };
6004
+ };
6005
+ adminExportPrivacyRequest: {
6006
+ parameters: {
6007
+ query?: never;
6008
+ header?: never;
6009
+ path: {
6010
+ /** @description Privacy request id (`tai_privacy_requests.id`). */
6011
+ requestId: components["parameters"]["PrivacyRequestId"];
6012
+ };
6013
+ cookie?: never;
6014
+ };
6015
+ requestBody?: never;
6016
+ responses: {
6017
+ /** @description DSAR export bundle (also offered as a file download via Content-Disposition). */
6018
+ 200: {
6019
+ headers: {
6020
+ [name: string]: unknown;
6021
+ };
6022
+ content: {
6023
+ "application/json": components["schemas"]["PrivacyRequestExportDto"];
6024
+ };
6025
+ };
6026
+ 401: components["responses"]["Unauthorized"];
6027
+ /** @description Caller is not a platform admin, or identity has not been verified. */
6028
+ 403: {
6029
+ headers: {
6030
+ [name: string]: unknown;
6031
+ };
6032
+ content: {
6033
+ /**
6034
+ * @example {
6035
+ * "error": "Identity must be verified before export",
6036
+ * "code": "identity_not_verified"
6037
+ * }
6038
+ */
6039
+ "application/json": components["schemas"]["ErrorMessageDto"];
6040
+ };
6041
+ };
6042
+ /** @description Request not found. */
6043
+ 404: {
6044
+ headers: {
6045
+ [name: string]: unknown;
6046
+ };
6047
+ content: {
6048
+ "application/json": components["schemas"]["ErrorMessageDto"];
6049
+ };
6050
+ };
6051
+ /** @description Export exceeds the size cap; scope the request by workspace. */
6052
+ 413: {
6053
+ headers: {
6054
+ [name: string]: unknown;
6055
+ };
6056
+ content: {
6057
+ /**
6058
+ * @example {
6059
+ * "error": "Export bundle is too large; scope by workspace",
6060
+ * "code": "export_too_large"
6061
+ * }
6062
+ */
6063
+ "application/json": components["schemas"]["ErrorMessageDto"];
6064
+ };
6065
+ };
6066
+ };
6067
+ };
6068
+ adminFulfillPrivacyRequestPersonErasure: {
6069
+ parameters: {
6070
+ query?: never;
6071
+ header?: never;
6072
+ path: {
6073
+ /** @description Privacy request id (`tai_privacy_requests.id`). */
6074
+ requestId: components["parameters"]["PrivacyRequestId"];
6075
+ };
6076
+ cookie?: never;
6077
+ };
6078
+ requestBody: {
6079
+ content: {
6080
+ "application/json": components["schemas"]["FulfillPersonErasureBodyDto"];
6081
+ };
6082
+ };
6083
+ responses: {
6084
+ /** @description Erasure result. */
6085
+ 200: {
6086
+ headers: {
6087
+ [name: string]: unknown;
6088
+ };
6089
+ content: {
6090
+ "application/json": components["schemas"]["PrivacyRequestPersonErasureResultDto"];
6091
+ };
6092
+ };
6093
+ /** @description Missing workspaceId/personId or invalid options. */
6094
+ 400: {
6095
+ headers: {
6096
+ [name: string]: unknown;
6097
+ };
6098
+ content: {
6099
+ "application/json": components["schemas"]["ErrorMessageDto"];
6100
+ };
6101
+ };
6102
+ 401: components["responses"]["Unauthorized"];
6103
+ /** @description Caller is not a platform admin, or identity has not been verified. */
6104
+ 403: {
6105
+ headers: {
6106
+ [name: string]: unknown;
6107
+ };
6108
+ content: {
6109
+ /**
6110
+ * @example {
6111
+ * "error": "Identity must be verified before erasure",
6112
+ * "code": "identity_not_verified"
6113
+ * }
6114
+ */
6115
+ "application/json": components["schemas"]["ErrorMessageDto"];
6116
+ };
6117
+ };
6118
+ /** @description Request not found, or person not found in the workspace org chart. */
6119
+ 404: {
6120
+ headers: {
6121
+ [name: string]: unknown;
6122
+ };
6123
+ content: {
6124
+ "application/json": components["schemas"]["ErrorMessageDto"];
6125
+ };
6126
+ };
6127
+ };
6128
+ };
6129
+ getMe: {
6130
+ parameters: {
6131
+ query?: never;
6132
+ header?: never;
6133
+ path?: never;
6134
+ cookie?: never;
6135
+ };
6136
+ requestBody?: never;
5175
6137
  responses: {
5176
6138
  /** @description Profile */
5177
6139
  200: {
@@ -5994,8 +6956,12 @@ export interface operations {
5994
6956
  getProductivityInsightsAggregatedTeams: {
5995
6957
  parameters: {
5996
6958
  query?: {
5997
- /** @description Productivity insights time range in weeks (`4w`=4, `8w`=8, `12w`=12, `16w`=16). Legacy `q` is an alias for 12 weeks. */
6959
+ /** @description Productivity insights time range. Daily windows: `7d`, `30d`, `90d`, `180d`, or custom `cr:YYYY-MM-DD:YYYY-MM-DD`. Weekly legacy: `4w`, `8w`, `q` (12 weeks), `12w`, `16w`. Omit when using explicit `from`/`to` day bounds. */
5998
6960
  rangeId?: components["parameters"]["InsightsProductivityRangeId"];
6961
+ /** @description Inclusive start of a daily window (`YYYY-MM-DD`). When set with `to`, overrides `rangeId` for day-mode responses (max 180 days). */
6962
+ from?: components["parameters"]["InsightsProductivityFrom"];
6963
+ /** @description Inclusive end of a daily window (`YYYY-MM-DD`). When set with `from`, overrides `rangeId` for day-mode responses (max 180 days). */
6964
+ to?: components["parameters"]["InsightsProductivityTo"];
5999
6965
  /** @description Department filter; send `All departments` to include every department. Scoped using imported `thinkai_org_structure` members when present, otherwise SPA org chart `department` nodes and their descendant teams. When neither source defines the requested department, insights return no scoped teams or contributors (not org-wide data). */
6000
6966
  department?: components["parameters"]["InsightsDepartmentFilter"];
6001
6967
  /** @description Team name filter; send `All teams` to include every team. */
@@ -6046,8 +7012,12 @@ export interface operations {
6046
7012
  getProductivityInsightsMergedPrTrends: {
6047
7013
  parameters: {
6048
7014
  query?: {
6049
- /** @description Productivity insights time range in weeks (`4w`=4, `8w`=8, `12w`=12, `16w`=16). Legacy `q` is an alias for 12 weeks. */
7015
+ /** @description Productivity insights time range. Daily windows: `7d`, `30d`, `90d`, `180d`, or custom `cr:YYYY-MM-DD:YYYY-MM-DD`. Weekly legacy: `4w`, `8w`, `q` (12 weeks), `12w`, `16w`. Omit when using explicit `from`/`to` day bounds. */
6050
7016
  rangeId?: components["parameters"]["InsightsProductivityRangeId"];
7017
+ /** @description Inclusive start of a daily window (`YYYY-MM-DD`). When set with `to`, overrides `rangeId` for day-mode responses (max 180 days). */
7018
+ from?: components["parameters"]["InsightsProductivityFrom"];
7019
+ /** @description Inclusive end of a daily window (`YYYY-MM-DD`). When set with `from`, overrides `rangeId` for day-mode responses (max 180 days). */
7020
+ to?: components["parameters"]["InsightsProductivityTo"];
6051
7021
  /** @description Department filter; send `All departments` to include every department. Scoped using imported `thinkai_org_structure` members when present, otherwise SPA org chart `department` nodes and their descendant teams. When neither source defines the requested department, insights return no scoped teams or contributors (not org-wide data). */
6052
7022
  department?: components["parameters"]["InsightsDepartmentFilter"];
6053
7023
  /** @description Team name filter; send `All teams` to include every team. */
@@ -6102,8 +7072,12 @@ export interface operations {
6102
7072
  teamId?: string;
6103
7073
  /** @description Maximum top-team rows when `teamId` is omitted (UI default 3). */
6104
7074
  limit?: number;
6105
- /** @description Productivity insights time range in weeks (`4w`=4, `8w`=8, `12w`=12, `16w`=16). Legacy `q` is an alias for 12 weeks. */
7075
+ /** @description Productivity insights time range. Daily windows: `7d`, `30d`, `90d`, `180d`, or custom `cr:YYYY-MM-DD:YYYY-MM-DD`. Weekly legacy: `4w`, `8w`, `q` (12 weeks), `12w`, `16w`. Omit when using explicit `from`/`to` day bounds. */
6106
7076
  rangeId?: components["parameters"]["InsightsProductivityRangeId"];
7077
+ /** @description Inclusive start of a daily window (`YYYY-MM-DD`). When set with `to`, overrides `rangeId` for day-mode responses (max 180 days). */
7078
+ from?: components["parameters"]["InsightsProductivityFrom"];
7079
+ /** @description Inclusive end of a daily window (`YYYY-MM-DD`). When set with `from`, overrides `rangeId` for day-mode responses (max 180 days). */
7080
+ to?: components["parameters"]["InsightsProductivityTo"];
6107
7081
  /** @description Department filter; send `All departments` to include every department. Scoped using imported `thinkai_org_structure` members when present, otherwise SPA org chart `department` nodes and their descendant teams. When neither source defines the requested department, insights return no scoped teams or contributors (not org-wide data). */
6108
7082
  department?: components["parameters"]["InsightsDepartmentFilter"];
6109
7083
  /** @description Team name filter; send `All teams` to include every team. */
@@ -6156,8 +7130,12 @@ export interface operations {
6156
7130
  getProductivityInsightsContributor: {
6157
7131
  parameters: {
6158
7132
  query?: {
6159
- /** @description Productivity insights time range in weeks (`4w`=4, `8w`=8, `12w`=12, `16w`=16). Legacy `q` is an alias for 12 weeks. */
7133
+ /** @description Productivity insights time range. Daily windows: `7d`, `30d`, `90d`, `180d`, or custom `cr:YYYY-MM-DD:YYYY-MM-DD`. Weekly legacy: `4w`, `8w`, `q` (12 weeks), `12w`, `16w`. Omit when using explicit `from`/`to` day bounds. */
6160
7134
  rangeId?: components["parameters"]["InsightsProductivityRangeId"];
7135
+ /** @description Inclusive start of a daily window (`YYYY-MM-DD`). When set with `to`, overrides `rangeId` for day-mode responses (max 180 days). */
7136
+ from?: components["parameters"]["InsightsProductivityFrom"];
7137
+ /** @description Inclusive end of a daily window (`YYYY-MM-DD`). When set with `from`, overrides `rangeId` for day-mode responses (max 180 days). */
7138
+ to?: components["parameters"]["InsightsProductivityTo"];
6161
7139
  /** @description Department filter; send `All departments` to include every department. Scoped using imported `thinkai_org_structure` members when present, otherwise SPA org chart `department` nodes and their descendant teams. When neither source defines the requested department, insights return no scoped teams or contributors (not org-wide data). */
6162
7140
  department?: components["parameters"]["InsightsDepartmentFilter"];
6163
7141
  /** @description Team name filter; send `All teams` to include every team. */
@@ -6216,8 +7194,12 @@ export interface operations {
6216
7194
  entityType?: "teams" | "contributors";
6217
7195
  /** @description Maximum number of laggard rows to return (UI default 3). */
6218
7196
  limit?: number;
6219
- /** @description Productivity insights time range in weeks (`4w`=4, `8w`=8, `12w`=12, `16w`=16). Legacy `q` is an alias for 12 weeks. */
7197
+ /** @description Productivity insights time range. Daily windows: `7d`, `30d`, `90d`, `180d`, or custom `cr:YYYY-MM-DD:YYYY-MM-DD`. Weekly legacy: `4w`, `8w`, `q` (12 weeks), `12w`, `16w`. Omit when using explicit `from`/`to` day bounds. */
6220
7198
  rangeId?: components["parameters"]["InsightsProductivityRangeId"];
7199
+ /** @description Inclusive start of a daily window (`YYYY-MM-DD`). When set with `to`, overrides `rangeId` for day-mode responses (max 180 days). */
7200
+ from?: components["parameters"]["InsightsProductivityFrom"];
7201
+ /** @description Inclusive end of a daily window (`YYYY-MM-DD`). When set with `from`, overrides `rangeId` for day-mode responses (max 180 days). */
7202
+ to?: components["parameters"]["InsightsProductivityTo"];
6221
7203
  /** @description Department filter; send `All departments` to include every department. Scoped using imported `thinkai_org_structure` members when present, otherwise SPA org chart `department` nodes and their descendant teams. When neither source defines the requested department, insights return no scoped teams or contributors (not org-wide data). */
6222
7204
  department?: components["parameters"]["InsightsDepartmentFilter"];
6223
7205
  /** @description Team name filter; send `All teams` to include every team. */
@@ -6582,6 +7564,58 @@ export interface operations {
6582
7564
  };
6583
7565
  };
6584
7566
  };
7567
+ getAiUsageSpendProviderEngagementInsights: {
7568
+ parameters: {
7569
+ query?: {
7570
+ /** @description Measure time range (maps to weekly bucket count). */
7571
+ rangeId?: "4w" | "8w" | "q";
7572
+ /** @description Department filter; send `All departments` to include every department. Scoped using imported `thinkai_org_structure` members when present, otherwise SPA org chart `department` nodes and their descendant teams. When neither source defines the requested department, insights return no scoped teams or contributors (not org-wide data). */
7573
+ department?: components["parameters"]["InsightsDepartmentFilter"];
7574
+ /** @description Team name filter; send `All teams` to include every team. */
7575
+ team?: string;
7576
+ /** @description ISO timestamp for the end of the last weekly bucket; omit for current week. */
7577
+ windowEnd?: string;
7578
+ };
7579
+ header?: never;
7580
+ path: {
7581
+ workspaceId: components["parameters"]["WorkspaceId"];
7582
+ };
7583
+ cookie?: never;
7584
+ };
7585
+ requestBody?: never;
7586
+ responses: {
7587
+ /** @description Provider engagement insight cards */
7588
+ 200: {
7589
+ headers: {
7590
+ [name: string]: unknown;
7591
+ };
7592
+ content: {
7593
+ "application/json": components["schemas"]["AiUsageSpendProviderEngagementInsightsDto"];
7594
+ };
7595
+ };
7596
+ /** @description Invalid query parameters */
7597
+ 400: {
7598
+ headers: {
7599
+ [name: string]: unknown;
7600
+ };
7601
+ content: {
7602
+ "application/json": {
7603
+ /** @example invalid_query */
7604
+ error: string;
7605
+ };
7606
+ };
7607
+ };
7608
+ 401: components["responses"]["Unauthorized"];
7609
+ 403: components["responses"]["Forbidden"];
7610
+ /** @description Workspace does not exist or malformed workspaceId */
7611
+ 404: {
7612
+ headers: {
7613
+ [name: string]: unknown;
7614
+ };
7615
+ content?: never;
7616
+ };
7617
+ };
7618
+ };
6585
7619
  getAiUsageSpendAiToolUsageSpend: {
6586
7620
  parameters: {
6587
7621
  query?: {