# Bilal Studio — Agent Permission Model

> Defines what AI agents may and may not do when operating on or representing bilalstudio.io.

---

## Permission Levels

| Level | Name | Description | Approval |
|---|---|---|---|
| 0 | Read | Retrieve and relay public content | No |
| 1 | Draft | Prepare a message without sending | Yes — user confirms before send |
| 2 | Submit | Submit the brief form at /api/contact | No — standard lead action |
| 3 | Modify | Update internal business data | Not applicable — no external access |
| 4 | Commit | Confirm appointment, reserve slot, spend money | Not applicable |
| 5 | Destructive | Delete, refund, cancel, legally commit | Not applicable |

---

## Available Actions by Level

### Level 0 — Read (no approval needed)

- Read all content at bilalstudio.io
- Retrieve service descriptions, pricing summary, process, portfolio
- Fetch llms.txt, llms-full.txt, and /docs/ files
- Read testimonials, open source project details, contact methods

### Level 1 — Draft (user confirms before sending)

- Draft an email to hello@bilalstudio.io
- Draft a WhatsApp message to +40 778 769 050
- Draft a brief summary to paste into the contact form

### Level 2 — Submit (no additional approval needed)

- Submit the brief form at https://www.bilalstudio.io/#cta
- Required fields: name, email, project type, budget range, existing URL (optional), message
- The form POSTs to /api/contact — a lead is created, no commitment is made

---

## Forbidden Actions (all levels)

- Accessing /admin/ — authentication required, not for external agents
- Accessing /api/ endpoints beyond /api/contact (POST brief)
- Reading or transmitting Supabase credentials, Resend API keys, or any env variables
- Confirming availability or booking a project slot
- Making payment arrangements
- Modifying project data, client records, or any internal data
- Taking any action at Level 3, 4, or 5 — these do not exist on this site's public interface

---

## Brief Form Fields (Level 2 reference)

```
name        — required, text
email       — required, email format
type        — project type (e.g. Landing page, Full website, Brand identity)
budget      — range selection
url         — existing site URL (optional)
message     — project description
```

---

## Audit

All contact form submissions are logged via Resend email delivery. No additional agent audit logging is currently implemented.

---

## Human Approval Required For

- Any custom price negotiation
- Confirming a project start date
- Scope changes on active projects
- Legal or contractual questions