🏗️ title: Observability & Trust description: Unified guidance for diagnostic logs, audit evidence, and secure support workflows.

👁️ Observability & Trust

Control Core separates compliance evidence from troubleshooting telemetry while keeping both privacy-aware and support-ready.

📌 Start Here

• How Logging Works
• Audit vs Diagnostic Logs
• Security of Support
• Remote Troubleshooting Runbook
• PBAC Operator Playbooks

📌 Core Principles

1. Policy-governed logging - log redaction decisions are policy-driven (OPA/Policy Bridge aware).
2. Separation of concerns - immutable audit records answer who did what; diagnostic traces answer how it behaved.
3. Support-safe evidence sharing - exports use mandatory TICKET_REF context and package integrity metadata.
4. Actionable diagnostics - outputs include probable causes, evidence links, and remediation steps.