Beneficiary Care

The picture in one paragraph

Every child the Foundation supports gets one structured profile on a private Foundation Shared Drive: identity, programme, progress notes, and benefits delivered. A small set of Python tools in this repo writes to that store; a tiny FastAPI dashboard lets principals and trustees read the cohort and add light updates; Claude assists with entry drafting and report writing. No public surface; the Drive's membership list is the access boundary. The 8-petal model is the spine that runs through every record — every note and benefit row carries a petal anchor, so storytelling and Area-4 reporting can both surface it.

Architecture · what lives where

Private Foundation Drive This repo (code + tools) AI engine

Private Foundation Drive

profiles/journey-NNNN.mdFour-block markdown profile per child. Canonical record.
benefits-ledger/journey-NNNN/Dated entries + receipts + handover photos.
intake/<YYYY-Www>/Raw inbox: notebook write-ups, Zalo exports, scanned letters.
indexes/by-cohort, by-school, by-child/_search.md
registry-beneficiary.sqlitechild / benefit / profile_entry tables. WAL.
cohort-dashboard/<YYYY-Qn>.mdQuarterly trustee summary, generated.
funding_sources.yamlEnum of contribution refs. Area-3-maintained.

This repo · tools/

beneficiary_registry_migrate.pyCreates the 3 SQLite tables. One-shot, idempotent.
beneficiary_validate.pySchema check on a profile file. bundle_validate analogue.
beneficiary_promote.pyPromote an intake item to a profile entry + SQL row.
benefit_record.pyWrite a ledger entry + benefit row. Enum-validates funding_source.
benefit_report.pySQL views → markdown for Area-4. HXL-CSV emitter.
beneficiary_index_rebuild.pyNightly indexes + quarterly cohort dashboard.
beneficiary_consistency_check.pyDrift between SQL rows ↔ markdown files.
media_sanitise.py --verifyExisting media-line tool, reused at promotion boundary.

UI + AI

app/ (FastAPI)Internal dashboard. Cohort view + child detail + add-note + analytics.
beneficiary-recorder agentClaude Opus structures a raw drop into a profile entry.
report-writer (Claude)Drafts the monthly Area-4 narrative from benefit_report SQL output.
journey-writer (Stream C)Reads Block 3 + ledger; drafts long-form progress narrative.
HMT Foundation WorkspaceGoogle Workspace; Drive desktop client mounts the private Drive locally.

The five-step pathway

The same shape as the media line's intake → curate → draft → QC → review-queue, scoped to a child's record. Steps 1–3 run weekly; step 4 only on escalation; step 5 quarterly.

Step 1

Drop

Coordinator drops raw materials into intake/<YYYY-Www>/<journey-id>/. EXIF stripped here.

Step 2

Review

Monday-morning pass: _review.md notes which items get promoted, kept as context, or escalated.

Step 3

Promote

Claude drafts a structured entry from the raw drop; Coordinator edits + approves; beneficiary_promote.py commits it.

Step 4

Safeguarding

Only on escalation. Safeguarding lead reads the proposed entry + raw drop, signs off in commit message.

Step 5

AI + automation · what runs unattended

Entry drafting (Claude)

claude-opus-4-7 · beneficiary-recorder · on demand

Reads a raw drop (notebook scan, Zalo thread, report-card PDF) and returns a markdown progress-note in the canonical shape. Factual structuring, not tone.

Report writing (Claude)

claude-opus-4-7 · report_child / cohort / school · on demand + monthly

Composes the narrative wrapper around the SQL view for per-child, per-cohort, and per-school reports. Claims trace back to the structured sections; no invented detail. Audience filter narrows what's included.

Stream-C journeys (Claude)

claude-opus-4-7 · journey-writer · on demand

Reads Block 3 + benefits ledger only; drafts a long-form progress narrative. The format choice when the Coordinator wants a journey-shaped piece, not an event piece.

Safeguarding watchlist (signal job)

safeguarding_watchlist.py · monthly + daily-keyword

Scheduled job, no AI. Seven simple rules — absence >60d, followup overdue, benefit anomaly, status drift, keyword hit, coordinator drift, sibling cluster — surface items into the lead's triage queue. Job never signs off gate 8; the named human still decides.

Build sequence

Seven phases, in increasing operational risk. The hand-rolled pilot (B-zero) runs in parallel with the first two coding phases — the data shape gets stress-tested by a real coordinator on real cases before the code locks.

Parallel to B1+B2

Operational pilot · one school, five children

Pick one partner school + one coordinator + five children. The coordinator drafts five profiles by hand in the canonical markdown shape, drops five weeks of intake material, walks the pathway end-to-end on paper.

What's true after B0: five real profiles in the canonical shape; coordinator can describe the weekly rhythm; the schema's last-mile adjustments feed B2's prompt.

1–2 days · code

Data shapes + registry migration

The schema lands. SQLite on the private Drive gets the three tables; the profile validator runs against fixture profiles.

beneficiary_registry_migrate.py — creates child, benefit, profile_entry
beneficiary_validate.py — frontmatter + petal + append-only checks
2 example synthetic profiles in tests/fixtures/beneficiary/

What's true after B1: SQLite is queryable; a profile file can be validated; tests pass against synthetic fixtures.

3–5 days · code + agent

Intake + promotion (Claude-assisted)

A coordinator can take a raw drop, get a Claude-drafted entry, edit it, and commit it to the profile + SQL.

beneficiary-recorder agent + /record skill — the Claude-Opus prompt
beneficiary_promote.py — the operational verb (commit + index update)
Pre-commit hook: media_sanitise.py --verify on intake files
Fake-API tests via the CaptionEngine-style protocol pair

What's true after B2: the weekly pathway works end-to-end on the operator box. The Coordinator can run a week's drops through the pipeline in < 1 hour.

3–5 days · code

Benefits ledger + Area-4 hooks

The Foundation can write a benefit, query by month/programme/school/funding-source/petal, and emit a draft narrative for the monthly report.

benefit_record.py — write a ledger entry; validates funding_source against funding_sources.yaml
benefit_report.py — SQL views → markdown for Area-4; HXL-CSV emitter
Claude drafts the narrative wrapper around the numbers

What's true after B3: "where did the money go this month" is one command. Sponsor queries (funding_source = X) are one query.

2–3 days · code

Indexes + cohort dashboard

The three indexes (by-cohort, by-school, by-child) and the quarterly cohort dashboard regenerate nightly. Drift between SQL rows ↔ markdown files surfaces in a daily check.

beneficiary_index_rebuild.py — nightly rebuild
beneficiary_consistency_check.py — selftest exits zero on a clean run

What's true after B4: a coordinator scanning the by-cohort index sees the family cluster at a glance; trustees read the quarterly dashboard directly.

3–4 days · code + Claude

Parameterised reports (per-child / per-cohort / per-school)

Three CLI tools sharing one backbone: SQL view → Claude-drafted narrative → markdown / PDF / HXL-CSV. Same code path runs from the dashboard and from the scheduled monthly publication run.

tools/report_child.py — single journey-NNNN; case review, hand-off, sponsor view
tools/report_cohort.py — programme × cohort year (e.g. Cùng em tiến bước 2026)
tools/report_school.py — partner school; the principal's monthly read
Audience filter (coordinator / safeguarding / principal / trustee / sponsor) narrows what each output includes

What's true after B5: "give me everything about this child" is one button. "Give me Q2's view of this school" is one query. Reports save to reports/<YYYY>/ for diffable comparison over time.

3–4 days · code + cron

Safeguarding watchlist (monthly autonomous signal run)

The named safeguarding sign-off stays manual; what becomes autonomous is the signal detection that feeds the lead's triage queue. The job reads the registry monthly + profile markdown, applies seven independent rules, surfaces items the lead reviews.

tools/safeguarding_watchlist.py — runs monthly (full sweep) + daily (keyword-only narrower pass)
Seven signals: absence (60d), followup overdue (45d), benefit anomaly (90d zero), status drift, keyword hit, coordinator drift, sibling cluster
Each item lands in the watchlist_item SQL table with an audit trail
01_Beneficiaries/watchwords.yaml — lead reviews quarterly
Job never clears gate 8. Surfaces signals, never makes decisions.

What's true after B6: on the 1st of each month the lead opens the dashboard's watchlist screen and sees a triaged queue. The Coordinator's weekly review becomes the first-line catch; the watchlist is the second-line backstop.

5–8 days · app

FastAPI dashboard for principals + trustees + safeguarding lead

A small internal web app on top of the SQLite store. Read the cohort, see one child's full record, add a progress note, generate reports, triage the safeguarding watchlist. Two-way sync: the app writes to the same store the markdown tools do; coordinators still own the canonical markdown.

app/ — FastAPI + a typed schema layer over the SQLite
Read + light data entry: progress notes, followups, benefits
Reports surface: per-child / per-cohort / per-school generation with audience picker
Safeguarding watchlist screen: each item is a card the lead acts on (dismiss / coord-followup / escalate / re-surface)
Login via Google Workspace; charts via CSS + light JS

What's true after B7: a principal logs in, sees their school's cohort, generates a monthly report; a trustee sees cohort-level analytics; the safeguarding lead works their triage queue on the 1st of every month. See the mock-up below.

Stack summary

Layer	Choice	Why
Storage	Markdown profiles + SQLite (WAL)	Human-readable canonical record + fast queryable shape. No Postgres / no SaaS DB at this scale.
Hosting	Private Google Shared Drive + Drive desktop client	Foundation already lives in Google Workspace; the Drive's own membership list is the access boundary.
Tools	Python 3.11; 6–8 small CLI scripts	Each < 200 LOC; matches the media-line discipline; selftest on every tool.
AI	Claude Opus 4.7 · Anthropic SDK · prompt caching	Already wired for the media line; reuses the `CaptionEngine` pattern.
App	FastAPI + HTMX, server-rendered HTML	No SPA build pipeline; a single Python developer can run the whole stack; Cloud Run or a single VM deploys it.
Auth	Google Workspace SSO	Principals + trustees already have Workspace accounts; no separate user DB.
Backup	Drive revision history + nightly SQLite snapshot	Drive gives version history on every file; SQLite snapshot rotated weekly.

The dashboard — a clickable mock-up

High-fidelity prototype of the B5 FastAPI dashboard. Click the tabs to walk through the screens — login, cohort list, one child's profile, adding a progress note (Claude-assisted), the benefits ledger, the analytics view, and the report-export panel. Mock data; no real persistence.

app.hmt-foundation.org.vn/login

— signed out —

Hệ thống quản lý nội bộ · Quỹ Hoa Mặt Trời

Coordinator — own school's children, full edit

Principal — own school, read + light data entry

Trustee — all schools, read + analytics

Safeguarding lead — all schools + escalation queue

Journey	Name	School · Class	Programme	Last update	Status
journey-0042	Nguyễn Thị Mai · nữ · 14t+1 sib	THCS Tân Khánh · 8A2	Cùng em tiến bước	18/05/2026	active
journey-0017	Nguyễn Thị Lan · nữ · 16t+1 sib	THCS Tân Khánh · 10B1	Cùng em tiến bước	15/05/2026	active
journey-0043	Trần Văn Đức · nam · 13t	THCS Tân Khánh · 8A1	Cùng em tiến bước	16/05/2026	active
journey-0044	Lê Thị Hồng · nữ · 15t	THCS Tân Khánh · 9C	Cùng em tiến bước	12/05/2026	active
journey-0045	Phạm Minh Tuấn · nam · 12t	THCS Tân Khánh · 7B	Cùng em tiến bước	08/05/2026	paused
journey-1102	Nguyễn Văn An · nam · 11t	THCS Vụ Bản · 6A	Nâng bước tương lai	10/05/2026	active
journey-1118	Đặng Thị Hà · nữ · 17t	THCS Vụ Bản · 11A2	Nâng bước tương lai	14/05/2026	graduated
journey-1135	Vũ Hoàng Long · nam · 14t+2 sib	THCS Vụ Bản · 8B	Nâng bước tương lai	20/05/2026	active
journey-1136	Vũ Hoàng Mai · nữ · 9t+2 sib	Tiểu học An Ninh · 4B	Cùng em tiến bước	19/05/2026	active
journey-2071	Hoàng Thị Mỹ Linh · nữ · 8t	Tiểu học An Ninh · 3A	Cùng em tiến bước	22/05/2026	active
journey-2092	Bùi Quang Huy · nam · 10t	Tiểu học An Ninh · 5C	Trao gửi yêu thương	11/03/2026	paused
journey-3018	Đỗ Thanh Hằng · nữ · 15t	THCS Liên Minh · 9A	Trao gửi yêu thương	17/05/2026	active

Showing 12 of 156 · View all · · Export to Sheets

Cohort › journey-0042 · Nguyễn Thị Mai

Progress notes (Block 3, most recent first)

18/05/2026 · Thăm trường học kỳ 2

Nguồn: coordinator-visitNgười ghi: Cô ThuỷCánh 1 · Hỗ trợ học tập

Đọc trôi chảy hơn so với học kỳ trước; cô giáo nhận xét em tự tin hơn khi phát biểu trong lớp. Môn Toán vẫn còn yếu; cô Lan đề nghị bổ sung một buổi học thêm trước khi vào học kỳ 3.

file gốc: intake/2026-W21/2026-05-18__truong-1__tham-truong.md

02/05/2026 · Sinh hoạt kỹ năng tháng 5

Nguồn: coordinatorNgười ghi: Cô HàCánh 3 · Cảm xúc và ứng xử

Em chủ động phát biểu trong nhóm về chủ đề "lòng biết ơn"; chia sẻ một câu chuyện về mẹ. Lần đầu em mở lời trong sinh hoạt cả tháng.

file gốc: intake/2026-W18/2026-05-02__sinh-hoat-thang-5.md

22/04/2026 · Hội thi nhảy dây toàn trường

Nguồn: schoolNgười ghi: THCS Tân KhánhCánh 5 · Sức khỏe thể chất

Đội của em đoạt giải Ba khối 8. Em là một trong hai bạn dẻo dai nhất nhóm.

file gốc: intake/2026-W17/2026-04-22__hoi-thi-nhay-day.pdf

10/04/2026 · Học bạ học kỳ 2

Nguồn: schoolNgười ghi: THCS Tân KhánhCánh 1 · Hỗ trợ học tập

Xếp hạng lớp tăng so với học kỳ 1; chuyên cần 96%. Không có cảnh báo.

file gốc: intake/2026-W15/2026-04-10__hoc-ba.pdf

08/02/2026 · Nhập chương trình

Nguồn: coordinator-intakeNgười ghi: Cô ThuỷCánh 1 · Hỗ trợ học tập

Đã trao đợt học bổng đầu tiên (xem sổ phúc lợi). Gia đình đón nhận sự hỗ trợ; mẹ em đề nghị giữ chị gái (journey-0017) cùng lịch nhận đồ dùng học tập.

Time in programme

3 tháng

Entered 08/02/2026 · 5 progress notes

Benefits received YTD

5.4M VNĐ

4 entries · last 03/05/2026

Cohort › journey-0042 › Add progress note

Upload raw material (optional)

📎 Drop a notebook scan, Zalo export, report-card PDF, photo — or click to browse

EXIF/GPS strip runs automatically on upload

✓ 2026-05-25__tham-truong.md uploaded · sanitised

🌻 Claude drafted this from the raw upload

"Em đến lớp đầy đủ tuần này. Cô Lan nhận xét em làm bài tập Toán cẩn thận hơn, dù vẫn cần thêm thời gian. Em đã chủ động hỏi thầy thêm bài về phân số."

Note body

Date

Source

Petal anchor

Author

Escalate to Safeguarding lead (step 4)

Trigger only if attendance pattern, disclosure, or family situation warrants a second pair of eyes.

Cohort › journey-0042 › Benefits ledger

Benefit ID	Date	Category	Description	Petal	Amount	Funding source	Receipt
ben-2026-0042-001	08/02/2026	scholarship	Học bổng học kỳ 1, đợt 1 trên 3	1	2,500,000 đ	general	📎 bien-nhan-ky.pdf
ben-2026-0042-002	15/02/2026	supplies	Đồ dùng học tập học kỳ 1	1	450,000 đ	general	📎 anh-trao-do-dung.jpg
ben-2026-0042-003	12/04/2026	scholarship	Học bổng học kỳ 2, đợt 2 trên 3	1	2,500,000 đ	contribution-2026-Q1-anon-7	📎 bien-nhan-ky.pdf
ben-2026-0042-004	03/05/2026	gift	Quà Tết Đoan Ngọ — bánh + sách	8	180,000 đ	general	📎 thu-cam-on-gia-dinh.jpg

YTD total · 4 benefits

5,630,000 đ

By funding source

general: 3,130,000 đ · contribution-2026-Q1-anon-7: 2,500,000 đ

Active children

156

+12 this quarter

Benefits delivered

487M đ

+18% vs Q1

Progress notes filed

412

+87 vs Q1

Partner schools

stable

Benefits by month (2026)

VNĐ · all programmes · all schools

JanFebMarAprMay

8-petal coverage · this quarter

Share of progress notes by petal

1 · Học tập 32%

2 · Thuyết trình 13%

3 · Cảm xúc 16%

4 · Sáng tạo 11%

5 · Thể chất 11%

6 · Thế giới quan 8%

7 · Nghề nghiệp 9%

8 · Lan toả 10%

Schools at a glance

Active children · benefits YTD · notes filed

THCS Tân Khánh	32	112M đ	108 notes
THCS Vụ Bản	28	94M đ	78 notes
Tiểu học An Ninh	26	71M đ	64 notes
THCS Liên Minh	24	68M đ	58 notes
THCS Hợp Lý	23	79M đ	61 notes
Tiểu học Tân Khánh	23	63M đ	43 notes

Benefits by category · Q2

Top categories this quarter

Scholarship312M đ · 64%

Supplies86M đ · 18%

Gift42M đ · 9%

Transport28M đ · 6%

Mentoring · other19M đ · 4%

Three parameterised reports — per-child, per-cohort, per-school — drawn from registry-beneficiary.sqlite + the markdown profiles. Each runs Claude over the SQL view to compose a narrative wrapper, then exports to markdown / PDF / HXL-CSV. The audience picker narrows what's included.

Standing reports & exports

Auto-built or one-click; no parameters.

Monthly transparency report · May 2026

Where the money went: benefits by school × programme × category × petal, with the Claude-drafted narrative for the Area-4 publication. Built from the per-cohort + per-school views aggregated.

Last generated: 2 days ago · ready

Quarterly cohort dashboard · Q2 2026

Programme × school × counts × benefits totals × 8-petal breakdown across all programmes. Trustees read this directly.

Auto-builds quarterly · last: 2026-04-01

HXL-CSV export · all benefits 2026

One row per benefit, HXL-tagged (#org #date #activity #sector #adm1 #value+vnd). For external aggregation / IATI later.

Generated on demand

Followups outstanding · all schools

Every needs_followups line across all profiles, grouped by Coordinator, sorted by age. The Monday-morning surface.

Live view · 47 items outstanding

🛡 Monthly run · 2026-05-01 · The job applied 7 rules across all 156 active children. It surfaces signals; every clearance and escalation is still a human decision. Items below: dismiss / coordinator-followup / escalate / re-surface next month.

All signals (7) Absence (2) Followup overdue (2) Benefit anomaly (1) Status drift (1) Keyword (1)

5 of 7 items shown · 2 dismissed earlier this month · View dismissed

Mock data; no real persistence. Click any tab above to switch screens. Click a row in the cohort list to open the profile.