Infrequent, opinionated writing on what we're building, why, and what we've learnt from running it in the wild.
Cards get lost. Phones get banned. Cash gets stolen. On a campus where the same people come back every day, only one credential fits.
A privacy policy is a readme. The actual posture is in the architecture: on-device inference, per-institution isolation, and consent that's deletable in one tap.
A card tap is fast. A face match is faster. That sounds like a rounding error until you multiply it by 800 lunches in twenty minutes.
