Priority: P0 (CRITICAL) Strict multi-tenant isolation. All child-centric data must secured via PostgreSQL RLS and service-level validation. RLS Enforcement Workflow 1. Migration : Create tables with . Define policies using . 2. Entity Logic : Add JSDoc to entity class. 3. Security Doc : Update with new table and its access logic. 4. Service Validation : Call before any persistence operation. Core Guidelines 1. Mandatory RLS : Every new table linking to or MUST RLS enabled in its creation migration. 2. Centralized Validation : Never reimplement access logic. Use for child/family membership che…