WHY← Back

Release Notes

What's new in We Hear You. We ship updates regularly — check back to see what's changed.

v0.7April 2, 2026

Bulk Editing, CSV Import, Background Processing, Personas & Analytics

Bulk selection and management for people and responses, CSV import from VideoAsk exports, background job processing for all AI analysis, audience insights, personas data page, in-app analytics with PostHog, organization member management, and three rounds of security hardening.

Personas & Audience Insights

  • New Personas page in the main navigation — see your audience organized by persona with descriptions and people cards
  • Audience Insights card on the Dashboard — AI-generated summary of your audience, cached and refreshed automatically after 3 new responses
  • Manual refresh button with once-per-day rate limit to control API costs
  • Insight uses summary statistics (not raw transcriptions) for efficiency
  • Persona filter dropdown now dynamically populated from your taxonomy definitions on both People and Responses pages
  • Sidebar shows persona count next to the Personas nav item
  • Persona Config renamed from Personas Config and moved above Analysis Config in settings

Dashboard

  • Five stat cards: People, Responses, Top Persona, Top Mood, Avg Sentiment
  • People and Responses cards link to their respective pages
  • Top Persona card links to the Personas page
  • All stat values capitalized (Positive, not positive)
  • Audience Insights sits in the left column above Sentiment Breakdown

Background Processing

  • All AI analysis now runs in the background — CSV imports, multi-link imports, re-analysis, and bulk re-analysis no longer block the page
  • Persistent progress banner in the bottom-right corner follows you across all pages
  • Real-time progress bar with counts: processed, imported, skipped, failed
  • Jobs table stores state server-side so progress survives page navigation
  • Client-driven batch processing — each batch runs within Vercel’s timeout, then the next batch starts automatically
  • Completed jobs show for one hour with a dismiss button, failed jobs show with error details

Bulk Editing

  • Select multiple people or responses with checkboxes and a “Select all” toggle
  • Bulk actions: Hide, Re-analyze, Delete, and Move to another organization
  • Inline action bar with live count that stays visible while scrolling
  • Show/hide hidden items toggle at the bottom of each list
  • Delete confirmation dialog to prevent accidental removal

CSV Import

  • Upload a VideoAsk CSV export to import all responses at once — no OAuth or share links needed
  • Client-side CSV parsing with row-by-row processing to avoid server timeouts
  • Live progress bar showing import status in real time
  • Detailed results breakdown: imported, skipped (no email, no transcription, duplicate), and failed
  • Original response dates preserved from VideoAsk’s Date/Time column
  • Share URLs captured and stored for linking back to VideoAsk

Organization Management

  • Manage Members modal on the Admin page — list, invite, change roles, and remove members
  • Role validation enforced server-side (viewer, admin, owner only)
  • Organization switcher persists selection across page reloads and OAuth redirects
  • Full page reload on org switch to clear stale state
  • Org context banner on all settings pages showing which organization you’re editing

People & Responses

  • Sortable columns on the People table — click any header to sort by Name, Persona, Mood, Sentiment, Responses, or Responded date
  • New “Responded” column showing the actual date the person submitted their response (not the import date)
  • Matching filters on both pages: Sentiment, Mood, Persona, Source, Form, and Sort
  • Multi-row filter layout — search and source on the first row, analysis filters on the second
  • People table scrolls horizontally on smaller screens
  • Sidebar shows people and response counts next to each nav item
  • Page titles show counts: “120 Responses” instead of separate total

Response Cards

  • Wider metadata column for tags and pills to breathe
  • Inline video player — “Play video” toggles the original recording right in the card
  • “View on VideoAsk” link to the original conversation (when share URL is available)
  • Edit transcript fine print clarifying changes are only saved within We Hear You
  • Source labels cleaned up: “VideoAsk Import” instead of “videoask-link”
  • Form name displayed on each response when available

Brand & Design

  • W.H.Y. logo in Source Serif 4 with peach, seafoam, and sunshine dots
  • Logo placed on sidebar, login, reset password, and all secondary pages
  • Improved light mode contrast — darker tag colors for better readability against the warm background
  • Custom checkboxes with centered checkmarks and consistent sizing
  • Copy-to-clipboard fields on webhook URLs, header names, and API keys

Analytics

  • PostHog integration for page views, user identity, and custom event tracking
  • Tracked events: sign up, sign in, sign out, all import types, persona saves, config changes, transcript edits, and bulk actions
  • User identified by Supabase auth ID with email for cohort analysis

Security (Audit #3)

  • Cross-tenant data access fixed in bulk reanalyze — all queries now scoped by tenant_id
  • Member management scoped by tenant_id on all PUT/DELETE operations
  • Bulk operation IDs capped at 25 (reanalyze) or 100 (other actions) to prevent API abuse
  • Role validation on member invite and role change (viewer/admin/owner only)
  • Transcription sanitization added to all import and reprocess routes
  • Raw email removed from import-link API response
  • CSV import dedup key includes content hash to prevent collisions
  • Reanalyze added to bulk action validation whitelist (was silently blocked)
  • Auto-provisioning optimized to only run when user has zero memberships

Infrastructure

  • App moved to app.wehearyou.io subdomain (root domain reserved for marketing site)
  • All webhook URLs, OAuth callbacks, and instructions updated to new domain
  • Support page with FAQ, how-it-works guide, and contact information
v0.6April 1, 2026

Dashboard, Import Tools & Security Hardening

Major UX overhaul, VideoAsk quick import, AI-powered persona suggestions, neumorphic design system, comprehensive security fixes, and multi-organization management.

Design & UX

  • Neumorphic design system — soft raised cards, inset inputs, and tactile button states across the entire interface
  • W.H.Y. brand logo in Source Serif 4 with peach, seafoam, and sunshine accent dots
  • Light and dark mode with system preference detection and persistent toggle
  • Three-dot animated loading indicator in brand colors replaces all loading states
  • Consistent spacing, card sizing, and form styling across all pages
  • Instructional copy on every page written for non-technical users

Import Tools

  • Quick Import — paste a single VideoAsk share link to import and analyze one response instantly
  • Multi-link import — paste multiple share links (one per line) to batch import with live progress
  • Inline video playback — play the original video response directly within the response card
  • Edit transcript & re-process — modify a transcription and re-run AI analysis in place
  • VideoAsk OAuth integration for bulk import via the VideoAsk API
  • Per-tenant duplicate detection — the same response can exist in different organizations

AI Features

  • AI-suggested personas — analyze your responses and get persona recommendations with confidence levels and example quotes
  • Gap detection — identify emerging patterns that don’t fit existing personas
  • Starter persona templates — choose from Buyer Personas, User Personas, or Brand Archetypes to get started quickly
  • Suggest a prompt — AI generates an optimized system prompt based on your analysis fields and personas

Organization Management

  • Create organizations from the Admin panel with name, slug, allowed domains, and admin invites
  • Domain-based auto-provisioning — users with matching email domains join automatically on signup
  • Organization switcher in the sidebar for users with access to multiple workspaces
  • Super admin can switch between and manage all organizations

Connections & Setup

  • Combined Connections page with API keys, webhook setup guides, and active sources
  • Step-by-step VideoAsk webhook setup with exact field values matching VideoAsk’s UI
  • API key generation with Bearer prefix pre-included for easy copy-paste
  • Inline “Generate Key” button within the setup guide flow
  • Scope explainer (ingest, read, admin) with color-coded badges

Security

  • Tenant isolation enforced on all 13+ dashboard API routes via shared auth utility
  • Role-based access control — admin required for state-changing operations, viewer for reads
  • OAuth state parameter signed with HMAC to prevent CSRF and state forgery
  • Prompt injection guard always prepended to system prompts (cannot be removed by tenants)
  • Error messages sanitized — no internal details leaked to clients
  • Per-tenant email uniqueness constraint (same email can exist in different organizations)
  • URL validation and hostname allowlists on all external fetch operations
  • Pagination bounded to prevent memory-heavy queries

Performance

  • Stats route optimized — sentiment and theme counting from limited dataset instead of loading all rows
  • Admin tenants route reduced from 2N queries to 3 total queries
  • Bulk import processes contacts in parallel batches of 3 instead of serially
  • Tab-focus no longer triggers full page reload (tenant resolution cached by user ID)

Pages & Navigation

  • Support page with FAQ, how-it-works guide, and contact information
  • Release notes page (you’re reading it)
  • Privacy policy and terms of service with wehearyou.io contact emails
  • Password reset flow with email link + new password form
  • Cross-linking throughout — response cards link to person profiles, dashboard links to full lists
  • Sidebar divider between data views and settings sections
  • Sign out properly redirects to login page
  • “No access” page includes support link and sign out button
v0.5March 31, 2026

Foundation Release

The first version of We Hear You — a complete platform for capturing, analyzing, and classifying qualitative feedback from video and transcription sources.

Dashboard

  • Overview page with real-time stats, sentiment breakdown, top themes, and recent responses
  • People directory with filtering by persona, sentiment, and search
  • Individual person profiles with full response timelines
  • Response feed with full-text search and filtering by source, sentiment, and date

AI Analysis

  • Configurable analysis engine powered by Claude — define exactly what insights you want to extract
  • Visual schema builder for adding custom fields (text, lists, choices, numbers, yes/no) without writing code
  • System prompt editor for fine-tuning how the AI interprets your data
  • Live preview — test your analysis configuration with a sample transcription before saving

Personas

  • Define custom personas with names, descriptions, and classification criteria
  • Automatic classification — every new response is sorted into a persona
  • Re-analyze existing responses when you update your persona definitions

Sources & Integrations

  • VideoAsk adapter — connect your VideoAsk forms with one webhook URL
  • Custom adapter — send data from any tool that supports webhooks
  • Per-source API keys with scoped permissions (ingest, read, admin)
  • Webhook signature verification for secure data delivery

Organizations & Access

  • Multi-tenant architecture — each organization gets a fully isolated workspace
  • Domain-based auto-provisioning — add an email domain and anyone at that company can sign up and join automatically
  • Role-based access: Admin (full control) and Viewer (read-only)
  • Email/password authentication with password reset flow

Security & Privacy

  • AES-256-GCM encryption for all personally identifiable information at rest
  • Row-level security ensuring no organization can access another’s data
  • Per-tenant rate limiting to prevent API abuse
  • Input sanitization and prompt injection defenses on all AI processing
  • Security headers on all endpoints (HSTS, X-Content-Type-Options, X-Frame-Options)

Design

  • Light and dark mode with system preference detection
  • Soft, minimal interface with peach, seafoam, and sunshine accents
  • Instructional copy on every page — built for non-technical users
  • Privacy policy, terms of service, and release notes