From c0938ca7164df71daeb702b77b7315bc2db39c81 Mon Sep 17 00:00:00 2001
From: Ellie Re'em <eleanor.reem@hotmail.co.uk>
Date: Mon, 9 Jun 2025 15:35:56 +0100
Subject: [PATCH 1/5] fix: ensure server only env variables aren't prefixed
 with next_public

---
 .env.example                          | 14 +++++++-------
 app/api/feedback/route.ts             |  6 +++---
 app/api/follow-up-questions/route.ts  |  6 +++---
 app/api/quality-check-letter/route.ts |  6 +++---
 4 files changed, 16 insertions(+), 16 deletions(-)

diff --git a/.env.example b/.env.example
index 6d2966a..85c513c 100644
--- a/.env.example
+++ b/.env.example
@@ -17,7 +17,7 @@ NEXT_PUBLIC_ENV=development
 NEXT_PUBLIC_GOOGLE_SITE_VERIFICATION=
 
 # Typeform Feedback URL (optional)
-NEXT_PUBLIC_TYPEFORM_FEEDBACK_URL=
+TYPEFORM_FEEDBACK_URL=
 
 # Google AI API Key for Gemini
 GOOGLE_AI_API_KEY=
@@ -25,11 +25,11 @@ GOOGLE_AI_API_KEY=
 # Slack Webhook URL for notifications
 SLACK_WEBHOOK_URL=
 
-# Zapier Webhook URL for feedback collection
-NEXT_PUBLIC_ZAPIER_FEEDBACK_WEBHOOK_URL=
-NEXT_PUBLIC_ZAPIER_FOLLOWUP_WEBHOOK_URL=
-NEXT_PUBLIC_ZAPIER_QUALITY_WEBHOOK_URL=
+# Zapier Webhook URLs for data collection
+ZAPIER_FEEDBACK_WEBHOOK_URL=
+ZAPIER_FOLLOWUP_WEBHOOK_URL=
+ZAPIER_QUALITY_WEBHOOK_URL=
+ZAPIER_DEVELOPMENT_INPUT_COLLECTION_WEBHOOK_URL=
 
 # Zapier Webhook Token for authentication
-ZAPIER_WEBHOOK_TOKEN=
-
+ZAPIER_WEBHOOK_TOKEN=
\ No newline at end of file
diff --git a/app/api/feedback/route.ts b/app/api/feedback/route.ts
index 9a5b474..89bef9c 100644
--- a/app/api/feedback/route.ts
+++ b/app/api/feedback/route.ts
@@ -5,12 +5,12 @@ import { NextResponse } from 'next/server';
 export async function POST(request: Request) {
   rollbar.info('feedback: Received feedback submission');
   try {
-    if (!process.env.NEXT_PUBLIC_ZAPIER_FEEDBACK_WEBHOOK_URL) {
+    if (!process.env.ZAPIER_FEEDBACK_WEBHOOK_URL) {
       return NextResponse.json({ error: 'Zapier webhook URL not configured' }, { status: 500 });
     }
 
     const body = await request.json();
-    await sendToZapier(process.env.NEXT_PUBLIC_ZAPIER_FEEDBACK_WEBHOOK_URL, body);
+    await sendToZapier(process.env.ZAPIER_FEEDBACK_WEBHOOK_URL, body);
 
     return NextResponse.json({ success: true });
   } catch (error: any) {
@@ -33,4 +33,4 @@ export async function OPTIONS() {
       'Access-Control-Allow-Headers': 'Content-Type',
     },
   });
-}
\ No newline at end of file
+}
diff --git a/app/api/follow-up-questions/route.ts b/app/api/follow-up-questions/route.ts
index fcee799..0028ee7 100644
--- a/app/api/follow-up-questions/route.ts
+++ b/app/api/follow-up-questions/route.ts
@@ -46,7 +46,7 @@ export async function POST(request: Request) {
     });
 
     // Send questions to Zapier if webhook URL is configured
-    if (process.env.NEXT_PUBLIC_ZAPIER_FOLLOWUP_WEBHOOK_URL) {
+    if (process.env.ZAPIER_FOLLOWUP_WEBHOOK_URL) {
       const zapierPayload = {
         date: new Date().toISOString(),
         Q1: questions[0]?.question || '',
@@ -57,7 +57,7 @@ export async function POST(request: Request) {
         Q6: questions[5]?.question || '',
       };
 
-      await sendToZapier(process.env.NEXT_PUBLIC_ZAPIER_FOLLOWUP_WEBHOOK_URL, zapierPayload);
+      await sendToZapier(process.env.ZAPIER_FOLLOWUP_WEBHOOK_URL, zapierPayload);
     }
 
     return NextResponse.json(questions);
@@ -73,4 +73,4 @@ export async function POST(request: Request) {
 
     return NextResponse.json({ error: errorMessage }, { status });
   }
-}
\ No newline at end of file
+}
diff --git a/app/api/quality-check-letter/route.ts b/app/api/quality-check-letter/route.ts
index 2af6017..922503b 100644
--- a/app/api/quality-check-letter/route.ts
+++ b/app/api/quality-check-letter/route.ts
@@ -51,8 +51,8 @@ export async function POST(request: Request) {
     const qualityCheckResult = await retryWithDelay(generateQualityCheck);
 
     // Send critical issues to Zapier if webhook URL is configured
-    // if (qualityCheckResult.severity === 'critical' && process.env.NEXT_PUBLIC_ZAPIER_QUALITY_WEBHOOK_URL) {
-    if (process.env.NEXT_PUBLIC_ZAPIER_QUALITY_WEBHOOK_URL) {
+    // if (qualityCheckResult.severity === 'critical' && process.env.ZAPIER_QUALITY_WEBHOOK_URL) {
+    if (process.env.ZAPIER_QUALITY_WEBHOOK_URL) {
       const zapierPayload = {
         date: new Date().toISOString(),
         issue1: qualityCheckResult.issues[0]
@@ -75,7 +75,7 @@ export async function POST(request: Request) {
           : '',
       };
 
-      await sendToZapier(process.env.NEXT_PUBLIC_ZAPIER_QUALITY_WEBHOOK_URL, zapierPayload);
+      await sendToZapier(process.env.ZAPIER_QUALITY_WEBHOOK_URL, zapierPayload);
     }
 
     rollbar.info('QualityCheckLetter: Successfully parsed quality check result', {

From 9f86600dcd0fa82dfc67b83415c4ac7bdde1e06f Mon Sep 17 00:00:00 2001
From: Ellie Re'em <eleanor.reem@hotmail.co.uk>
Date: Mon, 9 Jun 2025 15:38:54 +0100
Subject: [PATCH 2/5] feat: add development mode data collection

---
 app/api/dev-data-collection/route.ts          | 112 +++++++++++++++++
 app/client-layout.tsx                         |  10 +-
 .../components/letter-review.tsx              | 117 ++++++++++++++++--
 components/dev/development-warning.tsx        | 114 +++++++++++++++++
 components/feedback/disclaimer-banner.tsx     |   2 +-
 lib/dev/data-collection.ts                    |  55 ++++++++
 6 files changed, 397 insertions(+), 13 deletions(-)
 create mode 100644 app/api/dev-data-collection/route.ts
 create mode 100644 components/dev/development-warning.tsx
 create mode 100644 lib/dev/data-collection.ts

diff --git a/app/api/dev-data-collection/route.ts b/app/api/dev-data-collection/route.ts
new file mode 100644
index 0000000..1c23512
--- /dev/null
+++ b/app/api/dev-data-collection/route.ts
@@ -0,0 +1,112 @@
+import { handleApiError, serverInstance as rollbar } from '@/lib/rollbar';
+import { sendToZapier } from '@/lib/zapier';
+import { NextResponse } from 'next/server';
+
+export async function POST(request: Request) {
+  rollbar.info('dev-data-collection: Received development data submission');
+
+  try {
+    // Only allow in development environment
+    if (process.env.NEXT_PUBLIC_ENV !== 'development') {
+      rollbar.warning('dev-data-collection: Attempted to use in non-development environment');
+      return NextResponse.json(
+        { error: 'This endpoint is only available in development' },
+        { status: 403 },
+      );
+    }
+
+    if (!process.env.ZAPIER_DEVELOPMENT_INPUT_COLLECTION_WEBHOOK_URL) {
+      rollbar.warning('dev-data-collection: Zapier development webhook URL not configured');
+      return NextResponse.json(
+        { error: 'Development webhook URL not configured' },
+        { status: 500 },
+      );
+    }
+
+    const body = await request.json();
+
+    // Validate required fields
+    if (!body.formData || !body.generatedLetter) {
+      rollbar.error('dev-data-collection: Missing required fields', { body });
+      return NextResponse.json(
+        { error: 'Missing required fields: formData and generatedLetter' },
+        { status: 400 },
+      );
+    }
+
+    // Prepare the payload for Zapier
+    const zapierPayload = {
+      timestamp: new Date().toISOString(),
+      environment: 'development',
+
+      // Platform Information
+      platform_id: body.formData.platformInfo?.platformId || '',
+      platform_name: body.formData.platformInfo?.platformName || '',
+      platform_is_custom: body.formData.platformInfo?.isCustom || false,
+      platform_custom_name: body.formData.platformInfo?.customName || '',
+
+      // Reporting Information
+      reporting_status: body.formData.reportingInfo?.status || '',
+
+      // Initial Questions
+      content_type: body.formData.initialQuestions?.contentType || '',
+      content_context: body.formData.initialQuestions?.contentContext || '',
+      content_location_type: body.formData.initialQuestions?.contentLocationType || '',
+      content_url: body.formData.initialQuestions?.contentUrl || '',
+      content_description: body.formData.initialQuestions?.contentDescription || '',
+      image_upload_date: body.formData.initialQuestions?.imageUploadDate || '',
+      image_taken_date: body.formData.initialQuestions?.imageTakenDate || '',
+      ownership_evidence: body.formData.initialQuestions?.ownershipEvidence || '',
+      impact_statement: body.formData.initialQuestions?.impactStatement || '',
+
+      // Reporting Details
+      standard_process_details: body.formData.reportingDetails?.standardProcessDetails || '',
+      escalated_process_details: body.formData.reportingDetails?.escalatedProcessDetails || '',
+      response_received: body.formData.reportingDetails?.responseReceived || '',
+      additional_steps_taken: body.formData.reportingDetails?.additionalStepsTaken || '',
+
+      // Follow-up Data
+      follow_up_questions_count: body.formData.followUpData?.questions?.length || 0,
+      follow_up_answers: JSON.stringify(body.formData.followUpData?.answers || {}),
+
+      // Generated Letter
+      letter_subject: body.generatedLetter?.subject || '',
+      letter_body: body.generatedLetter?.body || '',
+      letter_next_steps: JSON.stringify(body.generatedLetter?.nextSteps || []),
+
+      // Additional metadata
+      session_id: body.sessionId || '',
+      user_agent: request.headers.get('user-agent') || '',
+      completion_time_seconds: body.completionTimeSeconds || 0,
+    };
+
+    await sendToZapier(process.env.ZAPIER_DEVELOPMENT_INPUT_COLLECTION_WEBHOOK_URL, zapierPayload);
+
+    rollbar.info('dev-data-collection: Successfully sent development data to Zapier', {
+      platform: zapierPayload.platform_name,
+      contentType: zapierPayload.content_type,
+      hasFollowUp: zapierPayload.follow_up_questions_count > 0,
+    });
+
+    return NextResponse.json({ success: true });
+  } catch (error: any) {
+    const { error: errorMessage, status } = handleApiError(error, '/api/dev-data-collection');
+    rollbar.error('dev-data-collection: Error processing development data submission', {
+      error: errorMessage,
+      status,
+      stack: error.stack,
+    });
+    return NextResponse.json({ error: errorMessage }, { status });
+  }
+}
+
+export async function OPTIONS() {
+  return new NextResponse(null, {
+    status: 200,
+    headers: {
+      'Access-Control-Allow-Origin': '*',
+      'Access-Control-Allow-Methods': 'POST, OPTIONS',
+      'Access-Control-Allow-Headers': 'Content-Type',
+    },
+  });
+}
diff --git a/app/client-layout.tsx b/app/client-layout.tsx
index 25ffc6e..5c068c3 100644
--- a/app/client-layout.tsx
+++ b/app/client-layout.tsx
@@ -1,5 +1,6 @@
-"use client";
+'use client';
 
+import { DevelopmentWarning } from '@/components/dev/development-warning';
 import { DisclaimerBanner } from '@/components/feedback/disclaimer-banner';
 import { Footer } from '@/components/layout/footer';
 import { Header } from '@/components/layout/header';
@@ -10,6 +11,7 @@ import { ReactNode } from 'react';
 export function ClientLayout({ children }: { children: ReactNode }) {
   return (
     <FormProvider>
+      <DevelopmentWarning />
       <Header />
       <main className="flex-1">
         <div className="max-w-7xl mx-auto px-4 sm:px-6 py-4 sm:py-6 min-h-[calc(100vh-4rem)]">
@@ -18,9 +20,7 @@ export function ClientLayout({ children }: { children: ReactNode }) {
         </div>
       </main>
       <Footer />
-      <GoogleAnalytics 
-        gaId={process.env.NEXT_PUBLIC_GA_ID || ''}
-      />
+      <GoogleAnalytics gaId={process.env.NEXT_PUBLIC_GA_ID || ''} />
     </FormProvider>
   );
-}
\ No newline at end of file
+}
diff --git a/app/letter-generator/components/letter-review.tsx b/app/letter-generator/components/letter-review.tsx
index 9dad109..fda94f4 100644
--- a/app/letter-generator/components/letter-review.tsx
+++ b/app/letter-generator/components/letter-review.tsx
@@ -17,6 +17,7 @@ import { useToast } from '@/hooks/use-toast';
 import { analytics } from '@/lib/analytics';
 import { GA_EVENTS } from '@/lib/constants/analytics';
 import { useFormContext } from '@/lib/context/FormContext';
+import { sendDevDataToZapier } from '@/lib/dev/data-collection';
 import { platforms } from '@/lib/platforms';
 import { rollbar } from '@/lib/rollbar';
 import { GeneratedLetter } from '@/types/letter';
@@ -32,7 +33,7 @@ import {
   ThumbsUp,
 } from 'lucide-react';
 import Link from 'next/link';
-import { useState } from 'react';
+import { useEffect, useState } from 'react';
 import { QuestionSection } from './question-section';
 
 interface LetterReviewProps {
@@ -56,6 +57,9 @@ export function LetterReview({
   const [feedbackError, setFeedbackError] = useState<string | null>(null);
   const [consentToShare, setConsentToShare] = useState(false);
   const [isSubmitting, setIsSubmitting] = useState(false);
+  const [devDataSent, setDevDataSent] = useState(false);
+  const [sessionId, setSessionId] = useState<string>('');
+  const [processStartTime] = useState(() => Date.now());
   const { toast } = useToast();
   const { resetForm, formState } = useFormContext();
 
@@ -77,6 +81,45 @@ export function LetterReview({
     nextSteps: letter.nextSteps,
   };
 
+  // Send development data to Zapier when letter is first displayed
+  useEffect(() => {
+    if (!devDataSent && letter && formState.completeFormData) {
+      const sendData = async () => {
+        try {
+          const completionTime = Math.floor((Date.now() - processStartTime) / 1000);
+          const generatedSessionId = `dev_${Date.now()}_${Math.random().toString(36).substring(2, 15)}`;
+
+          const success = await sendDevDataToZapier({
+            formData: {
+              platformInfo: formState.platformInfo,
+              reportingInfo: formState.reportingInfo,
+              initialQuestions: formState.initialQuestions,
+              reportingDetails: formState.reportingDetails,
+              followUpData: formState.followUpData,
+              completeFormData: formState.completeFormData,
+            },
+            generatedLetter: letter,
+            sessionId: generatedSessionId,
+            completionTimeSeconds: completionTime,
+          });
+
+          if (success) {
+            setDevDataSent(true);
+            setSessionId(generatedSessionId);
+            console.log(
+              'Development data collection: Data sent successfully with session ID:',
+              generatedSessionId,
+            );
+          }
+        } catch (error) {
+          console.error('Development data collection: Failed to send data', error);
+        }
+      };
+
+      sendData();
+    }
+  }, [letter, formState, devDataSent, processStartTime]);
+
   const handleCopy = async () => {
     try {
       const fullText = `Subject: ${displayLetter.subject}\n\n${displayLetter.body}`;
@@ -150,10 +193,6 @@ export function LetterReview({
       setIsSubmitting(true);
       setFeedbackError(null);
 
-      if (!process.env.NEXT_PUBLIC_ZAPIER_FEEDBACK_WEBHOOK_URL) {
-        throw new Error('Unable to submit feedback at this time');
-      }
-
       const payload = {
         date: new Date().toISOString(),
         feedbackRating: isUseful ? 'positive' : 'negative',
@@ -199,6 +238,22 @@ export function LetterReview({
     }
   };
 
+  const copySessionId = async () => {
+    try {
+      await navigator.clipboard.writeText(sessionId);
+      toast({
+        title: 'Session ID copied',
+        description: 'The session ID has been copied to your clipboard.',
+      });
+    } catch (err) {
+      toast({
+        title: 'Unable to copy',
+        description: 'Please select and copy the session ID manually.',
+        variant: 'destructive',
+      });
+    }
+  };
+
   return (
     <div className="space-y-8">
       <QuestionSection>
@@ -218,6 +273,54 @@ export function LetterReview({
             </div>
           </div>
 
+          {/* Development data collection indicator */}
+          {process.env.NEXT_PUBLIC_ENV === 'development' && (
+            <div className="bg-blue-50 border-2 border-blue-300 rounded-lg p-4 mb-6">
+              <div className="flex items-start gap-3">
+                <CheckCircle2 className="w-6 h-6 mt-0.5 shrink-0 text-blue-600" />
+                <div className="flex-1">
+                  <h4 className="font-semibold text-blue-900 text-lg mb-2">Development Mode</h4>
+                  <p className="text-blue-800 mb-3">
+                    Your form data and generated letter have been stored to help us improve our
+                    tool.
+                  </p>
+                  {sessionId && (
+                    <div className="bg-white border border-blue-200 rounded-lg p-3">
+                      <div className="flex items-center justify-between">
+                        <div>
+                          <p className="text-sm font-medium text-blue-900 mb-1">Your Session ID:</p>
+                          <code className="text-lg font-mono bg-blue-100 px-3 py-2 rounded border text-blue-900 font-bold tracking-wider">
+                            {sessionId}
+                          </code>
+                        </div>
+                        <Button
+                          variant="outline"
+                          size="sm"
+                          onClick={copySessionId}
+                          className="ml-3 border-blue-300 text-blue-700 hover:bg-blue-50"
+                        >
+                          <Copy className="w-4 h-4 mr-1" />
+                          Copy
+                        </Button>
+                      </div>
+                      <p className="text-xs text-blue-600 mt-2">
+                        Save this ID to reference your submission in our development records.
+                      </p>
+                    </div>
+                  )}
+                  {!sessionId && devDataSent && (
+                    <p className="text-blue-700 text-sm">
+                      Data sent successfully. Session ID will appear shortly.
+                    </p>
+                  )}
+                  {!devDataSent && (
+                    <p className="text-blue-700 text-sm">Sending data to development system...</p>
+                  )}
+                </div>
+              </div>
+            </div>
+          )}
+
           <div className="space-y-4">
             <div>
               <h4 className="text-lg font-medium mb-2">Send email to</h4>
@@ -330,7 +433,7 @@ export function LetterReview({
                         experience, you help us make this tool more supportive for others in similar
                         situations. If you would like to provide more detailed feedback, please{' '}
                         <Link
-                          href={process.env.NEXT_PUBLIC_TYPEFORM_FEEDBACK_URL || '#'}
+                          href={process.env.TYPEFORM_FEEDBACK_URL || '#'}
                           target="_blank"
                           onClick={() => analytics.trackFeedbackSubmission('typeform')}
                           className="underline underline-offset-2 font-medium hover:text-primary/90"
@@ -414,7 +517,7 @@ export function LetterReview({
             This tool is new and learning! By sharing your experience, you help us make this tool
             more supportive for others in similar situations.{' '}
             <Link
-              href={process.env.NEXT_PUBLIC_TYPEFORM_FEEDBACK_URL || '#'}
+              href={process.env.TYPEFORM_FEEDBACK_URL || '#'}
               target="_blank"
               onClick={() => analytics.trackFeedbackSubmission('typeform')}
               className="underline underline-offset-2 font-medium hover:text-primary/90"
diff --git a/components/dev/development-warning.tsx b/components/dev/development-warning.tsx
new file mode 100644
index 0000000..9dc3260
--- /dev/null
+++ b/components/dev/development-warning.tsx
@@ -0,0 +1,114 @@
+'use client';
+
+import { Button } from '@/components/ui/button';
+import {
+  Dialog,
+  DialogContent,
+  DialogFooter,
+  DialogHeader,
+  DialogTitle,
+} from '@/components/ui/dialog';
+import { analytics } from '@/lib/analytics';
+import { IS_DEVELOPMENT } from '@/lib/constants/common';
+import { AlertTriangle, ExternalLink } from 'lucide-react';
+import { useEffect, useState } from 'react';
+
+export function DevelopmentWarning() {
+  const [showWarning, setShowWarning] = useState(false);
+
+  useEffect(() => {
+    // Only show in development environment
+    if (!IS_DEVELOPMENT) return;
+
+    // Check if user has already seen the warning
+    const hasSeenWarning = localStorage.getItem('dev-warning-acknowledged');
+    if (!hasSeenWarning) {
+      setShowWarning(true);
+    }
+  }, []);
+
+  const handleAcknowledge = () => {
+    // Store acknowledgment in localStorage
+    localStorage.setItem('dev-warning-acknowledged', 'true');
+    setShowWarning(false);
+
+    // Track analytics event
+    analytics.trackEvent('development_warning_acknowledged', {
+      timestamp: new Date().toISOString(),
+    });
+  };
+
+  const handleGoToProduction = () => {
+    // Track analytics event
+    analytics.trackEvent('development_warning_production_redirect', {
+      timestamp: new Date().toISOString(),
+    });
+
+    // Redirect to production site
+    window.open('https://tools.chayn.co', '_blank');
+  };
+
+  if (!IS_DEVELOPMENT || !showWarning) {
+    return null;
+  }
+
+  return (
+    <Dialog open={showWarning} onOpenChange={() => {}}>
+      <DialogContent className="sm:max-w-lg" onPointerDownOutside={(e) => e.preventDefault()}>
+        <DialogHeader>
+          <div className="flex items-center gap-3 mb-2">
+            <div className="bg-amber-100 p-2 rounded-full">
+              <AlertTriangle className="h-5 w-5 text-amber-600" />
+            </div>
+            <DialogTitle className="text-lg">
+              Development Version - Data Collection Notice
+            </DialogTitle>
+          </div>
+          <div className="text-left space-y-4 text-sm">
+            <p className="font-medium text-foreground">
+              You're currently using the development version of our Survivor AI tool.
+            </p>
+
+            <div className="bg-amber-50 border border-amber-200 rounded-lg p-3">
+              <p className="font-medium text-amber-800 mb-2">What this means:</p>
+              <ul className="text-amber-700 space-y-1 text-xs">
+                <li>• All form inputs you provide are collected and stored</li>
+                <li>• AI-generated follow-up questions are saved</li>
+                <li>• Your final takedown letter is stored for analysis</li>
+                <li>• This data helps us improve the tool for future users</li>
+              </ul>
+            </div>
+
+            <div className="bg-green-50 border border-green-200 rounded-lg p-3">
+              <p className="font-medium text-green-800 mb-1">Want complete privacy?</p>
+              <p className="text-green-700 text-xs">
+                Use our production site at <span className="font-mono">tools.chayn.co</span> where
+                no data is stored or collected.
+              </p>
+            </div>
+
+            <p className="text-xs text-muted-foreground">
+              By continuing, you consent to data collection for development purposes only.
+            </p>
+          </div>
+        </DialogHeader>
+        <DialogFooter className="flex-col sm:flex-row gap-2">
+          <Button
+            variant="outline"
+            onClick={handleGoToProduction}
+            className="w-full sm:w-auto border-green-300 text-green-700 hover:bg-green-50"
+          >
+            <ExternalLink className="w-4 h-4 mr-2" />
+            Use Production Site (Private)
+          </Button>
+          <Button
+            onClick={handleAcknowledge}
+            className="w-full sm:w-auto bg-primary text-white hover:opacity-90"
+          >
+            Continue with Development
+          </Button>
+        </DialogFooter>
+      </DialogContent>
+    </Dialog>
+  );
+}
diff --git a/components/feedback/disclaimer-banner.tsx b/components/feedback/disclaimer-banner.tsx
index 0f0b7c0..166b6ac 100644
--- a/components/feedback/disclaimer-banner.tsx
+++ b/components/feedback/disclaimer-banner.tsx
@@ -39,7 +39,7 @@ export function DisclaimerBanner() {
             It's safe to use, but if you encounter anything confusing or that doesn't work as
             expected, please{' '}
             <Link
-              href={process.env.NEXT_PUBLIC_TYPEFORM_FEEDBACK_URL || '#'}
+              href={process.env.TYPEFORM_FEEDBACK_URL || '#'}
               target="_blank"
               onClick={handleFeedbackClick}
               className="text-muted-foreground underline underline-offset-2 font-medium"
diff --git a/lib/dev/data-collection.ts b/lib/dev/data-collection.ts
new file mode 100644
index 0000000..48a9d81
--- /dev/null
+++ b/lib/dev/data-collection.ts
@@ -0,0 +1,55 @@
+import { IS_DEVELOPMENT } from '../constants/common';
+import { rollbar } from '../rollbar';
+
+interface DevDataCollectionPayload {
+  formData: any;
+  generatedLetter: any;
+  sessionId?: string;
+  completionTimeSeconds?: number;
+}
+
+export async function sendDevDataToZapier(payload: DevDataCollectionPayload): Promise<boolean> {
+  // Only send data in development environment
+  if (!IS_DEVELOPMENT) {
+    return false;
+  }
+
+  try {
+    const response = await fetch('/api/dev-data-collection', {
+      method: 'POST',
+      headers: {
+        'Content-Type': 'application/json',
+      },
+      body: JSON.stringify({
+        ...payload,
+        sessionId: payload.sessionId || generateSessionId(),
+      }),
+    });
+
+    if (!response.ok) {
+      const errorData = await response.json();
+      throw new Error(errorData.error || 'Failed to send development data');
+    }
+
+    console.log('Development data collection: Successfully sent data to Zapier');
+    return true;
+  } catch (error) {
+    rollbar.error('Development data collection: Error sending data to Zapier', {
+      error,
+      payload: {
+        ...payload,
+        // Don't log sensitive data in error logs
+        formData: 'redacted',
+        generatedLetter: 'redacted',
+      },
+    });
+    console.error('Development data collection error:', error);
+    return false;
+  }
+}
+
+function generateSessionId(): string {
+  return `dev_${Date.now()}_${Math.random().toString(36).substring(2, 15)}`;
+}
+
+export { IS_DEVELOPMENT };

From 1aab05e2058820626cb48e17450e6e35c52b99f4 Mon Sep 17 00:00:00 2001
From: Ellie Re'em <eleanor.reem@hotmail.co.uk>
Date: Tue, 10 Jun 2025 17:09:24 +0100
Subject: [PATCH 3/5] fix: cypress tests and copy updates on testing mode

---
 .env.example                                  |  2 +
 .../components/letter-review.tsx              | 82 +++++++---------
 components/dev/development-warning.tsx        | 23 ++---
 cypress.config.ts                             |  3 +
 cypress/e2e/dev-mode/data-collection.cy.ts    | 93 +++++++++++++++++++
 .../e2e/dev-mode/development-warning.cy.ts    | 74 +++++++++++++++
 cypress/e2e/platforms/facebook.cy.ts          |  2 +
 cypress/e2e/platforms/instagram.cy.ts         |  2 +
 cypress/e2e/platforms/onlyfans.cy.ts          |  2 +
 cypress/e2e/platforms/other.cy.ts             |  2 +
 cypress/e2e/platforms/pornhub.cy.ts           |  3 +
 cypress/e2e/platforms/tiktok.cy.ts            |  3 +
 cypress/support/commands.ts                   | 59 +++++++++++-
 cypress/support/e2e.ts                        |  2 +-
 cypress/support/index.d.ts                    | 22 +++++
 cypress/tsconfig.json                         |  9 ++
 lib/dev/data-collection.ts                    |  8 +-
 package-lock.json                             | 13 +++
 package.json                                  |  1 +
 19 files changed, 333 insertions(+), 72 deletions(-)
 create mode 100644 cypress/e2e/dev-mode/data-collection.cy.ts
 create mode 100644 cypress/e2e/dev-mode/development-warning.cy.ts
 create mode 100644 cypress/support/index.d.ts
 create mode 100644 cypress/tsconfig.json

diff --git a/.env.example b/.env.example
index 85c513c..90913cd 100644
--- a/.env.example
+++ b/.env.example
@@ -12,6 +12,8 @@ ROLLBAR_SERVER_TOKEN=
 
 # Environment (development/production)
 NEXT_PUBLIC_ENV=development
+NEXT_PUBLIC_BASE_URL=http://localhost:3000
+
 
 # Google Site Verification (optional)
 NEXT_PUBLIC_GOOGLE_SITE_VERIFICATION=
diff --git a/app/letter-generator/components/letter-review.tsx b/app/letter-generator/components/letter-review.tsx
index fda94f4..5a86dd7 100644
--- a/app/letter-generator/components/letter-review.tsx
+++ b/app/letter-generator/components/letter-review.tsx
@@ -17,7 +17,7 @@ import { useToast } from '@/hooks/use-toast';
 import { analytics } from '@/lib/analytics';
 import { GA_EVENTS } from '@/lib/constants/analytics';
 import { useFormContext } from '@/lib/context/FormContext';
-import { sendDevDataToZapier } from '@/lib/dev/data-collection';
+import { generateSessionId, sendDevDataToZapier } from '@/lib/dev/data-collection';
 import { platforms } from '@/lib/platforms';
 import { rollbar } from '@/lib/rollbar';
 import { GeneratedLetter } from '@/types/letter';
@@ -87,7 +87,7 @@ export function LetterReview({
       const sendData = async () => {
         try {
           const completionTime = Math.floor((Date.now() - processStartTime) / 1000);
-          const generatedSessionId = `dev_${Date.now()}_${Math.random().toString(36).substring(2, 15)}`;
+          const generatedSessionId = generateSessionId();
 
           const success = await sendDevDataToZapier({
             formData: {
@@ -262,6 +262,36 @@ export function LetterReview({
           animate={{ opacity: 1, y: 0 }}
           className="space-y-6"
         >
+          {/* Development data collection indicator */}
+          {process.env.NEXT_PUBLIC_ENV === 'development' && (
+            <div className="flex items-start gap-3 p-4 bg-accent-light/60 rounded-lg text-muted-foreground mb-4">
+              <AlertCircle className="w-5 h-5 mt-0.5 shrink-0" />
+              <div>
+                <p className="text-foreground font-medium">Testing mode</p>
+                <p className="text-sm">Copy this ID to quote it when giving us feedback</p>
+                {sessionId && (
+                  <div className="mt-3 flex items-center gap-3">
+                    <code className="text-lg font-mono bg-white px-4 py-2 rounded border text-foreground font-bold tracking-widest">
+                      {sessionId}
+                    </code>
+                    <Button variant="outline" size="sm" onClick={copySessionId} className="text-xs">
+                      <Copy className="w-3 h-3 mr-1" />
+                      Copy
+                    </Button>
+                  </div>
+                )}
+                {!sessionId && devDataSent && (
+                  <p className="text-muted-foreground text-sm mt-2">
+                    Session ID will appear shortly.
+                  </p>
+                )}
+                {!devDataSent && (
+                  <p className="text-muted-foreground text-sm mt-2">Generating session ID...</p>
+                )}
+              </div>
+            </div>
+          )}
+
           <div className="flex items-start gap-3 p-4 bg-accent-light/60 rounded-lg text-muted-foreground mb-4">
             <AlertCircle className="w-5 h-5 mt-0.5 shrink-0" />
             <div>
@@ -273,54 +303,6 @@ export function LetterReview({
             </div>
           </div>
 
-          {/* Development data collection indicator */}
-          {process.env.NEXT_PUBLIC_ENV === 'development' && (
-            <div className="bg-blue-50 border-2 border-blue-300 rounded-lg p-4 mb-6">
-              <div className="flex items-start gap-3">
-                <CheckCircle2 className="w-6 h-6 mt-0.5 shrink-0 text-blue-600" />
-                <div className="flex-1">
-                  <h4 className="font-semibold text-blue-900 text-lg mb-2">Development Mode</h4>
-                  <p className="text-blue-800 mb-3">
-                    Your form data and generated letter have been stored to help us improve our
-                    tool.
-                  </p>
-                  {sessionId && (
-                    <div className="bg-white border border-blue-200 rounded-lg p-3">
-                      <div className="flex items-center justify-between">
-                        <div>
-                          <p className="text-sm font-medium text-blue-900 mb-1">Your Session ID:</p>
-                          <code className="text-lg font-mono bg-blue-100 px-3 py-2 rounded border text-blue-900 font-bold tracking-wider">
-                            {sessionId}
-                          </code>
-                        </div>
-                        <Button
-                          variant="outline"
-                          size="sm"
-                          onClick={copySessionId}
-                          className="ml-3 border-blue-300 text-blue-700 hover:bg-blue-50"
-                        >
-                          <Copy className="w-4 h-4 mr-1" />
-                          Copy
-                        </Button>
-                      </div>
-                      <p className="text-xs text-blue-600 mt-2">
-                        Save this ID to reference your submission in our development records.
-                      </p>
-                    </div>
-                  )}
-                  {!sessionId && devDataSent && (
-                    <p className="text-blue-700 text-sm">
-                      Data sent successfully. Session ID will appear shortly.
-                    </p>
-                  )}
-                  {!devDataSent && (
-                    <p className="text-blue-700 text-sm">Sending data to development system...</p>
-                  )}
-                </div>
-              </div>
-            </div>
-          )}
-
           <div className="space-y-4">
             <div>
               <h4 className="text-lg font-medium mb-2">Send email to</h4>
diff --git a/components/dev/development-warning.tsx b/components/dev/development-warning.tsx
index 9dc3260..35fb054 100644
--- a/components/dev/development-warning.tsx
+++ b/components/dev/development-warning.tsx
@@ -60,15 +60,9 @@ export function DevelopmentWarning() {
             <div className="bg-amber-100 p-2 rounded-full">
               <AlertTriangle className="h-5 w-5 text-amber-600" />
             </div>
-            <DialogTitle className="text-lg">
-              Development Version - Data Collection Notice
-            </DialogTitle>
+            <DialogTitle className="text-lg">Testing mode - remember we save data</DialogTitle>
           </div>
           <div className="text-left space-y-4 text-sm">
-            <p className="font-medium text-foreground">
-              You're currently using the development version of our Survivor AI tool.
-            </p>
-
             <div className="bg-amber-50 border border-amber-200 rounded-lg p-3">
               <p className="font-medium text-amber-800 mb-2">What this means:</p>
               <ul className="text-amber-700 space-y-1 text-xs">
@@ -82,14 +76,12 @@ export function DevelopmentWarning() {
             <div className="bg-green-50 border border-green-200 rounded-lg p-3">
               <p className="font-medium text-green-800 mb-1">Want complete privacy?</p>
               <p className="text-green-700 text-xs">
-                Use our production site at <span className="font-mono">tools.chayn.co</span> where
-                no data is stored or collected.
+                Use our user-facing site at tools.chayn.co where no data is stored.
+              </p>
+              <p className="text-green-700 text-xs mt-2">
+                By continuing, you consent to data collection for development purposes only.
               </p>
             </div>
-
-            <p className="text-xs text-muted-foreground">
-              By continuing, you consent to data collection for development purposes only.
-            </p>
           </div>
         </DialogHeader>
         <DialogFooter className="flex-col sm:flex-row gap-2">
@@ -98,14 +90,13 @@ export function DevelopmentWarning() {
             onClick={handleGoToProduction}
             className="w-full sm:w-auto border-green-300 text-green-700 hover:bg-green-50"
           >
-            <ExternalLink className="w-4 h-4 mr-2" />
-            Use Production Site (Private)
+            <ExternalLink className="w-4 h-4 mr-2" />I prefer privacy
           </Button>
           <Button
             onClick={handleAcknowledge}
             className="w-full sm:w-auto bg-primary text-white hover:opacity-90"
           >
-            Continue with Development
+            Happy to help
           </Button>
         </DialogFooter>
       </DialogContent>
diff --git a/cypress.config.ts b/cypress.config.ts
index b634f6c..b4c856a 100644
--- a/cypress.config.ts
+++ b/cypress.config.ts
@@ -1,4 +1,6 @@
 import { defineConfig } from 'cypress';
+import * as dotenv from 'dotenv';
+dotenv.config(); // <-- This loads .env into process.env
 
 export default defineConfig({
   e2e: {
@@ -9,5 +11,6 @@ export default defineConfig({
     video: false,
     screenshotOnRunFailure: false,
     experimentalWebKitSupport: true,
+    requestTimeout: 10000,
   },
 });
diff --git a/cypress/e2e/dev-mode/data-collection.cy.ts b/cypress/e2e/dev-mode/data-collection.cy.ts
new file mode 100644
index 0000000..472cb19
--- /dev/null
+++ b/cypress/e2e/dev-mode/data-collection.cy.ts
@@ -0,0 +1,93 @@
+describe('Development Data Collection', () => {
+  beforeEach(() => {
+    cy.visit('/');
+    cy.dismissDevWarning();
+  });
+
+  it('collects and sends development data after letter generation', () => {
+    // Intercept the development data collection API call
+    cy.intercept('POST', '/api/dev-data-collection', {
+      statusCode: 200,
+      body: { success: true },
+    }).as('devDataCollection');
+
+    // Complete a full flow
+    cy.contains('Start your request').click();
+    cy.get('h2').contains('Building your takedown letter');
+    cy.contains('Start your request').click();
+
+    // Platform selection
+    cy.get('h3').contains('Instagram').click();
+    cy.contains('Continue').click();
+
+    // Reporting status
+    cy.contains("I've tried both processes").click();
+    cy.contains('Continue').click();
+
+    // Initial questions
+    cy.contains('Personal content').click();
+    cy.contains('Posted by someone I know').click();
+    cy.get('input[type="radio"][value="url"]').check();
+    cy.get('input[id="contentUrl"]').type('https://instagram.com/test-post');
+    cy.get('#imageUploadDate').type('1 March 2025');
+    cy.get('#imageTakenDate').type('15 February 2025');
+    cy.get('#ownershipEvidence').type('I can verify this is my content');
+    cy.get('#impactStatement').type('This has caused significant distress');
+    cy.contains('Continue').click();
+
+    // Reporting details
+    cy.get('#standardProcessDetails').type('I reported through Instagram reporting tool');
+    cy.get('#escalatedProcessDetails').type('I contacted Instagram support directly');
+    cy.get('#responseReceived').type('Instagram acknowledged but took no action');
+    cy.get('#additionalStepsTaken').type('I followed up multiple times');
+    cy.contains('Continue').click();
+
+    // Follow-up questions
+    cy.contains('Continue', { timeout: 30000 }).click();
+
+    // Wait for letter generation and review page
+    cy.contains('Review and send', { timeout: 100000 }).should('be.visible');
+
+    // Verify development data was sent
+    cy.wait('@devDataCollection', { timeout: 20000 }).then((interception) => {
+      expect(interception.request.body).to.have.property('formData');
+      expect(interception.request.body).to.have.property('generatedLetter');
+      expect(interception.request.body).to.have.property('sessionId');
+      expect(interception.request.body.sessionId).to.match(/^[a-z0-9]{12}$/);
+    });
+
+    // Verify session ID is displayed
+    cy.verifyDevSessionId();
+  });
+
+  it('handles data collection errors gracefully', () => {
+    // Intercept with error response
+    cy.intercept('POST', '/api/dev-data-collection', {
+      statusCode: 500,
+      body: { error: 'Server error' },
+    }).as('devDataCollectionError');
+
+    // Complete minimal flow
+    cy.contains('Start your request').click();
+    cy.get('h2').contains('Building your takedown letter');
+    cy.contains('Start your request').click();
+    cy.contains('Other platform').click();
+    cy.get('#other-platform').type('TestPlatform');
+    cy.contains('Continue').click();
+
+    cy.contains('Intimate images').click();
+    cy.contains('Account was compromised').click();
+    cy.get('input[type="radio"][value="description"]').check();
+    cy.get('#contentDescription').type('Test content');
+    cy.contains('Continue').click();
+
+    cy.contains('Continue', { timeout: 30000 }).click();
+    cy.contains('Review and send', { timeout: 100000 }).should('be.visible');
+
+    // Verify error was handled (should still show development mode notice)
+    cy.contains('Testing mode').should('be.visible');
+
+    // Should show error state or fallback message
+    cy.contains('Generating session ID').should('be.visible');
+  });
+});
diff --git a/cypress/e2e/dev-mode/development-warning.cy.ts b/cypress/e2e/dev-mode/development-warning.cy.ts
new file mode 100644
index 0000000..fffb283
--- /dev/null
+++ b/cypress/e2e/dev-mode/development-warning.cy.ts
@@ -0,0 +1,74 @@
+describe('Development Warning', () => {
+  beforeEach(() => {
+    // Clear localStorage to ensure warning appears
+    cy.clearLocalStorage();
+  });
+
+  it('shows development warning on first visit', () => {
+    cy.visit('/');
+
+    // Verify development warning dialog appears
+    cy.get('[role="dialog"]').should('be.visible');
+    cy.contains('Testing mode - remember we save data').should('be.visible');
+
+    // Verify warning content
+    cy.contains('All form inputs you provide are collected and stored').should('be.visible');
+    cy.contains('AI-generated follow-up questions are saved').should('be.visible');
+    cy.contains('Your final takedown letter is stored for analysis').should('be.visible');
+
+    // Verify privacy section
+    cy.contains('Want complete privacy?').should('be.visible');
+    cy.contains('Use our user-facing site at tools.chayn.co where no data is stored').should(
+      'be.visible',
+    );
+    cy.contains(
+      'By continuing, you consent to data collection for development purposes only',
+    ).should('be.visible');
+
+    // Verify buttons are present
+    cy.contains('I prefer privacy').should('be.visible');
+    cy.contains('Happy to help').should('be.visible');
+  });
+
+  it('dismisses warning and does not show again', () => {
+    cy.visit('/');
+
+    // Dismiss the warning
+    cy.get('[role="dialog"]').within(() => {
+      cy.contains('Happy to help').click();
+    });
+
+    // Verify dialog is closed
+    cy.get('[role="dialog"]').should('not.exist');
+
+    // Verify localStorage is set
+    cy.window().then((win) => {
+      expect(win.localStorage.getItem('dev-warning-acknowledged')).to.equal('true');
+    });
+
+    // Reload page and verify warning doesn't appear again
+    cy.reload();
+    cy.get('[role="dialog"]').should('not.exist');
+  });
+
+  it('provides production site redirect option', () => {
+    cy.visit('/');
+
+    // Mock window.open to prevent actual navigation
+    cy.window().then((win) => {
+      cy.stub(win, 'open').as('windowOpen');
+    });
+
+    cy.get('[role="dialog"]').within(() => {
+      cy.contains('I prefer privacy').click();
+    });
+
+    // Verify production site would be opened
+    cy.get('@windowOpen').should('have.been.calledWith', 'https://tools.chayn.co', '_blank');
+  });
+
+  it('verifies complete warning content structure', () => {
+    cy.visit('/');
+    cy.verifyDevWarningContent();
+  });
+});
diff --git a/cypress/e2e/platforms/facebook.cy.ts b/cypress/e2e/platforms/facebook.cy.ts
index ecbe261..904a0bf 100644
--- a/cypress/e2e/platforms/facebook.cy.ts
+++ b/cypress/e2e/platforms/facebook.cy.ts
@@ -1,5 +1,7 @@
 function startFacebookFlow() {
   cy.visit('/');
+  // Dismiss development warning if it appears
+  cy.dismissDevWarning();
   cy.contains('Start your request').click();
   cy.get('h2').contains('Building your takedown letter');
   cy.contains('Start your request').click();
diff --git a/cypress/e2e/platforms/instagram.cy.ts b/cypress/e2e/platforms/instagram.cy.ts
index 15c5ba0..53dace9 100644
--- a/cypress/e2e/platforms/instagram.cy.ts
+++ b/cypress/e2e/platforms/instagram.cy.ts
@@ -1,5 +1,7 @@
 function startInstagramFlow() {
   cy.visit('/');
+  // Dismiss development warning if it appears
+  cy.dismissDevWarning();
   cy.contains('Start your request').click();
   cy.get('h2').contains('Building your takedown letter');
   cy.contains('Start your request').click();
diff --git a/cypress/e2e/platforms/onlyfans.cy.ts b/cypress/e2e/platforms/onlyfans.cy.ts
index e28aad2..7ba7d80 100644
--- a/cypress/e2e/platforms/onlyfans.cy.ts
+++ b/cypress/e2e/platforms/onlyfans.cy.ts
@@ -1,5 +1,7 @@
 function startOnlyFansFlow() {
   cy.visit('/');
+  // Dismiss development warning if it appears
+  cy.dismissDevWarning();
   cy.contains('Start your request').click();
   cy.get('h2').contains('Building your takedown letter');
   cy.contains('Start your request').click();
diff --git a/cypress/e2e/platforms/other.cy.ts b/cypress/e2e/platforms/other.cy.ts
index ac09fd7..428bdac 100644
--- a/cypress/e2e/platforms/other.cy.ts
+++ b/cypress/e2e/platforms/other.cy.ts
@@ -1,6 +1,8 @@
 describe('Other Platform Flow', () => {
   before(() => {
     cy.visit('/');
+    // Dismiss development warning if it appears
+    cy.dismissDevWarning();
   });
 
   it('completes flow for Other Platforms', () => {
diff --git a/cypress/e2e/platforms/pornhub.cy.ts b/cypress/e2e/platforms/pornhub.cy.ts
index 49d1c3a..2b3460e 100644
--- a/cypress/e2e/platforms/pornhub.cy.ts
+++ b/cypress/e2e/platforms/pornhub.cy.ts
@@ -1,6 +1,9 @@
 describe('Pornhub Platform Flow', () => {
   before(() => {
     cy.visit('/');
+
+    // Dismiss development warning if it appears
+    cy.dismissDevWarning();
   });
 
   it('starts the request and navigates to the letter generator', () => {
diff --git a/cypress/e2e/platforms/tiktok.cy.ts b/cypress/e2e/platforms/tiktok.cy.ts
index 2246aeb..b55a4bd 100644
--- a/cypress/e2e/platforms/tiktok.cy.ts
+++ b/cypress/e2e/platforms/tiktok.cy.ts
@@ -1,6 +1,9 @@
 describe('Tiktok Platform Flow', () => {
   before(() => {
     cy.visit('/');
+
+    // Dismiss development warning if it appears
+    cy.dismissDevWarning();
   });
 
   it('starts the request and navigates to the letter generator', () => {
diff --git a/cypress/support/commands.ts b/cypress/support/commands.ts
index c435df7..db2e967 100644
--- a/cypress/support/commands.ts
+++ b/cypress/support/commands.ts
@@ -3,4 +3,61 @@
 // Add custom commands here
 // For more comprehensive examples of custom
 // commands please read more here:
-// https://on.cypress.io/custom-commands
\ No newline at end of file
+// https://on.cypress.io/custom-commands
+
+Cypress.Commands.add('dismissDevWarning', () => {
+  // Check if development warning dialog is present and dismiss it
+  cy.get('h1').contains('Survivor AI').should('be.visible'); // checking that the page loads
+  cy.get('body').then(($body) => {
+    if ($body.find('[role="dialog"]').length > 0) {
+      cy.get('[role="dialog"]').within(() => {
+        cy.contains('Testing mode - remember we save data').should('be.visible');
+        cy.contains('Happy to help').click();
+      });
+
+      // Wait for dialog to close
+      cy.get('[role="dialog"]').should('not.exist');
+    }
+  });
+});
+
+Cypress.Commands.add('verifyDevSessionId', () => {
+  // Wait for the development mode notice to appear
+  cy.contains('Testing mode', { timeout: 10000 }).should('be.visible');
+
+  // Verify the notice content
+  cy.contains('Copy this ID to quote it when giving us feedback').should('be.visible');
+
+  // Wait for session ID to be generated and displayed (12 characters max)
+  cy.get('code')
+    .contains(/^[a-z0-9]{12}$/)
+    .should('be.visible');
+
+  // Verify copy button is present and functional
+  cy.contains('Copy').should('be.visible').and('not.be.disabled');
+});
+
+Cypress.Commands.add('verifyDevWarningContent', () => {
+  cy.get('[role="dialog"]').within(() => {
+    // Verify title
+    cy.contains('Testing mode - remember we save data').should('be.visible');
+
+    // Verify data collection details
+    cy.contains('All form inputs you provide are collected and stored').should('be.visible');
+    cy.contains('AI-generated follow-up questions are saved').should('be.visible');
+    cy.contains('Your final takedown letter is stored for analysis').should('be.visible');
+
+    // Verify privacy option
+    cy.contains('Want complete privacy?').should('be.visible');
+    cy.contains('Use our user-facing site at tools.chayn.co where no data is stored').should(
+      'be.visible',
+    );
+    cy.contains(
+      'By continuing, you consent to data collection for development purposes only',
+    ).should('be.visible');
+
+    // Verify buttons
+    cy.contains('I prefer privacy').should('be.visible');
+    cy.contains('Happy to help').should('be.visible');
+  });
+});
diff --git a/cypress/support/e2e.ts b/cypress/support/e2e.ts
index c6f932c..ad18f01 100644
--- a/cypress/support/e2e.ts
+++ b/cypress/support/e2e.ts
@@ -2,4 +2,4 @@
 import './commands';
 
 // Alternatively you can use CommonJS syntax:
-// require('./commands')
\ No newline at end of file
+// require('./commands')
diff --git a/cypress/support/index.d.ts b/cypress/support/index.d.ts
new file mode 100644
index 0000000..921c6f1
--- /dev/null
+++ b/cypress/support/index.d.ts
@@ -0,0 +1,22 @@
+// cypress/support/index.ts
+declare namespace Cypress {
+  interface Chainable {
+    /**
+     * Dismisses the development warning dialog if present.
+     * This is useful for tests that run in development mode.
+     */
+    dismissDevWarning(): Chainable<Element>;
+
+    /**
+     * Verifies the session ID in development mode.
+     * Ensures the notice is visible and contains a valid session ID.
+     */
+    verifyDevSessionId(): Chainable<Element>;
+
+    /**
+     * Verifies the content of the development warning dialog.
+     * Checks all expected text and buttons are present.
+     */
+    verifyDevWarningContent(): Chainable<Element>;
+  }
+}
diff --git a/cypress/tsconfig.json b/cypress/tsconfig.json
new file mode 100644
index 0000000..b0882e6
--- /dev/null
+++ b/cypress/tsconfig.json
@@ -0,0 +1,9 @@
+{
+  "compilerOptions": {
+    "target": "es5",
+    "lib": ["es5", "dom"],
+    "sourceMap": true,
+    "types": ["cypress", "node", "./support"]
+  },
+  "include": ["**/*.ts"]
+}
diff --git a/lib/dev/data-collection.ts b/lib/dev/data-collection.ts
index 48a9d81..9b57d1a 100644
--- a/lib/dev/data-collection.ts
+++ b/lib/dev/data-collection.ts
@@ -1,3 +1,4 @@
+import { randomBytes } from 'crypto';
 import { IS_DEVELOPMENT } from '../constants/common';
 import { rollbar } from '../rollbar';
 
@@ -48,8 +49,7 @@ export async function sendDevDataToZapier(payload: DevDataCollectionPayload): Pr
   }
 }
 
-function generateSessionId(): string {
-  return `dev_${Date.now()}_${Math.random().toString(36).substring(2, 15)}`;
+export function generateSessionId(): string {
+  // Generate a timestamp for session code
+  return randomBytes(6).toString('hex'); // Generate a secure random string
 }
-
-export { IS_DEVELOPMENT };
diff --git a/package-lock.json b/package-lock.json
index 68dce86..9f16d76 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -54,6 +54,7 @@
         "@typescript-eslint/eslint-plugin": "^8.33.1",
         "@typescript-eslint/parser": "^8.33.1",
         "cypress": "^14.4.1",
+        "dotenv": "^16.5.0",
         "eslint-config-prettier": "^10.1.5",
         "husky": "^9.1.7",
         "lint-staged": "^16.1.0",
@@ -4951,6 +4952,18 @@
         "node": ">=0.10.0"
       }
     },
+    "node_modules/dotenv": {
+      "version": "16.5.0",
+      "resolved": "https://registry.npmjs.org/dotenv/-/dotenv-16.5.0.tgz",
+      "integrity": "sha512-m/C+AwOAr9/W1UOIZUo232ejMNnJAJtYQjUbHoNTBNTJSvqzzDh7vnrei3o3r3m9blf6ZoDkvcw0VmozNRFJxg==",
+      "dev": true,
+      "engines": {
+        "node": ">=12"
+      },
+      "funding": {
+        "url": "https://dotenvx.com"
+      }
+    },
     "node_modules/dunder-proto": {
       "version": "1.0.1",
       "resolved": "https://registry.npmjs.org/dunder-proto/-/dunder-proto-1.0.1.tgz",
diff --git a/package.json b/package.json
index b2c00f9..cd925eb 100644
--- a/package.json
+++ b/package.json
@@ -78,6 +78,7 @@
     "@typescript-eslint/eslint-plugin": "^8.33.1",
     "@typescript-eslint/parser": "^8.33.1",
     "cypress": "^14.4.1",
+    "dotenv": "^16.5.0",
     "eslint-config-prettier": "^10.1.5",
     "husky": "^9.1.7",
     "lint-staged": "^16.1.0",

From 26067d4c162317dae187d9bbe9d4255a9b538b65 Mon Sep 17 00:00:00 2001
From: Ellie Re'em <eleanor.reem@hotmail.co.uk>
Date: Tue, 10 Jun 2025 17:26:57 +0100
Subject: [PATCH 4/5] refactor: use IS_DEVELOPMENT check in letter-review

---
 app/letter-generator/components/letter-review.tsx | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/app/letter-generator/components/letter-review.tsx b/app/letter-generator/components/letter-review.tsx
index 5a86dd7..6af2629 100644
--- a/app/letter-generator/components/letter-review.tsx
+++ b/app/letter-generator/components/letter-review.tsx
@@ -16,6 +16,7 @@ import { Label } from '@/components/ui/label';
 import { useToast } from '@/hooks/use-toast';
 import { analytics } from '@/lib/analytics';
 import { GA_EVENTS } from '@/lib/constants/analytics';
+import { IS_DEVELOPMENT } from '@/lib/constants/common';
 import { useFormContext } from '@/lib/context/FormContext';
 import { generateSessionId, sendDevDataToZapier } from '@/lib/dev/data-collection';
 import { platforms } from '@/lib/platforms';
@@ -263,7 +264,7 @@ export function LetterReview({
           className="space-y-6"
         >
           {/* Development data collection indicator */}
-          {process.env.NEXT_PUBLIC_ENV === 'development' && (
+          {IS_DEVELOPMENT && (
             <div className="flex items-start gap-3 p-4 bg-accent-light/60 rounded-lg text-muted-foreground mb-4">
               <AlertCircle className="w-5 h-5 mt-0.5 shrink-0" />
               <div>

From edc136b0ae5bcdbdbe97bef71a43ef8a7810bd8d Mon Sep 17 00:00:00 2001
From: Ellie Re'em <eleanor.reem@hotmail.co.uk>
Date: Tue, 10 Jun 2025 22:49:45 +0100
Subject: [PATCH 5/5] fix: ensure testing mode happens on dev and preview mode

---
 app/api/dev-data-collection/route.ts              | 3 ++-
 app/letter-generator/components/letter-review.tsx | 4 ++--
 components/dev/development-warning.tsx            | 6 +++---
 lib/constants/common.ts                           | 1 +
 lib/dev/data-collection.ts                        | 4 ++--
 5 files changed, 10 insertions(+), 8 deletions(-)

diff --git a/app/api/dev-data-collection/route.ts b/app/api/dev-data-collection/route.ts
index 1c23512..c929aaf 100644
--- a/app/api/dev-data-collection/route.ts
+++ b/app/api/dev-data-collection/route.ts
@@ -1,3 +1,4 @@
+import { IS_DEVELOPMENT, IS_PREVIEW } from '@/lib/constants/common';
 import { handleApiError, serverInstance as rollbar } from '@/lib/rollbar';
 import { sendToZapier } from '@/lib/zapier';
 import { NextResponse } from 'next/server';
@@ -7,7 +8,7 @@ export async function POST(request: Request) {
 
   try {
     // Only allow in development environment
-    if (process.env.NEXT_PUBLIC_ENV !== 'development') {
+    if (!IS_DEVELOPMENT && !IS_PREVIEW) {
       rollbar.warning('dev-data-collection: Attempted to use in non-development environment');
       return NextResponse.json(
         { error: 'This endpoint is only available in development' },
diff --git a/app/letter-generator/components/letter-review.tsx b/app/letter-generator/components/letter-review.tsx
index 6af2629..1033eaf 100644
--- a/app/letter-generator/components/letter-review.tsx
+++ b/app/letter-generator/components/letter-review.tsx
@@ -16,7 +16,7 @@ import { Label } from '@/components/ui/label';
 import { useToast } from '@/hooks/use-toast';
 import { analytics } from '@/lib/analytics';
 import { GA_EVENTS } from '@/lib/constants/analytics';
-import { IS_DEVELOPMENT } from '@/lib/constants/common';
+import { IS_DEVELOPMENT, IS_PREVIEW } from '@/lib/constants/common';
 import { useFormContext } from '@/lib/context/FormContext';
 import { generateSessionId, sendDevDataToZapier } from '@/lib/dev/data-collection';
 import { platforms } from '@/lib/platforms';
@@ -264,7 +264,7 @@ export function LetterReview({
           className="space-y-6"
         >
           {/* Development data collection indicator */}
-          {IS_DEVELOPMENT && (
+          {(IS_DEVELOPMENT || IS_PREVIEW) && (
             <div className="flex items-start gap-3 p-4 bg-accent-light/60 rounded-lg text-muted-foreground mb-4">
               <AlertCircle className="w-5 h-5 mt-0.5 shrink-0" />
               <div>
diff --git a/components/dev/development-warning.tsx b/components/dev/development-warning.tsx
index 35fb054..7bb3156 100644
--- a/components/dev/development-warning.tsx
+++ b/components/dev/development-warning.tsx
@@ -9,7 +9,7 @@ import {
   DialogTitle,
 } from '@/components/ui/dialog';
 import { analytics } from '@/lib/analytics';
-import { IS_DEVELOPMENT } from '@/lib/constants/common';
+import { IS_DEVELOPMENT, IS_PREVIEW } from '@/lib/constants/common';
 import { AlertTriangle, ExternalLink } from 'lucide-react';
 import { useEffect, useState } from 'react';
 
@@ -18,7 +18,7 @@ export function DevelopmentWarning() {
 
   useEffect(() => {
     // Only show in development environment
-    if (!IS_DEVELOPMENT) return;
+    if (!IS_DEVELOPMENT && !IS_PREVIEW) return;
 
     // Check if user has already seen the warning
     const hasSeenWarning = localStorage.getItem('dev-warning-acknowledged');
@@ -48,7 +48,7 @@ export function DevelopmentWarning() {
     window.open('https://tools.chayn.co', '_blank');
   };
 
-  if (!IS_DEVELOPMENT || !showWarning) {
+  if ((!IS_DEVELOPMENT && !IS_PREVIEW) || !showWarning) {
     return null;
   }
 
diff --git a/lib/constants/common.ts b/lib/constants/common.ts
index cbb6a6d..e9c97d4 100644
--- a/lib/constants/common.ts
+++ b/lib/constants/common.ts
@@ -2,6 +2,7 @@ export const ENVIRONMENT =
   process.env.NEXT_PUBLIC_ENV || process.env.VERCEL_ENV || process.env.NODE_ENV;
 export const IS_PRODUCTION = ENVIRONMENT === 'production';
 export const IS_DEVELOPMENT = ENVIRONMENT === 'development';
+export const IS_PREVIEW = ENVIRONMENT === 'preview';
 export const AI_MODEL = process.env.ANTHROPIC_AI_MODEL || 'claude-sonnet-4-20250514';
 export const AI_TEMPERATURE = process.env.ANTHROPIC_AI_TEMPERATURE
   ? parseFloat(process.env.ANTHROPIC_AI_TEMPERATURE)
diff --git a/lib/dev/data-collection.ts b/lib/dev/data-collection.ts
index 9b57d1a..4103975 100644
--- a/lib/dev/data-collection.ts
+++ b/lib/dev/data-collection.ts
@@ -1,5 +1,5 @@
 import { randomBytes } from 'crypto';
-import { IS_DEVELOPMENT } from '../constants/common';
+import { IS_DEVELOPMENT, IS_PREVIEW } from '../constants/common';
 import { rollbar } from '../rollbar';
 
 interface DevDataCollectionPayload {
@@ -11,7 +11,7 @@ interface DevDataCollectionPayload {
 
 export async function sendDevDataToZapier(payload: DevDataCollectionPayload): Promise<boolean> {
   // Only send data in development environment
-  if (!IS_DEVELOPMENT) {
+  if (!IS_DEVELOPMENT && !IS_PREVIEW) {
     return false;
   }