Implement secure data export with encryption and access controls

[Smartdevs17]

Description

Data export functionality lacks security controls. Implement encrypted exports with access logging and download URL expiry.

Acceptance Criteria

• Encrypted export files (AES-256)
• Download URL with time-limited expiry (15min default)
• Export request audit logging
• Access control for export generation
• Export cancellation for in-progress exports
• Data minimization (only requested fields)

Technical Scope

• backend/services/
• src/services/
• Edge: large export memory management, concurrent export requests, export data sensitivity

[Osifowora]

@Osifowora has applied to work on this issue as part of the Stellar Wave Program's 5th wave.

My background in backend security, data protection, and scalable service architecture makes me highly suited to implement secure export functionality with encryption, access controls, and audit logging. I pay close attention to sensitive data handling, edge cases such as concurrent export requests and large dataset memory management, and the enforcement of strict data minimization principles to ensure both security and performance. I will deliver a reliable, thoroughly tested solution featuring AES-256 encrypted exports, expiring download URLs, export lifecycle controls, and comprehensive logging that aligns with secure data governance best practices.

ℹ️ Repo Maintainers: To accept this application, review their application or assign @Osifowora to this issue.