Now there’s an interesting thought. I’ll check with the client to see if that’s acceptable. His main concern is if he’s asking someone a legally binding question, how does he prevent a human from going in there and mucking it up.
You could probably use some sort of mechanism that digitally signs the response with a thumbprint hash and store the response as a record in the database. there are two built in fields Created and Modified which are Date/Time fields. If they do not match then someone has been tampering, i.e. has edited the response after it was initially created and saved.