Mirobody Platform runs as two independent deployments — one for mainland China and one for international markets. The two clusters are fully isolated: accounts, files, and health data never cross the border. Each cluster is designed, operated, and audited under the laws of its jurisdiction.Documentation Index
Fetch the complete documentation index at: https://docs.mirobody.ai/llms.txt
Use this file to discover all available pages before exploring further.
Both clusters are designed to HIPAA-grade health-privacy standards. The US side is additionally subject to continuous third-party audit. The China cluster complies with the PRC’s privacy and data-security laws and voluntarily aligns with HIPAA design principles.
Core commitments
Health-record privacy by design
Health-record privacy by design
Strict minimum-necessary principle. Health indicators / files / journals are user-scoped; analytics surface only the necessary fields; sensitive fields are encrypted at rest; service operators do not have access to plaintext PHI.
No mid-process retention
No mid-process retention
LLM calls follow the BYOK protocol — partner LLM keys are never persisted, never logged, and discarded at request end. Upstream LLM intermediate inference and tool-call traces are not persisted; only the user-visible chat content stays in the user’s own session history.
Encryption
Encryption
TLS 1.2+ enforced for HTTPS and WSS in transit. Industry-standard encryption at rest. Sensitive fields receive an additional layer of field-level encryption before write.
We do not sell your data
We do not sell your data
Mirobody never sells user health data, never uses it for advertising, never monetizes it via third parties.
User rights
User rights
Account deletion (
POST /user/del triggers soft-delete); data export via API (health profile / journals / files / chat history).Per-cluster framework
🇨🇳 China Cluster
Live · PRC law compliant · Aligned with HIPAA design principles
🇺🇸 Global Cluster
HIPAA-compliant since day one · Continuously third-party audited · GDPR-aligned for EU users
China cluster
| Law | Adopted | Official text |
|---|---|---|
| Personal Information Protection Law (PIPL) | 2021 | State Council |
| Data Security Law | 2021 | State Council |
| Cybersecurity Law | 2017 | State Council |
Global cluster
| Framework | Scope | Official text / Attestation |
|---|---|---|
| HIPAA | US market | HHS HIPAA Hub · Theta Vanta Trust Report |
| GDPR | EU / EEA users | EUR-Lex 32016R0679 |
| BAA (Business Associate Agreement) | HIPAA covered entities | Email Mirobody Support to initiate |