Enterprise Grade Security
Built for
Trust & Sovereignty
MindKindler enforces strict data residency, PII redaction, and multi-agency audit trails to meet the rigorous demands of Governments and Healthcare providers worldwide.
UK
London Datacenter
mindkindler-uk (Strict GDPR)
US
Iowa Datacenter
mindkindler-us (HIPAA Ready)
EU
Frankfurt Datacenter
mindkindler-eu (GDPR Native)
Regional Data Sovereignty
Your sensitive clinical data never crosses borders. MindKindler uses a physical Sharded Architecture to guarantee data residency.
- GDPR Compliant: UK and EU tenants are strictly isolated in London and Frankfurt datacenters.
- HIPAA Ready: US tenants are provisioned in secure North American environments with BAA support.
- Tenant Isolation: Data is logically isolated via Firestore rules; you cannot query another organization's records.
Frictionless Multi-Agency Security
How do you securely collect documents from parents and teachers without forcing them to create accounts and remember passwords? Secure Magic Links.
- Expiring Tokens: Contribution links expire automatically after 7 days.
- Identity Verification: The portal requires the recipient to verify their email address before decrypting the upload zone.
- Automated Filing: Uploaded medical documents are instantly vaulted into the specific child's Case File.
Secure Access
Verify the email address this link was sent to.
Public LLMs: BLOCKED
Private RAG Engine: ACTIVE
Clinical Anti-Contamination
We do not train public AI models on your students. Period.
- Zero Data Retention: Cloud APIs (Gemini/Vertex) are configured with zero data retention policies.
- Strict RAG Context: Reports are generated using strictly bounded Retrieval-Augmented Generation. The AI only knows the evidence you explicitly attach.
- Copilot Audit Logs: Every question asked to the Forensic AI Copilot is logged for clinical supervision and audit purposes.