Trust & Infrastructure

Enterprise security. Audited privacy.

Mindyai builds on top of secure AWS infrastructure, ensuring clinical datasets and personal logs remain encrypted.

User Dashboard (Web)Next.js 15 SSR Client

Cognito ID ProviderSession JWT / MFA

——>——>

Next.js API & LambdaServerless Triage Tiers

Amazon Bedrock (AI)Claude 3.5 Summarizer

——>——>

Aurora SQL (KMS)Row-level Multi-tenancy

CloudWatch LedgerImmutable Audit Logs

Data in transit uses TLS 1.3. Databases and S3 archives use AWS KMS keys (AES-256) to ensure rest security.

We enforce row-level tenant queries linked to Cognito JWT credentials. Cross-tenant leakage is prevented.

Strict RBAC keeps individual journal free-texts hidden from team managers and admin users alike.

All sensitive workflows (break-glass audits, case reviews) write read-only logs to CloudWatch ledgers.

Compliance Roadmap

We design our infrastructure to satisfy SOC2, HIPAA, and GDPR compliance standards.

RoadmapSOC 2 Type I & II Audits (H2 2026 Target)

RoadmapISO/IEC 27001 Certification alignment