phi·cloud
Platform
OverviewRouting & residencyNetwork & coverageVendor matrixCompliance
Capabilities
Chat & reasoningEmbeddings & searchSpeech (STT / TTS)Document OCRVisionImage & videoAll capabilities
Solutions
Clinical documentationPatient messagingMedical transcriptionSearch & RAG over PHIAll solutions
Resources
API referenceReseller guideBlogCompareAboutllms.txt
Pricing
Log inGet started

About

Private AI for the regulated world.

phi-cloud is a single drop-in API for chat, embeddings, speech, OCR and vision — routed per region with a hard PHI gate, operated from Switzerland, and built so there is almost nothing to store in the first place.

Get startedCompliance posture

11 routing regions · 3 PHI-live jurisdictions · 0 prompts stored

Our thesis

The model was never the hard part

For healthcare and other regulated teams, the obstacle to using AI has never been model quality. It is the question a regulator, customer or counsel asks next: where did the data go, who processed it, and can you prove it? Most AI APIs cannot answer that cleanly — they front a US endpoint, retain prompts for abuse-monitoring, and offer one global pool with no per-request control.

phi-cloud is built around that question. Every call is classified as PHI or general, pinned to a jurisdiction, and routed only to a provider whose contract we have verified for that data class and region. The proxy itself holds nothing — so the honest answer to “what do you store?” is “your account, your balance, and nothing you sent us.”

Principles

How we build

Stateless

No application database

phi-cloud is a stateless proxy. There is no app DB, no usage table, no prompt log. Auth is HMAC-signed self-contained tokens; the credit balance lives in Stripe; ephemeral state lives in Upstash. The less we store, the less there is to leak or subpoena.
Resident

Region-resident by default

Routing picks the data-resident provider for the region you pin — Infomaniak in Switzerland, Scaleway in the EU — and fails over only within that jurisdiction. Residency is a routing guarantee, not a marketing claim.
Verified

PHI-eligibility is verified, not assumed

A provider carries PHI only after its DPA/BAA is reviewed and recorded. Most providers are general-traffic only on purpose. We would rather refuse a request than route protected data to an unverified host.
Compatible

OpenAI-compatible on purpose

Point your existing SDK at our base URL and keep your code. We don’t invent custom shapes where an OpenAI equivalent exists — region and PHI are just request headers.
Honest

We ship before we claim

Every compliance badge maps to architecture we actually run or paperwork with a date. Staged routes are labelled staged. No feature on this site is aspirational.
Independent

Independent of any one cloud

We are not a reseller for a single hyperscaler. The registry spans open-weight and frontier providers, and you can pin the one that fits your jurisdiction and budget.

Who it’s for

Built for the buyer who gets asked the hard questions

Healthcare & life sciences

Clinics, digital-health products and research teams that touch PHI and answer to HIPAA, nFADP or GDPR.

Builders & resellers

Teams shipping AI features under their own brand who need per-request residency and a clean cost header to mark up.

Compliance & security

The people who fill in the questionnaire — given named sub-processors, audit headers and a stateless posture they can defend.

Questions, partnership or press? hello@phi-cloud.com.

Ready when you are

Read the posture before you read the contract.

Everything about how phi-cloud routes, gates and bills is documented in the open. Start with a free key.

Get startedSee the sub-processors →

Free to test · Prepaid credits, no subscription · No data retained