Sovereign hosting is not an afterthought — it is the first line of code. Below is the honest, current status of every compliance workstream across our intelligent clinical platforms. No marketing words, no overstatement.
Personal-data protection regime. CNDP declarations filed for IACardio and iAutisme under iAvoxel SARL (Karim El Mahi, founder). Authorization pending for health-data processing (Article 12) — application under review.
Declaration filedPublic privacy policies live across our domains. Designated DPO is currently the founder, while an external DPO migration is on the roadmap.
PublishedAll platform code and internal data stored on infrastructure located in Morocco. Zero foreign cloud dependency on patient data. Tier III/IV data-center alignment targeted with a Moroccan sovereign-cloud partner.
Hosted in MoroccoIACardio: ARIA live regions, focus trap on modals, skip links, keyboard navigation, 4 scripts (Latin, Arabic, Tifinagh). Screen-reader ready by design.
ImplementedAllergyIntolerance, Observation and Condition resources natively modeled. International coding standards used end-to-end (ICD diagnostic coding, LOINC lab panels).
NativeOur platforms ship intelligent clinical co-pilots — assistive components that compute, alert and suggest, while the physician remains the sole signing author of every diagnostic report. Step-up re-authentication, auto-save drafts and full audit trail are in production.
Production-readyAfrican Union data-protection convention. Country-local data-residency model designed for future sub-Saharan partners. Morocco: signatory (not ratified). Open to candidate African research and healthcare partners.
Model designedIntegration-ready for Ministry-of-Health reporting pipelines. Bidirectional synchronization on the roadmap for the next development phase.
Integration-readyQuality Management System for medical devices. Gap analysis in progress. Certification timeline being scoped with regulatory partners.
Gap analysisSoftware lifecycle for medical-device software. Edition 2.0 (2026) integrates cybersecurity and AI/ML controls. Assessment under preparation.
AssessmentInformation-security management system. Pre-audit preparation under way; certification timeline to be confirmed with the chosen certification body.
Pre-auditSoftware-as-a-Medical-Device classification per IMDRF guidance. Multi-step regulatory roadmap. Filing target to be confirmed alongside the QMS and software-lifecycle certifications above.
Roadmap