Compliance guide

MeshFlow ships compliance profiles for HIPAA, SOX, GDPR, PCI, and NERC, plus sensitive-data detection, guardrails, policy-as-code, and tamper-evident audit records.

Architecture-first compliance

MeshFlow's compliance is enforced in code, not in prompts. Deterministic code-level enforcement does not fail under adversarial inputs.

What's active by default

python

# Standard policy is the default governance posture

agent = Agent(name="assistant", role="executor")

# Add stricter profiles and guardrails for regulated workflows.

# Ledger records preserve replay and audit evidence for each run.

HIPAA configuration

python

from meshflow import Agent, PIIBlockGuardrail, compliance_profile

hipaa = compliance_profile("hipaa").to_policy()

agent = Agent(

name="clinical_assistant",

role="executor",

policy=hipaa,

input_guardrails=[PIIBlockGuardrail()],

output_guardrails=[PIIBlockGuardrail()],

)

Multi-agent workflows

Token optimization