Privacy · by architecture

Your data.
Your machine.

Ilfirin runs on your own computer. Your wearable, food, and bloodwork data stays there — there's no Ilfirin account, no company database, and nothing sold. Privacy here is a property of how it's built, not a promise we ask you to take on faith.

One honest caveat, named plainly below: during a chat, tool results pass through Anthropic so Claude can read them.

What happens to your data

It runs where your data already is.

Most health apps mail your records to a server you'll never see. Ilfirin does the opposite: it installs on your own machine and reads your data locally. Here's exactly what stays put — and the one path that doesn't.

Your computer · runs locally

Stays on your machine

Your data, where it lives

Wearable history — sleep, heart rate, steps, HRV, workouts
Food logs and the nutrition catalog
Bloodwork PDFs and parsed lab values (encrypted at rest)
Your profile, plans, reviews, and the audit log

Leaves only to power the AI

Through Anthropic, while you chat

The messages you type, and the specific tool results Claude needs to answer them
That's how Claude reads your numbers to coach you — it can't reason over data it never receives
On Pro/Max plans, Anthropic does not train on your data by default and retains it only briefly for trust & safety, then deletes it

The honest version: nothing is uploaded in the background, and there's no Ilfirin server in the middle. Data flows out only in the moment you ask a question — and only the slice that question needs. The two narrower modes below shrink or close even that path. Read the source: Anthropic's privacy policy.

You choose how much flows

Three modes. You set the dial.

The same coach, three levels of disclosure — a deliberate trade between AI quality and how much ever leaves your machine. Switch any time; it's a setting in your profile, not a support ticket.

Comparison of Ilfirin's three privacy modes across what Claude sees, what leaves your machine, and the trade-off.
Privacy mode	Standard Full detail	Aggregated Summaries only	Local-only Nothing leaves
What Claude sees	Exact values, in full. ApoB 78 · RHR 51 · 156 lb	Summaries, not raw numbers. "cardio markers in range" · "stable"	Nothing reaches Anthropic at all. a local model reads it instead
What leaves your machine	Your message + the tool results it needs, during the chat.	Only the summary — raw values stay local and are never sent.	Nothing. A model on your own machine (Ollama) does the reasoning.
The trade-off	Best AI quality and the most granular coaching.	Still useful coaching; less precise where raw numbers would help.	Absolute privacy; AI quality is meaningfully lower than Claude.

Standard is the default because most people want the best coaching. If you'd rather not send raw numbers, aggregated keeps them local; if you want zero data through Anthropic, local-only never lets a thing leave. It's your call, and you can change your mind.

Finer control

Per-field control, and a log you can actually read.

Modes set the broad dial. Two more tools work underneath them: mark individual fields off-limits, and check, any time, exactly what was shared.

Field-level redaction

Hide specific fields, in any mode.

Orthogonal to the mode you pick — flag any single category as Claude-inaccessible, and only a pass/fail or a direction reaches the chat. Common choices:

Bloodwork raw values — only "in range" vs. target reaches Claude, never the number.
Exact weight — only "stable" or "trending up/down" is shared.
Mental-health notes — kept for you only; never readable by any tool.
Precise location — only "home" or "traveling," not where.

Local audit log

Every data access, written down.

Each tool call is logged to a plain file on your machine — which tool ran, which fields it returned, and what was redacted. Ask Ilfirin to show it any time; you control how long it's kept.

tool get_today_readiness

returned color, rhr_status, hrv_status, sleep_status

redacted raw_rhr_value

The part most products won't say

How the connection actually works — no spin.

We'd rather lose you to the truth than keep you with a claim that doesn't hold up. So here's the connection, described accurately — the way a careful person would want it described to them.

Local
It runs on your own computer. Your records live on your machine. We own no servers and keep no database of your health data — there's nothing for us to sell or leak.
No account
No sign-up, no profile, nothing sold. There's no Ilfirin login, no analytics following you, and no business running on your data.
Honest
Tool results pass through Anthropic during a chat. On standard mode, that's how Claude reads your data to coach you. We link Anthropic's privacy policy and don't pretend otherwise. Aggregated and local-only narrow or close that path.

Transport · the accurate wording

Standard TLS — not a private end-to-end channel.

To let Claude reach your machine, the connection runs over standard TLS through a Cloudflare tunnel. That TLS is terminated at Cloudflare's edge — so the traffic is decrypted there before continuing. That means it is not end-to-end encrypted, and we will never call it that.

Claude Cloudflare edge · TLS terminates here Your machine

It's a standard reverse-proxy arrangement, and a common one. The honest takeaway: your data stays on your computer, but the chat path is ordinary web transport, not a sealed private tunnel. If that matters to you, local-only mode keeps everything on your machine.

Lines we don't cross

No account. No database. Nothing sold.

Because Ilfirin runs on your machine and we run no service in the middle, a whole class of privacy problems simply doesn't exist here.

No accountNo login, no profile. You don't create an Ilfirin account, so there's no credential to breach and no identity to track.
No databaseWe keep no copy of your data. There's no central store of health records on our side — nothing to subpoena, leak, or sell.
No saleYour data is never sold or shared. We don't run an ad business or a data brokerage. There's no incentive to monetize you.
No trackingNo analytics following you. The dashboard is local and read-only; this site ships no third-party trackers (and self-hosts its fonts in production).

Honest about what this is.

betaAn early, invite-based beta — not a finished, polished product, and not pretending to be.
not e2eThe chat path is standard TLS terminated at Cloudflare's edge, not end-to-end encryption. We say so on purpose.
not medicalCoaching grounded in cited research — but not medical advice, and not a substitute for your clinician.
your callThree modes, field-level redaction, and a local audit log. The defaults favor coaching; the controls favor you.

Request access

Keep your data. Get the coach.

Tell us a little about your devices and your setup. We'll provision your own instance and send you a personalized installer — it runs on your machine, with the privacy mode set wherever you're comfortable. It's an early, invite-based beta, and access is limited while we keep it small.

Request access See how it works

An early beta — not a finished, polished product, and not pretending to be.

Your data.Your machine.