Sign In

Frequently Asked Questions - Security and Privacy

How secure is mesibo?

mesibo is one of the most secure real-time communication platforms in the world. mesibo messages and calls are end-to-end encrypted. mesibo offers the world's most powerful end-to-end encryption algorithm. You can read more about it here and an article here.

In addition, mesibo uses the latest Transport Layer Security (TLS) to secure communication. mesibo also provides an API for additional custom end-to-end encryption and key exchange on top of the default encryption which allows changing the encryption key for every message exchange and even mesibo servers cannot read those communications.

I think I found a privacy/security issue in the mesibo APIs, what should I do?

mesibo prioritizes data privacy and security as paramount concerns. The mesibo platform undergoes rigorous testing, encompassing hundreds of test cases dedicated to privacy and security, establishing mesibo as one of the most secure platforms available today.

To further protect our platform users, we extend an invitation to security researchers worldwide, including you, to participate in our Bug Bounty Programopen_in_new. We offer a generous monetary reward for qualifying issues as part of our ongoing commitment to maintaining the highest standards of security.

Can I host mesibo on my own servers?

Yes. The entire mesibo platform can be downloaded and self-hosted in your own data center or private cloud. In a self-hosted deployment, all messages, calls, and related data are routed through your own servers and stored in your own database.

This allows you to retain full control over your infrastructure, data storage, and security policies, which helps meet strict data privacy and compliance requirements such as GDPR and HIPAA.

Refer to the documentationopen_in_new for instructions on downloading and self-hosting the mesibo platform.

What if I do not want my user data to go through your cloud servers?

In that case, you can self-host the mesibo platform in your own infrastructure. When self-hosted, all communication traffic and data remain within your servers, and nothing needs to pass through mesibo cloud servers.

Due to GDPR, can you guarantee that the location of the server is in the EU?

Yes, we can offer you servers located in Germany.

Is mesibo HIPAA compliant?

Yes. The entire mesibo platform can be downloaded and self-hosted in your own data center or private cloud. This allows you to fully control and manage all application data, including protected health information (PHI), within your own infrastructure.

When mesibo is self-hosted, mesibo does not access, store, or process your data. Organizations therefore retain full control over their security, data handling, and compliance processes, which allows them to build HIPAA-compliant healthcare and telemedicine applications.

Because the platform runs entirely within your infrastructure in a self-hosted deployment, organizations do not need to enter into a Business Associate Agreement (BAA) with mesibo.

Refer to the documentationopen_in_new for instructions on downloading and self-hosting the mesibo platform.

Does mesibo meet EU GDPR requirements?

Yes. mesibo can be configured to meet EU GDPR requirements. If you use mesibo cloud services, we can restrict your data to be processed and stored only on EU-based servers.

You can also download the entire mesibo platform and self-host it in your own data center or private cloud. In a self-hosted deployment, all data storage, processing, and access remain within your own infrastructure, giving you full control over how user data is handled to meet GDPR requirements.

Refer to the documentation for instructions on downloading and self-hosting the mesibo platform.