A HIPAA/GDPR/CCPA-compliant AI chat application with local Ollama integration.
Chat with AI models running entirely on your machine. Your data never leaves your computer.
# Clone and install
git clone https://github.com/KenKaiii/chat-man.git
cd chat-man
bun install
# Build and start
bun run build
bun startThen open: http://localhost:3010
Platforms: macOS, Linux, WSL Requirements: Bun • Ollama (auto-installed if missing)
Windows: "command not found: ./start.sh"
You're trying to run on native Windows instead of WSL. This app requires WSL (Windows Subsystem for Linux):
# Install WSL (PowerShell as Administrator)
wsl --install
# Restart your computer, then open Ubuntu and run:
cd /mnt/c/path/to/chat-man
bun install
bun startNative Windows is NOT supported. Use WSL, macOS, or Linux.
Advanced: Native Windows (not recommended)
If you must use native Windows without WSL:
# 1. Install Ollama from https://ollama.ai/download/windows
# 2. Start Ollama manually (should auto-start in system tray)
# 3. Run the server directly:
bun run dev:serverNote: You'll miss automatic Ollama startup and health checks.
Linux: Permission denied
If you downloaded a ZIP file instead of cloning with git:
# Fix permissions and line endings
chmod +x start.sh start-dev.sh
sed -i 's/\r$//' start.sh start-dev.sh
bun startAlternative: Always use git clone instead of downloading ZIP files.
- 100% local processing with Ollama
- No cloud, no API keys
- Support for Llama, Qwen, Mistral, and more
- Download models directly in the UI
- Real-time streaming responses
- Markdown with syntax highlighting
- Code blocks with copy
- Mermaid diagram rendering
- File attachments (drag & drop)
- Beautiful dark theme
- Upload and search documents
- Vector database (LanceDB)
- Context-aware AI responses
- AES-256-GCM encryption
- No telemetry or tracking
- Session timeout (15 min)
- Audit logging
- Disk encryption enforcement (production)
This application implements technical controls designed to support compliance.
macOS:
# Check status
fdesetup status
# Enable: System Preferences → Security & Privacy → FileVaultLinux:
# Check status
lsblk -o NAME,FSTYPE | grep crypto_LUKS- ✅ Field-level encryption (AES-256-GCM)
- ✅ DSR identity verification (GDPR Article 12(6))
- ✅ Session timeout (HIPAA §164.312(a)(2)(iii))
- ✅ 6-year audit retention (HIPAA §164.316(b)(2)(i))
- ✅ CCPA disclosures (1798.100)
Full details: See COMPLIANCE_AUDIT_REPORT.md
With disk encryption enabled, users face NO REGULATORY RISK under GDPR, HIPAA, or CCPA.
IMPORTANT: READ CAREFULLY BEFORE USE
This software implements technical controls designed to support HIPAA, GDPR, and CCPA compliance requirements. However:
- This software and its documentation DO NOT constitute legal advice
- You are responsible for ensuring your own compliance with applicable laws
- Consult qualified legal counsel for compliance guidance specific to your use case
- The software is provided "AS IS" WITHOUT WARRANTY OF ANY KIND
- The creators make NO REPRESENTATIONS OR WARRANTIES regarding regulatory compliance
- Compliance depends on your specific implementation, policies, and procedures
- You are solely responsible for verifying compliance with all applicable regulations
As a user of this software, you must:
- Conduct your own compliance assessment
- Implement appropriate organizational policies and procedures
- Maintain proper documentation and training
- Consult legal and compliance professionals
- Regularly audit and update your compliance measures
- The creators and contributors SHALL NOT BE LIABLE for any regulatory violations, fines, penalties, or damages
- Use of this software does not guarantee compliance with any law or regulation
- You assume all risks associated with using this software for regulated data
- HIPAA, GDPR, and CCPA requirements vary by jurisdiction, organization, and use case
- Technical controls are only one component of regulatory compliance
- Full compliance requires organizational policies, training, risk assessments, and more
BY USING THIS SOFTWARE, YOU ACKNOWLEDGE THAT YOU HAVE READ THIS DISCLAIMER AND AGREE TO ITS TERMS.
AGPL-3.0-or-later
Made with ❤️ by KenKai