Zero-Storage Privacy Mode
The only sales assistant that stores nothing
Every other platform stores your client conversations in a database and charges enterprise prices for compliance. Mika doesn't store anything. No BAA needed because there's nothing to breach. Built for law firms, financial advisors, therapists, accountants, and any business where client privacy is non-negotiable.
An Industry Rarity
Every other platform stores your client data. We don't.
The industry standard for regulated chatbots is a BAA plus an encrypted database. That infrastructure costs $500-2,000+/month, pricing out solo attorneys, independent advisors, and small practices. Mika takes a different approach: if you don't store the data, there's nothing to breach and no BAA to sign.
| Typical Platform | Mika Privacy Mode | |
|---|---|---|
| How they handle sensitive data | Store everything in an encrypted database | Don't store anything |
| Compliance approach | BAA (Business Associate Agreement) | No BAA needed. Nothing to breach. |
| Personal info visible to AI | Yes, full messages sent to AI | No. Removed before AI sees it. |
| What happens after the session | Data persists in their database | Data disappears. Tab close = gone. |
| Lead notifications | Email with full visitor details | PIN-protected link that expires in 2 hours |
| Minimum cost for regulated use | $500-2,000+/mo (enterprise tier) | $39.99/mo (Pro plan) |
| Discoverable in legal proceedings | Yes. Stored data can be subpoenaed. | No. Nothing stored, nothing to produce. |
How It Works
Three layers between your visitors' personal information and any permanent record.
Step 1
Personal Info Removed
Before any message reaches the AI, personal details are automatically stripped out. Social Security numbers, phone numbers, emails, credit cards, dates of birth, and addresses. The AI reads the conversation but never sees the sensitive parts.
Step 2
Nothing Saved. Anywhere.
No conversations, messages, leads, or appointments are written to any database. The chat exists only while the visitor is on your site. When they leave, the conversation is gone. There is no server, no backup, no archive.
Step 3
PIN-Protected Notifications
When a visitor shares contact info, you get an email with a secure link and a text message with a PIN. Enter the PIN to see the lead. The link expires after 2 hours and the data is permanently deleted. No visitor details ever appear in the email itself.
What Gets Removed
Personal information is automatically stripped before any AI reads the message.
Social Security Numbers
"My SSN is 123-45-6789"
***-**-****Phone Numbers
"Call me at (555) 123-4567"
(***) ***-****Email Addresses
"Reach me at john@email.com"
***@***.***Credit Card Numbers
"Card number is 4111..."
****-****-****-****Dates of Birth
"My DOB is 03/15/1985"
**//**/****Street Addresses
"I live at 42 Oak Street"
*** [removed]How You Receive Leads
When a visitor shares their contact information, you still get notified. The difference is how.
Step 1
Visitor shares info
A potential client types their phone number or email during the conversation.
Step 2
You get a text
A PIN code is sent to your phone via SMS. This PIN is required to view the lead.
Step 3
You get an email
A secure link arrives in your inbox. No visitor details are in the email itself.
Step 4
Link expires
After 2 hours, the link stops working and the lead data is permanently deleted. Nothing remains on any server.
If someone intercepts the email, they still can't see the lead without the PIN from your phone. If they have neither, the data self-destructs in 2 hours anyway.
Standard Mode vs. Privacy Mode
Privacy mode changes what happens to data, not how Mika works.
| Feature | Standard | Privacy Mode |
|---|---|---|
| Chat conversations | Stored for analytics | Never stored |
| Individual messages | Stored per conversation | Never stored |
| Visitor contact info | Saved in your dashboard | PIN-protected link (expires in 2 hours) |
| Personal info in messages | Sent to AI as-is | Removed before AI sees it |
| Lead notifications | Email with full details | PIN-protected link via email + PIN via text |
| Conversation analytics | Full message history | Totals only (no content) |
| AI model training | Never used | Never used |
| Data export (GDPR) | Full export available | Nothing to export |
Built for Regulated Industries
Any business where visitor privacy is a professional or legal requirement.
Law Firms
Attorney-client privilege demands zero data retention. Case details shared in chat never persist on third-party servers.
Financial Advisors
Visitors drop SSNs and account numbers in chat. Privacy mode redacts them before any AI model processes the message.
Therapists & Counselors
First-contact conversations about mental health are deeply personal. Ephemeral chat removes the fear of data persistence.
Healthcare
Patients share symptoms, medications, and insurance details before their first appointment. None of it should live on a server.
Accountants & CPAs
Tax returns, financial statements, and business records shared in chat. Zero-storage means client financials never persist on any server.
Insurance Agencies
Policy details, claims information, and personal health data discussed before a quote. Privacy mode ensures none of it is retained.
Built on a Secure Foundation
Privacy mode is layered on top of security protections that are already in place for every customer.
Certified Infrastructure
Hosted on platforms that meet SOC 2 Type II security standards, the same certification used by banks and hospitals.
Encrypted in Transit
Every connection between your visitors, our servers, and the AI is encrypted. No one can intercept the data in between.
Your Data Is Yours Alone
Every business is completely isolated. Your conversations, leads, and settings are never visible to any other business on the platform.
GDPR Ready
Full data export and one-click account deletion. With privacy mode, there is nothing to export because nothing was ever stored.
Frequently Asked Questions
Can I still capture leads with privacy mode enabled?
Yes. When a visitor shares their contact information, you get a text message with a PIN and an email with a secure link. Click the link, enter the PIN, and you see the lead details. The link expires after 2 hours and the data is permanently deleted. You still get the lead. It just doesn't live on a server afterward.
What happens after the link expires?
The lead data is permanently deleted. If you need the information, open the link within the 2-hour window. For businesses that need longer retention, standard mode stores leads in your dashboard permanently.
Do I need a Business Associate Agreement (BAA) to use Mika?
No. BAAs exist because vendors store your data and need to promise they will protect it. Mika's Privacy Mode doesn't store any data, so there is nothing to breach and no BAA is necessary. Instead of building a vault and promising not to look inside, we just don't put anything in the vault.
Is this HIPAA compliant?
Zero-Storage Privacy Mode is designed with HIPAA principles in mind: no patient data stored, personal information removed before AI processing, PIN-protected notifications, and automatic data expiration. We do not claim full HIPAA compliance because the traditional compliance framework assumes data is being stored. Consult your compliance team to confirm it meets your specific requirements.
How does this compare to enterprise compliance chatbots?
Enterprise platforms like Intercom, Zendesk, and Ada offer HIPAA-compliant tiers starting at $500-2,000+/month. They store your data in encrypted databases and sign agreements promising to protect it. Mika takes a different approach: don't store the data at all. Same result for your visitors, fraction of the cost.
Does privacy mode affect how Mika responds?
No. Mika still answers questions, guides visitors, and captures leads exactly the same way. The only difference is what happens to the data: nothing is saved, and personal information is removed before reaching the AI.
What personal information does Mika remove?
Social Security numbers, phone numbers, email addresses, credit card numbers, dates of birth, and street addresses. This happens automatically before the message is sent to any AI model. The AI reads the conversation but never sees the sensitive details.
Can I enable privacy mode for just one location?
Yes. Privacy mode is a per-location setting. If you have multiple locations, you can enable it on your therapy practice and leave it off on your retail store.
Does this work with the compliance disclaimer?
Yes. Privacy mode and the compliance disclaimer are complementary features. The disclaimer informs visitors about the nature of the chat. Privacy mode controls what happens to the data. Use both for maximum protection.
Is visitor data used to train AI models?
Never. Regardless of whether privacy mode is enabled, Mika never uses visitor conversations to train AI models. With privacy mode, the data is not even stored long enough to be used for anything.
Privacy your visitors can trust
Enable Zero-Storage Privacy Mode from your dashboard. No code changes, no migration, no downtime. Included with the Pro plan at no additional cost.