Private AI Models:
AI Provider Privacy Comparison

This is a comparison page for private AI models and the privacy practices of the providers behind them. It is intended as a reference: how each provider handles retention, training, and deletion when accessed through an API, and how Secret Chat uses those providers as part of its private AI chat app. For model-specific deep dives, see our Private GPT, Private Claude, Private Gemini, Private Grok, and Private Perplexity pages.

Models available on Secret Chat

Secret Chat gives you a choice of leading AI models in one place. The main “smart” models are agentic — they can work out how to handle your request on their own, search the internet, open and read web pages, and give you links to their sources. They also have vision (they can look at images you share) and, in most cases, image generation (they can create pictures from a description). You can let a model choose the best approach automatically, or pick the mode yourself — a quick answer, a web search, deeper research, or an image.

  • ChatGPT — a versatile all-rounder. Agentic, with internet search, vision, and image generation.
  • Claude — strong at long-form writing and careful reasoning. Agentic, with internet search and vision (it does not create images).
  • Gemini — a broad, research-friendly model. Agentic, with internet search, vision, and image generation.
  • Grok — conversational and up to date. Agentic, with internet search, vision, and image generation.
  • Grok Fast — a quick model available to free users; it can search the internet, give links, and read images.
  • Perplexity — web search with sources you can click, available to free users; it reads images and PDFs too.
  • Image Generator — a dedicated tool for creating images from a text description, with a choice of image models and one-click editing.

What “private AI model” actually means

“Private AI model” is used loosely. In practice it covers three different things: a model running entirely on your own hardware (self-hosted), a model accessed under an API contract that limits retention and training, and a model accessed through a gateway that adds local-only history and identity decoupling on top of the API. The privacy properties differ between these paths even when the underlying model is the same.

Three paths to private AI access

  1. Secure gateway platforms. A service holds the API account with the model provider and forwards requests on your behalf. Your identity is not exposed to the model provider, and conversation history can be kept locally in your browser. This is the approach Secret Chat uses.
  2. Self-hosted open-source models. You run an open-weights model (such as a Llama or Qwen variant) on your own hardware. Data control is highest but requires GPUs, operations work, and tolerates a quality gap versus frontier closed models.
  3. Private cloud / enterprise deployments. Services such as Azure OpenAI or AWS Bedrock run model inference in an isolated tenancy. Strong contractual depth, but high cost and procurement overhead.

How a secure gateway changes the privacy picture

A gateway like Secret Chat sits between you and the model provider. The provider sees the gateway's API key, not you, and Secret Chat keeps your conversation history out of its own servers entirely — it lives in your browser (IndexedDB for text chats, OPFS for files). Registration is email-only, so queries are not linked to a real name, phone number, or behavioral profile.

Use cases where this matters

With a secure gateway, professionals can delegate many tasks to AI with a smaller footprint, reducing manual overhead and the risk of human error. A gateway reduces metadata exposure and keeps history off our servers, but it does not make it safe to send personal data (PII) to a third-party model. Anything you paste still reaches the provider's API, so deciding what is appropriate to include — and removing or redacting PII first — remains your responsibility. The examples below assume data has been anonymized or stripped of identifying details before sending.

Profession
Example Task
Legal
Summarizing depositions or analyzing contract clauses after redacting client names and other identifying details.
Finance & Compliance
Drafting internal audit reports or analyzing financial statements once account numbers and personal identifiers have been removed.
Therapy & Healthcare
Working with anonymized session notes or exploring therapeutic concepts — never paste protected health information, as a gateway is not a HIPAA-compliant channel.
Human Resources
Crafting sensitive employee communications or analyzing internal survey data after stripping out employee PII.
Journalism
Organizing interview transcripts or researching sensitive topics after removing source names and other identifying details.

How Secret Chat works on top of these models

Diagram of Secret Chat's gateway architecture for private AI models, showing requests routed through the gateway to the LLM provider and chat history stored locally in the browser.

  • Local browser storage. Chats are stored in IndexedDB and uploaded files in OPFS on your device. Secret Chat doesn't keep a server-side copy of your conversations. For how these two browser technologies work and why they matter for privacy, see our guide to IndexedDB and OPFS for AI chats.
  • Email-only registration. No real name, phone number, or profile-building — queries are not linked to a personal identity.
  • Session Privacy Report. A per-message PDF that records the retention regime that applied and, for OpenAI and Grok, the outcome of an explicit deletion request.

Secret Chat Session Privacy Report showing how a private AI model request was handled.

AI provider privacy comparison

The table below summarizes the API-level privacy properties of the model providers we integrate. “Manual deletion” means Secret Chat can send an explicit deletion request to the provider after a session. “Retention time” refers to the provider's own retention window for API traffic. “Used for training” refers to whether prompts and responses sent through the API are used to train the provider's models. Always check the linked sources for the current official policy.

LLM ProviderManual DeletionRetention TimeUsed for Training
ChatGPT (OpenAI API)YesUp to 30 days (abuse monitoring)No (API traffic)
Claude (Anthropic API)Not availableUp to 30 daysNo (API traffic)
Gemini (Google API)Not available~55 days (paid tier)No (paid API)
Grok (xAI API)YesUp to 30 daysNo (API traffic)

Values above are summarized from each provider's published documentation and may change — always check the current official source before relying on them for compliance:

ChatGPT, Claude, Gemini, Grok, and Perplexity are trademarks of their respective owners (OpenAI, Anthropic, Google, xAI, and Perplexity AI). Secret Chat is an independent product and is not affiliated with, endorsed by, or sponsored by any of these model creators. See our Disclaimers for details.

PII in your prompts is still your responsibility

No gateway can make a model forget content that was in the prompt. If you paste personal data into a chat, you are still the one putting that data into a third party's API call. Secret Chat tries to detect common PII patterns (such as full names or credit card numbers) and warns you, but pattern detection is not exhaustive and you should review prompts before sending them.

One private interface for multiple models

Secret Chat gives you access to GPT, Claude, Gemini, Grok, Grok Fast, and Perplexity in one interface — plus dedicated image generation — with the same email-only account and the same local browser storage applied to every conversation. For the full product context, see our private AI chat page.