Your business is yours.
Here's how we mean it.
Eight promises Mira makes to every business. Each one is backed by something real — not policy alone.
- 01
Your conversations are private to your business. Only you.
HowEvery business gets its own encryption key. Your conversations are scrambled with that key, and only your account can unscramble them. Even Mira's engineers can't read your messages without your explicit permission.
- 02
Mira never trains AI models on your data.
HowThe AI providers Mira works with have signed contracts that say they won't use your data to train models. The full list of providers is on this page, and we update it the moment it changes.
- 03
You can see every message Mira sent. Always.
HowYour dashboard has a complete log of every reply Mira sent on your behalf, every setting change, every action. Export it to a spreadsheet any time, with one click.
- 04
Delete your account, and your data is gone. For real.
HowWhen you delete, we hold your data for thirty days in case you change your mind. After that, we destroy your encryption key. With the key gone, your data — including any backups — becomes mathematically impossible to read. Even by us.
- 05
Two-factor sign-in is on by default. Not optional.
HowWhen you sign up, you set up an authenticator app right away. Mira doesn't allow text-message two-factor, because phone-number-takeover is the most common way small business owners get hacked.
- 06
Your customers' information stays in your region.
HowIf you're in the US, your customer data lives in the US. EU coming soon, with EU-only storage. Region is locked at the database level, not just a policy promise.
- 07
We publish every service we send your data to.
HowThe list below shows exactly what we use and why. If anything changes, we notify every active customer thirty days before it goes live.
- 08
Every business gets its own private Mira.
HowYour Mira runs in her own isolated space, with her own memory and her own encryption key. She is physically separated from every other Mira. No shared model. No leaked context.
Services we use
The companies Mira entrusts with your data, what they do, and where they keep it.
| What | Why | Where |
|---|---|---|
| AI model providers (Anthropic, OpenAI, Google) | Powering Mira's replies. Contractually, no training on your data. | United States |
| Database provider | Where your account, settings, and conversation history live. | United States (EU coming) |
| Agent hosting | Where each business's private Mira instance runs. | Multiple regions |
| Background jobs | Keeps long-running work moving (re-crawls, syncs, etc.). | United States |
| Billing provider (Stripe) | Processes your subscription. We never see your full card number. | United States |
| Outbound email | Sends Mira's replies and our account emails to your customers. | United States |
| Inbound email | Receives customer emails before forwarding them to your Mira. | United States |
| Error tracking | Logs technical errors so we can fix bugs fast. PII scrubbed. | United States |
| Logs | Operational logs. PII scrubbed. | United States |
| Product analytics | Counts page views and feature usage in aggregate. | United States |
| Content delivery | Serves the Mira website fast. Cloudflare. | Global edge |
| Hosting | Runs the Mira application. | Multiple regions |
| Key management | Stores the master key that wraps every per-business encryption key. | United States |
Last updated 2026-05-24. Privacy policy · security@mira.app