Does ChatGPT train on my conversations?

On the free and Plus consumer tiers, yes by default — OpenAI uses chat content to improve models unless you turn off 'Improve the model for everyone' in Data Controls. Team, Enterprise, and API traffic are contractually excluded from training. The opt-out is per-account, not per-chat, and it only governs future content — anything you sent before flipping the switch may already be in a training set.

Can I really delete what an AI assistant knows about me?

You can delete your account, your chat history, and individual memory entries in the major consumer products. What you can't reliably delete is anything that was already used to train a model — that becomes statistically baked into weights. The practical rule: delete what you can, assume training data is permanent, and don't put anything in a free-tier chat you wouldn't put on a postcard. We wrote a step-by-step at /delete-what-ai-knows-about-you.

Is enterprise AI actually private, or is that marketing?

ChatGPT Enterprise, Claude for Work, and Gemini for Workspace all contractually exclude your traffic from training, encrypt at rest, and offer audit logs and admin controls. That's real. What enterprise doesn't fix: employee review of flagged conversations, retention of metadata, and the fact that a determined court order can still compel disclosure. Enterprise is a meaningful uplift, not a privacy guarantee.

Is local-only AI (Ollama, LM Studio) more private?

Yes, for inference — your prompt never leaves the machine. But you give up frontier-model quality, you take on responsibility for your own backups, and most people end up copy-pasting into a cloud assistant anyway when the local model can't handle the task. A better pattern for most people: keep memory in a vault you control, and let the cloud model do the inference statelessly each time.

Does Konshus train AI on my data?

No. Your artifacts, atoms, patterns, and persona exports are never used to train any model — ours or anyone else's. We use AI providers under no-training contracts. Read the eight specific commitments at /privacy.

What happens to my Vault if Konshus shuts down?

One-click full JSON export is a permanent feature, available from day one regardless of subscription status. We've also designed the Vault to be portable to other infrastructure — the schema and exports are documented. If we ever wind down, you get a wind-down notice and a final export window. Your data is not a hostage.

Who at Konshus can actually read my Vault?

The most sensitive layers — atoms, patterns, persona exports — are encrypted with a key derived from your password. We literally can't read them. Individual artifacts are encrypted at rest but not end-to-end, which means a lawful court order can compel disclosure of those (we'll tell you unless legally gagged). We disclose this honestly rather than pretending end-to-end exists where it doesn't.

A pillar guide · ~14 min read

AI Tools and Privacy: The 2026 Guide

You use ChatGPT for work, Claude for writing, Gemini in Gmail, Copilot in your IDE. Each of them is quietly learning who you are. None of them are owned by you. This guide is the honest version of what each major AI tool actually does with your data in 2026 — training, memory, deletion, export, sharing — what most people get wrong about "private" AI, and what a defensible privacy posture looks like if you take this seriously.

TL;DR

Free-tier consumer AI trains on you by default. Enterprise and API tiers don't.
"Memory" features keep growing silently and are mostly invisible — go read yours today.
Deletion is real for chats and accounts, not real for anything already used for training.
Exports exist on every major platform. Almost nobody uses them. You should.
The strongest privacy posture is: cloud inference, local-owned memory. That's what a Vault is for.

What "AI privacy" actually means in 2026

Privacy is not one thing. When a vendor says "we take privacy seriously," they could mean any of five very different things — and the differences are where you get hurt. A useful checklist:

Training. Will my content be used to train future models?
Retention. How long is my content stored, and where?
Access. Which humans — at the vendor, at sub-processors, under court order — can read my content?
Portability. Can I export everything in a format I can use elsewhere?
Deletion. Can I actually remove it, and is "removed" verifiable?

Every vendor scores differently on each axis. A product can be excellent on training (Enterprise tiers) and terrible on access (broad employee-review of "flagged" conversations). A product can be excellent on portability (great export) and weak on retention (90-day undelete window you didn't ask for). Hold this checklist in your head as we walk through the big four.

The big four, honestly

ChatGPT (OpenAI)

On Free and Plus, content is used to improve models unless you turn off the "Improve the model for everyone" toggle in Settings → Data Controls. Memory is on by default and stores both things you said explicitly and things the model inferred about you. Chats are retained for 30 days after deletion for abuse review. Team, Enterprise, EDU, and API traffic are contractually excluded from training and have additional controls. Export is one-click ZIP. Memory deletion is row-by-row. Honest summary: best deletion controls of the big four, opaque memory inference, training-by-default on the tier most people use.

Claude (Anthropic)

Anthropic does not train on consumer chat content by default — a meaningful and underappreciated difference from OpenAI. Projects keep notes per-project, which contains blast radius. Retention is 30 days for deleted content. Export exists but is less polished than OpenAI's. Honest summary: the strongest default training posture of the big four, weaker tooling around memory inspection and export.

Gemini (Google)

Gemini Apps Activity is on by default and Google explicitly warns not to enter confidential information. Reviewed conversations may be retained up to three years and seen by human reviewers. Workspace-tier Gemini is excluded from training and follows your workspace's data residency. Memory integrates across Search, Gmail, Maps, and YouTube history, which is the largest cross-product surface of any AI vendor. Honest summary: highest convenience, broadest data surface, most aggressive human-review window of the big four.

Copilot (Microsoft)

Microsoft 365 Copilot is governed by your tenant's data controls — content stays inside your Microsoft 365 boundary and is not used to train foundation models. Free Copilot (the consumer Bing-based product) is closer to ChatGPT Free in posture. GitHub Copilot training is opt-out for individuals and opt-out by default for business. Honest summary: strong enterprise story, fragmented consumer story, very different answers depending on which Copilot.

Never lose your AI again

Konshus is one way to solve this — a persistent memory vault and portable persona that follows you across ChatGPT, Claude, Gemini, and whatever ships next.

Meet Konshus

The seven privacy traps most people miss

Shared links get indexed. Public share links from ChatGPT and Claude have been crawled and indexed by search engines repeatedly. If a link is shareable, assume it is findable.
Memory leaks into new chats. You start a fresh conversation thinking it's clean. It isn't — Memory injects what the model thinks it knows about you, including inferences you never authorized. See memory creep for the mechanism.
"Temporary chat" still has caveats. Temporary chats aren't used for training and don't go into history, but they're still retained up to 30 days for abuse review. "Temporary" doesn't mean "ephemeral."
Connectors pull more than you think. A Gmail or Drive connector typically requests broad scopes. Read the OAuth scope screen literally — not the marketing copy next to it.
Mobile keyboards and assistants. What you type into a third-party keyboard or a voice assistant can be transcribed and logged before the AI ever sees it. Audit your phone separately from your AI.
Browser extensions and "memory" wrappers. Many "AI memory" extensions read every page you visit. Cheap to install, expensive to undo. Check the manifest permissions.
Opt-outs that silently reset. Several providers have shipped updates that reset previously-set training opt-outs. Re-check your Data Controls quarterly; consider it part of your hygiene.

What "good" looks like: a buyer's checklist

If you're evaluating any AI product that touches personal data, these are the eight commitments to look for. (We hold ourselves to all eight — see our privacy promise — but the checklist applies to any vendor, not just us.)

Your content is never used to train any AI model — theirs or any provider's. Stated contractually, not just on a landing page.
Sensitive data is encrypted with a key only you control, so the vendor can't read it even if compelled.
Everything is encrypted at rest and in transit, isolated per-account, never blended.
No ad targeting or third-party analytics on content. Minimal app-level analytics only.
No sale or sharing, ever. Government requests disclosed unless legally prohibited.
One-click full export in a format you can take elsewhere.
One-click permanent delete — actually wipes rows, not soft-delete.
Two-factor authentication available from day one.

A vendor that meets all eight is rare. A vendor that meets six and tells you honestly which two they miss is better than a vendor that claims ten and weasels on every one.

How Konshus is built for this

Konshus is a memory Vault, not a chatbot. That architecture choice is what lets us hit the eight commitments above. A few specifics that matter for privacy:

Per-artifact private mode. Flag any source as private and it stops feeding distillation and exports — without losing the artifact itself.
Member-in-loop atoms. Every fact the system extracts about you is Confirm / Edit / Reject before it counts. No silent inferences, no inference-dressed-as-fact problem (the topic of this piece).
Full JSON export, always. Available from day one on every tier, including the free Ember tier. Your data, ready to walk.
Hard delete with audit row. 7-day grace period (so you can undo), then the rows actually go. Every privacy action is logged so you can see what happened.
Never used to train. Contractually, with every provider we touch. The atom layer uses cheap providers under no-training contracts; synthesis uses frontier models statelessly.
Reversible delegated access. Share specific layers of your Konshus with a partner, child, executor, or doctor — and revoke instantly. This is one of the four U.S. provisional patents filed in 2026 (full claim list at /patent).

The Vault model is also why we can promise thecloud inference, local-owned memory pattern. The frontier models stay stateless — they don't accumulate a private picture of you on someone else's server. The picture of you lives in your Vault, where you can read it, edit it, export it, or delete it.

A 10-step hardening checklist for today

Open ChatGPT Settings → Data Controls and turn off "Improve the model for everyone."
Open ChatGPT Memory and read every entry. Delete anything that's an inference you didn't authorize.
Open Gemini Apps Activity. Decide whether you want a 3-year retention window. (Almost no one does.)
Audit Claude Projects. Move anything sensitive into a project with restricted sharing.
Check OAuth scopes on every AI connector. Revoke any that requested more than they needed.
Export your ChatGPT data ZIP. Even if you never look at it, you'll be glad you have it. See our export guide.
Turn on 2FA on every AI account. Use an authenticator app, not SMS.
Stop pasting confidential client/employer content into free-tier AI. Use an Enterprise tier or a stateless local model for that work.
Pick one place where the canonical version of "you" lives. Don't let it be a free-tier consumer chatbot.
Schedule a quarterly 30-minute audit. Privacy opt-outs reset. Memory grows. Hygiene is recurring.

Frequently Asked Questions

Cloud inference. Local-owned memory.

The strongest privacy posture in 2026 is to let frontier models stay stateless — and keep the picture of you in a Vault you actually own. Eight commitments. One-click export. Patent-pending reversible delegated access.

Meet Konshus