Encrypted AI for your organisation
CloakAI Business gives every employee a private AI thinking space, every team an encrypted workspace, and every admin governance without surveillance. Data never enters public training pipelines.
Three encrypted spaces, one workspace
CloakAI Business separates private thinking from shared work product. Each space has its own encryption boundary.
Personal Space
Private AI conversations encrypted with your own RSA key. Nobody else in the company can read them — not even admins.
Team Space
Shared AI conversations for project teams. Encrypted with a team key that only members hold. New members get the key cryptographically.
Organisation Space
Company-wide AI conversations visible to all members with org-level access. Share knowledge broadly without per-chat invitations.
Up and running in minutes
No IT team needed. No infrastructure to build. Just encrypted AI for your whole organisation.
Admin creates a workspace
Set up your company workspace in minutes. Choose a passphrase, generate your encryption keys, and configure workspace policies.
Invite your team
Send email invitations. Each member generates their own encryption keys on first login. No shared secrets.
Start working with AI
Employees get private AI spaces. Admins create teams for shared conversations. Everything is encrypted with per-chat keys.
Govern, don’t surveil
Monitor adoption, review audit logs, enforce policies, and offboard cleanly. Content stays private.
Built for trust, not surveillance
Every feature is designed to give employees privacy and give admins governance — without compromising either.
Private AI Thinking Spaces
Every employee gets a personal, encrypted AI space for thinking, drafting, and exploration. Private to them — not accessible to the company.
Shared Team Workspaces
Collaborate with AI as a team. Shared conversations are encrypted and accessible only to team members. Built for work product and knowledge capture.
Organisation-Wide Space
Company-wide AI conversations visible to all members with org-level access. Share knowledge across teams without per-chat invitations.
Per-Chat Encryption Keys
Every conversation has its own encryption key. No global master key. Access is granted by wrapping keys — not by sharing passwords.
Admin Without Surveillance
Admins manage teams, set policies, and see usage analytics — but cannot read private conversations. Governance without surveillance.
Clean Employee Offboarding
When someone leaves, their private chats and encryption keys are permanently deleted. Team conversations remain available to remaining members. No backdoors.
Workspace Policies
Control whether private chats are allowed, set default chat visibility, and configure data retention rules.
Usage Analytics
See who is getting the most from AI. Track response counts, token usage, and adoption rates by team and individual — a productivity signal, not surveillance.
Key Recovery
If an employee forgets their passphrase, admins can trigger a key reset. The user sets a new passphrase and team members re-distribute encryption keys.
The trust contract
CloakAI Business enforces a clear boundary between governance and privacy. This is not a policy promise — it is a cryptographic guarantee.
Admins can:
- Manage teams, members, and roles
- Set workspace policies (visibility, retention)
- See usage analytics (response counts, tokens, adoption)
- View audit logs of all governance events
- Offboard employees — keys and private chats deleted
- Reset member keys for passphrase recovery
- Manage workspace-wide policy settings
Admins cannot:
- Read private chat content or titles
- Access any conversation without the encryption key
- Recover a departed employee’s private data
- Retroactively change a chat’s visibility
- See what employees are thinking about privately
- Export or search private chat content
- Bypass encryption via a master key (none exists)
Designed for EU AI Act alignment
CloakAI is built with the EU AI Act, GDPR, and UK AI regulation in mind. Transparency, data minimisation, and human oversight are structural — not policy promises.
View compliance details →Built for organisations that handle sensitive data
If your team works with information that shouldn't end up in a training dataset, CloakAI Business is built for you.
Law Firms
Draft legal memos, review contracts, and research case law with AI. Client matters stay encrypted and segregated.
Financial Services
Analyse deal terms, draft investor comms, and explore scenarios without exposing confidential data to third-party servers.
Healthcare
Use AI to draft referral letters, summarise clinical notes, or research treatment options in an encrypted environment.
Consulting
Give every consultant a private AI thinking space. Share client deliverables in encrypted team chats.
Government & Public Sector
Meet data sovereignty requirements. AI conversations are encrypted end-to-end with keys your organisation controls.
Any Team That Handles Sensitive Data
HR, M&A, compliance, executive strategy. If it shouldn’t be in a training dataset, it belongs in CloakAI Business.
How the encryption works
CloakAI Business uses a hierarchical key architecture. No master key exists. Each conversation has its own encryption key, and access is granted cryptographically.
Each user has an RSA-4096 key pair
Generated in the browser. The private key is encrypted with a passphrase-derived AES key (PBKDF2, 600K iterations) and stored as ciphertext. The server never sees the private key.
Each chat has its own AES-256-GCM key (DEK)
Generated per conversation. Private chat DEKs are wrapped with the user's RSA public key. Team chat DEKs are wrapped with a shared Team KEK. Organisation DEKs are wrapped with the Org KEK.
Team and Org keys are distributed via RSA wrapping
When a user joins a team, existing members wrap the Team KEK with the new member's RSA public key. No passwords are shared. Revoking access is as simple as not distributing the key.
Offboarding is deletion, not just access control
When a member leaves, all their wrapped keys and private chats are permanently deleted. Team chats remain accessible to remaining members. There is no recovery backdoor.
Simple, predictable pricing
Annual retainer plus AI usage. Unlimited seats. No per-user fees. Pay monthly by card or buy prepaid response bundles by purchase order.
Pay Monthly
Best for teams that prefer card billing with no commitments.
+ £0.03 per AI response, billed monthly
30-day free trial with 1,000 AI responses. No card required.
Prepaid Responses
Best for organisations using purchase orders.
+ response bundles from £150
Unused responses roll over indefinitely. Purchase order billing.
Prepaid response bundles
| Bundle | AI Responses | Price |
|---|---|---|
| Starter | 5,000 | £150 |
| Standard | 20,000 | £600 |
| Growth | 50,000 | £1,500 |
| Enterprise | 100,000 | £3,000 |
| Custom | Your volume | Contact us |
All prices exclude VAT. Custom volumes available on request.
Included with every workspace:
- Company admin console
- Unlimited user seats
- User management and onboarding
- Encrypted company workspace
- Private employee AI spaces
- Shared team AI spaces
- Organisation-wide AI space
- Policy and access controls
- Usage analytics dashboard
- Audit logging
- Key recovery for lost passphrases
- Employee offboarding with full data cleanup
- Pay monthly or prepaid — purchase orders accepted
For organisations with 100+ users or custom requirements, contact us for tailored pricing.
Frequently asked questions
What does the annual retainer cover?
The retainer covers your workspace, admin console, encryption infrastructure, audit logging, and unlimited user seats. AI usage (responses) is billed separately on a monthly basis.
Is there really no per-seat cost?
Correct. You can onboard 5 or 500 users for the same retainer. You only pay additionally for the AI responses your team generates.
Can admins read employee private chats?
No. Private chats are encrypted with each employee’s personal RSA key. There is no master key, no admin override, and no backdoor. This is enforced by cryptography, not by policy.
What happens when an employee leaves?
Admins offboard the member. All their wrapped encryption keys and private chats are permanently deleted from the database. Team chats remain accessible to remaining team members.
What if someone forgets their passphrase?
Admins can trigger a key reset. The employee sets up new encryption keys on their next login. Team members then re-distribute shared keys. Old private chats are permanently lost — this is the security guarantee.
Can we pay by purchase order or invoice?
Yes. Organisations that use purchase orders can buy prepaid AI response bundles instead of paying monthly for usage. You purchase a bundle of AI responses upfront, and they are available immediately for your whole team. Unused responses roll over indefinitely. The annual retainer can also be invoiced. Contact us to get started.
What are prepaid AI response bundles?
Instead of paying for each AI response at the end of the month, you purchase a bundle of responses upfront. Your team uses them as normal, and the balance counts down. When you need more, you purchase another bundle. Bundles start at 5,000 responses. Unused responses never expire.
Can we switch between monthly billing and prepaid responses?
Yes. Your workspace admin can switch billing modes. If you switch from monthly to prepaid, your metered billing stops at the end of the current billing period. If you switch from prepaid to monthly, any remaining responses are used first.
Where is data stored?
Encrypted data is stored in the UK (London, Google Cloud europe‑west2). Only ciphertext is stored — the server has no ability to decrypt it. AI processing is performed via Microsoft Azure’s API (Sweden Central), which does not retain or train on customer data.
What is an "AI response"?
An AI response is counted each time CloakAI generates an answer for a user. If a user asks a question and CloakAI replies, that counts as one response.
What does "10,000 responses" mean?
It means CloakAI can generate up to 10,000 replies across your account during the billing period, regardless of how long or short the questions are.
Why does CloakAI use responses instead of tokens?
Token-based pricing is difficult to predict — users rarely know how many tokens a question will consume. Counting responses is simpler, more transparent, and easier to manage.
How can I estimate usage?
Take the total number of responses (e.g. 10,000), divide by the number of users, then divide by the number of days in the period. This gives you the average number of AI responses per user per day.
Ready to give your team encrypted AI?
Start free with 1,000 AI responses over 30 days. Unlimited seats, no card required.