Is Secrets AI Safe? Privacy, Payments, and Security Explained
⚠️ This page covers privacy, payment security, and data handling for an adult AI companion platform. Assess this information based on your personal privacy requirements and jurisdiction before creating an account.
Secrets AI operates under a legitimate business structure and uses industry-standard encryption — but it has real gaps in its privacy documentation that anyone handling sensitive conversations should understand before signing up. This analysis covers what is documented, what isn't, and where the actual risks sit.
Is Secrets AI Legitimate?
Yes. Secrets AI is owned and operated by Secret Labs Inc., incorporated in Dover, Delaware, United States. It launched in 2024 and reached over 100,000 registered users by November 2025.
Independent review ratings:
- aigirlfriendscout: 3.9/5 overall
- companionguide.ai: 9.6/10 (116 reviews)
- Trustpilot: 4.2/5 (6 reviews, 100% five-star)
The Trustpilot sample size (6 reviews) is too small to be statistically significant, but no pattern of fraud complaints or data breach reports appears in public sources. The platform has been operating for over a year without major security incidents documented in the public record.
One important disambiguation: "Secret AI" (secretai.io) is a completely different product — an offline, privacy-focused AI assistant available on Google Play and iOS. It has no connection whatsoever to Secrets AI (secrets.ai). The naming similarity has caused confusion; make sure you're evaluating the correct product.
Privacy and Encryption
Private Mode
Secrets AI's Private Mode applies end-to-end encryption to individual conversations. When enabled, the selected conversation's content is also excluded from being used to train the platform's AI models.
Important operational details:
- Private Mode must be enabled per conversation — it is not a global account setting
- It does not retroactively encrypt past conversations
- Users who want all conversations protected need to enable it each time they start a new chat session
End-to-end encryption as a privacy control is meaningful — it means that even if data is intercepted in transit, the content is unreadable. However, the platform doesn't specify which encryption protocol is used (AES-256, TLS 1.3, Signal Protocol, or other). This lack of specificity is one reason privacy reviewers score the platform at 2.9/5 on privacy transparency.
Data Storage and Handling
Per Secrets AI's stated policy:
- All data is stored with industry-standard encryption in transit and at rest
- No third-party data sharing for advertising or commercial purposes
- Account deletion removes all chat history, characters, and generated content within 30 days
What isn't documented:
- Specific encryption protocols in use
- Data retention periods for non-deleted accounts
- Whether independent security audits have been conducted (the company has referenced audits but no published results are available)
- Server locations and applicable data jurisdiction laws beyond Delaware incorporation
Transparency Concerns
The platform's 2.9/5 privacy rating from aigirlfriendscout specifically flags the absence of technical detail in privacy documentation. For users whose conversations contain sensitive personal information — which is typical of an AI companion context — the gap between "we use industry-standard encryption" and "here is exactly how your data is protected" matters.
This doesn't mean the platform is unsafe. It means that the privacy assurances rest on trust in the company's stated policies rather than on independently verifiable technical controls.
Payment Security
Accepted Methods and Card Handling
Payments are processed through third-party payment processors — Secrets AI does not store card data directly. Accepted methods:
- Visa
- Mastercard
- Virtual debit cards
- Cryptocurrency (minimum $20 transaction)
American Express is not accepted. Virtual debit cards work normally and are a reasonable option for users who prefer not to use their primary card.
Billing Discretion
This is handled well. Bank statements show charges from "Sun Clinical Laboratories" — no mention of Secrets AI, AI companions, adult content, or Secret Labs Inc. in the billing descriptor.
Cryptocurrency payment provides full billing anonymity: no card-linked transaction, no billing statement entry that references any personal connection to the platform.
Refund Policy
Refund policy details are not publicly documented on the platform. No information about chargeback policies or dispute resolution is readily available. This is worth noting before purchasing — especially for users considering an annual subscription.
Account Privacy
Secrets AI's account creation requires only an email address and password. No real name, phone number, physical address, or social media account login is requested or required.
This means:
- You can create and use an account with a dedicated email address that isn't linked to your real identity
- No social login (Google, Apple, Facebook) reduces the risk of account data being linked across platforms
- Cryptocurrency payment plus a dedicated email creates a reasonably anonymous usage profile
The platform does not document whether IP addresses are logged or retained, which is a relevant consideration for users in specific jurisdictions or professional contexts.
Content Safety
Secrets AI explicitly permits NSFW content — this is a feature, not a gap. The content safety model works as follows:
- Default behavior: PG-13 level suggestiveness — the AI doesn't initiate explicit content unprompted
- Escalation: Explicit NSFW content activates and intensifies based on user direction
- Limits: The AI maintains certain boundaries and does not generate content involving minors or illegal scenarios
- NSFW rating: 4.3/5 from independent reviewers
No documented reports of non-consensual content generation or content policy violations that resulted in user harm appear in public sources.
Known Risks and Practical Concerns
Spending without tracking: The Moments system can produce unexpected charges if you're not monitoring your balance. There are no documented spending caps, no threshold alerts, and no parental controls built into the billing system.
Age verification: The platform's age verification process is not publicly detailed. The standard signup flow doesn't document how underage access is prevented beyond a checkbox-style age confirmation.
US jurisdiction: Secret Labs Inc. is incorporated in Delaware. US companies are subject to valid legal process including subpoenas, court orders, and government data requests. Conversations stored on the platform are theoretically accessible under these processes regardless of Private Mode settings. Private Mode prevents AI training use; it may not prevent legal compulsion.
Refund uncertainty: No published refund policy means disputes may be difficult to resolve. This is relevant for annual subscription purchases.
Limited audit verification: Independent security audit claims exist but no published audit reports are available for review. "We have been audited" without a published report is unverifiable.
Safety Comparison Across Platforms
| Platform | Encryption | Anonymous Signup | Discreet Billing | Content Policy | Data Location |
|---|---|---|---|---|---|
| Secrets AI | E2E (Private Mode) | Yes | Sun Clinical Labs | Full NSFW | US (Delaware) |
| Candy AI | Standard | Yes | Discreet | Full NSFW | — |
| CrushOn AI | Standard | Yes | Discreet | Zero filter | — |
| Character.AI | Standard | Optional | Standard | Censored | US |
FAQ
In practical terms, your conversations are not visible to other users. Company employees could theoretically access conversation data for support or safety purposes — the platform doesn't publish its employee data access policies. Private Mode applies end-to-end encryption per conversation, which substantially limits what can be read even if data is accessed. US legal process (subpoenas, court orders) could compel disclosure regardless of encryption settings on stored data.
No. Charges appear as "Sun Clinical Laboratories" — there's no reference to AI, adult content, or Secrets AI in the billing descriptor. For complete billing privacy, cryptocurrency payment (minimum $20) generates no bank statement entry at all. See the billing privacy section of the pricing page for more detail.
Yes. Account deletion removes all chat history, characters, and generated content within 30 days of the deletion request. The platform confirms permanent removal — unlike some services that retain data in backup systems. If you want to verify deletion occurred, document the request date and follow up after 30 days if needed.
Secrets AI's stated policy specifies no third-party data sharing for commercial purposes. The platform explicitly states it does not sell user data to advertisers or data brokers. As with most platforms, these assurances rest on policy commitments rather than independently audited enforcement. The privacy rating of 2.9/5 reflects the absence of technical specifics, not evidence of active data selling.
For the full features overview including what privacy controls are available by tier, or the complete platform review for overall assessment, follow the respective links.