1. AI Systems We Use
MicHelper integrates the following AI technologies:
1.1 Audio Transcription
We use OpenAI's Whisper API to convert audio recordings into text transcripts. Audio is sent to the API for processing and is not retained by the API provider after transcription is complete.
1.2 Conversation Analysis
We use OpenAI's GPT models to analyze transcripts against customer-defined sales scripts and rules. The AI generates:
- Script compliance scores
- Performance metrics and recommendations
- Violation flags and improvement suggestions
- Summary analytics and trend analysis
1.3 AI-Assisted Chat
MicHelper provides AI-assisted support chat capabilities powered by GPT models for answering user questions about the platform and sales methodology.
2. AI Data Handling
2.1 Zero Data Retention (ZDR)
MicHelper has enabled Zero Data Retention where eligible and as configured with OpenAI. Under ZDR, OpenAI commits to not retaining API inputs and outputs for model training or improvement purposes. This configuration is subject to OpenAI's legal obligations (e.g., legal process, safety monitoring).
2.2 Data Flow
The AI processing flow is as follows:
- Audio is uploaded to MicHelper servers
- Audio is sent to OpenAI Whisper API via encrypted connection (TLS 1.2+)
- Transcript is returned and stored encrypted (AES-256-GCM)
- Original audio file is permanently deleted immediately after successful transcription
- Transcript is sent to GPT API for analysis (encrypted in transit)
- Analysis results (scores, flags) are stored; transcript is auto-deleted after the configured retention period (default: 7 days)
2.3 Encryption
All data sent to AI APIs is encrypted in transit using TLS 1.2 or higher. Stored transcripts are encrypted at rest using AES-256-GCM field-level encryption.
3. AI Limitations & Disclaimers
AI-generated outputs are advisory only. You acknowledge and agree that:
- Transcription may contain errors, especially with background noise, accents, or technical terminology
- Compliance scores and violation flags are algorithmic assessments, not definitive judgments
- AI analysis does not constitute legal advice, official compliance certification, or evidence of employee misconduct
- All AI-generated outputs should be reviewed by a qualified human before being used as a basis for employment decisions, disciplinary actions, or compliance determinations
- MicHelper is not liable for decisions made based on AI-generated outputs without adequate human review
4. EU AI Act Classification
High-Risk AI System
4.1 Classification
Under the EU Artificial Intelligence Act (Regulation (EU) 2024/1689), MicHelper's AI-powered performance monitoring system is classified as a high-risk AI system under:
- Annex III, point 4(b): AI systems intended to be used to make or materially influence decisions on the terms of work-related relationships, conditions of work, including task allocation and monitoring or evaluation of persons in such relationships
This classification applies because MicHelper's AI system monitors and evaluates employee performance in workplace settings, generating compliance scores and performance metrics that may influence employment-related decisions.
4.2 MicHelper's Role: Provider
MicHelper is classified as a Provider (not merely a deployer) of a high-risk AI system under the EU AI Act. As the developer of the AI-powered monitoring and analysis system, MicHelper bears the primary regulatory obligations for the AI system's design, development, and conformity.
4.3 Why Not "Limited Risk"?
"Limited risk" classification under the EU AI Act applies to systems such as chatbots and deepfake generators, which require only transparency obligations. Workplace monitoring and employee performance evaluation AI systems are explicitly categorized as high-risk under Annex III, requiring comprehensive compliance obligations beyond mere transparency.
4.4 Penalties
Non-compliance with the EU AI Act may result in significant penalties:
| Violation Type | Maximum Fine |
|---|---|
| Prohibited AI practices (Article 5) | Up to EUR 35 million or 7% of worldwide annual turnover, whichever is higher |
| High-risk AI non-compliance | Up to EUR 15 million or 3% of worldwide annual turnover, whichever is higher |
| Incorrect information to authorities | Up to EUR 7.5 million or 1% of worldwide annual turnover, whichever is higher |
5. Provider Obligations (MicHelper)
As a Provider of a high-risk AI system, MicHelper commits to the following obligations under the EU AI Act:
- Risk Management System: Maintaining a risk management system throughout the AI system lifecycle
- Data Governance: Ensuring training, validation, and testing data meets quality criteria
- Technical Documentation: Maintaining comprehensive technical documentation of the AI system
- Record-Keeping: Automatic logging of events throughout the AI system's lifecycle
- Transparency: Providing clear information to deployers (customers) about the AI system's capabilities and limitations
- Human Oversight: Designing the system to enable effective human oversight by deployers
- Accuracy, Robustness, Cybersecurity: Ensuring appropriate levels of accuracy, robustness, and cybersecurity
- Conformity Assessment: Conducting conformity assessments as required
6. Customer (Deployer) Obligations
As a deployer of MicHelper's high-risk AI system, you (the Customer) have the following obligations:
- Inform Employees: You must inform employees that AI is used to transcribe and analyze their workplace conversations and generate performance metrics
- Human Review: You must ensure that a qualified human reviews AI-generated outputs before making employment decisions (hiring, firing, promotion, demotion, disciplinary actions)
- Human-in-the-Loop: Maintain meaningful human oversight of the AI system's outputs — do not use AI scores as the sole basis for consequential decisions
- Inform Workers' Representatives: Where applicable, inform workers' representatives and affected workers that they will be subject to the high-risk AI system (Article 26(7))
- Data Protection Impact Assessment: Conduct a DPIA under GDPR before deploying the system, as required for high-risk AI systems that process personal data
- Monitoring: Monitor the AI system's operation and report any serious incidents or malfunctions to MicHelper
7. No AI Training on Customer Data
MicHelper does not use customer audio recordings, transcripts, or analysis results to train, fine-tune, or improve AI models. Our use of OpenAI APIs is configured with Zero Data Retention where eligible, meaning OpenAI does not retain input or output data for model training purposes, subject to OpenAI's legal obligations.
Aggregated, anonymized usage statistics (e.g., average processing times, error rates) may be used to improve the MicHelper platform itself, but never individual customer content.
8. Contact
For questions about our AI systems or this disclosure:
- Email: legal@michelper.app
- Data Protection: privacy@michelper.app
- Support Portal: Support