MICKAI
Sector · Retail with customer-data depth

Retail

The grocers, multi-site specialists, and loyalty operators that run one-to-one customer relationships at scale want the productivity of mainstream AI, and the law will not let them put loyalty profiles, purchase history, and regulated credit-broking decisions into a shared cloud. Mickai drops the retail department tools onto hardware the retailer owns, so the personalisation runs where the data already lives.

The problem and our solution
The buyer

The chief operating officer and chief customer officer of a grocer, multi-site specialist, or loyalty operator.

The problem

They want mainstream-AI personalisation across loyalty profiles, purchase history, and regulated credit decisions, and the law will not let that data sit in a shared, multi-tenant cloud.

Our sovereign solution

The retail department studios run on hardware the retailer owns, so personalisation, forecasting, and customer service run where the customer data already lives, and the regulated data never leaves the building.

The value

One-to-one personalisation at loyalty scale, with the PCI-DSS and UK GDPR exposure of a cloud route removed and the per-seat copilot bill converted to an asset the retailer owns.

The sovereign advantages

Five advantages hold across every sector, and they are architectural, not promotional. The third-party cloud-exposure vector is removed; your own physical, insider, and compliance controls remain yours.

Zero-trust data privacy

The data never leaves your hardware, so no third party and no cloud-provider employee ever sees it. What happens in the server room stays in the server room.

No vendor lock-in or outage exposure

You own the compute and the capability, so the system runs independent of the internet and of any cloud vendor's pricing, terms, or availability.

Data residency by default

The data never crosses a geographical or digital border because it never leaves the building, which removes the cross-border-transfer and third-party-processing friction of UK GDPR, Schrems II, and the sector rules. You keep your own obligations.

Proprietary advantage stays private

Fine-tune and run retrieval on your deepest archives to build a hyper-customised co-pilot, with no risk of your proprietary edge training a public model or leaking.

Predictable total cost of ownership

After the hardware and licence, queries cost essentially electricity. A capital asset you own and depreciate, instead of volatile per-token cloud bills.

The zero-espionage trust vault

There is no third-party cloud path, so no competitor and no vendor insider can scrape, intercept, or subpoena your prompts or your fine-tuned weights from the internet. The trust vault is closed by architecture.

Immunity to regulatory drift

You own the software snapshot on your own hardware, so a change to a cloud vendor's terms, a model deprecation, or an outage cannot reach you. The system stays predictable and auditable on-premise as the rules evolve.

The regulatory wedge

The specific rules that bar mainstream cloud AI from this sector's regulated data. Each one demands a named, auditable perimeter the operator controls, which a shared multi-tenant cloud cannot give.

UK GDPR Article 5(1)(f) and Article 32, the security and integrity duties over customer data
PCI-DSS, the payment-card data security standard
FCA SYSC, for retailers that operate regulated credit broking and flexpay
US CCPA and CPRA, plus the wider state-privacy patchwork
Organisations of this profile

The kind of organisation this serves, named illustratively from public information to characterise the market. These are target profiles, not customers: Mickai has no relationship, engagement, trial, or endorsement with any of them.

Marks & SpencerNextJohn Lewis
The lead studios

The enterprise studios that lead in this sector, drawn from the eighteen that sit on the one sovereign substrate. Each runs on hardware the organisation owns, under one set of operator-held keys, writing to one Open Audit Record.

Prometheus

Demand Forecasting

Per-SKU, per-store forecasting on the retailer's own sales history, the Walmart Sparky margin class.

Xenia

CRM

Owned-data personalisation across the customer lifecycle, no record sent to a third party.

Iris

Customer Service

Multilingual support and deflection where the customer PII never leaves the building.

Nomos

Compliance and Regulator Mode

The door-opener: DPIA and sealed audit across UK GDPR and PCI-DSS, with flexpay credit decisions sealed for FCA Consumer Duty.

Triton

After-Sales and Field Service

Device-content processing kept on-prem at the repair operation, so customer device contents never leave.

See all eighteen on the sovereign services catalogue.

The opportunity

Pricing the serviceable upper tier of UK retail at the Department to Enterprise blend gives a band of roughly 0.2 to 0.8 billion pounds of capital opportunity, before recurring support and studio expansion. Tesco Clubcard alone runs approximately 7 million one-to-one customer relationships, the personalisation scale these buyers want but cannot lawfully obtain in the cloud for regulated data.

The outcome

Money won, money saved, risk removed, on hardware you own.

Money won in forecasting and CRM through owned-data personalisation. Time saved across service and merchandising. Risk removed on flexpay credit decisions and at the repair bench. Cloud cost displaced as the per-seat copilot bill becomes a capex asset the retailer owns and depreciates.

Lawful B2B engagement

Map the sovereign stack to your retail estate.

Briefings are for organisations weighing a sovereign, on-premises deployment. Tell us about your estate and we will walk the pack, the regulatory crosswalk, and the deployment that fits your estate.

Other sectors
Law firms and legal-ops
Legal
Banking, insurance, and financial services
Finance
NHS Trusts and private healthcare
Health
Defence and government
Public Sector
Generational discretion and an uncompromised deal edge, on hardware you own.
VCs and Family Offices
Multi-generational wealth, processed entirely inside your own walls.
Private Banking and Wealth
The ledger never leaves the firm.
Accounting, Tax and Audit
Price the risk without surrendering the risk profile.
Insurance and Actuarial
Sovereign discovery infrastructure for assets too valuable to leave the building.
Pharma, Biotech and Pre-patent IP
Quality auditing of device and calibration data that never leaves the building.
Medical Devices
Bunker-grade AI for work that can never touch the public cloud.
Defence, Aerospace and Dual-Use
Off-grid intelligence for the systems a nation cannot afford to lose.
Critical Infrastructure, Maritime and Energy
Your process is your moat. Keep it inside the factory walls.
Heavy Industry, Manufacturing and Semiconductors
Network intelligence that never leaves the core
Telecommunications
Sovereign research intelligence that keeps the IP, and the dual-use risk, on campus.
Academic and University Research
Sift the whole talent pool without the raw records ever leaving your building.
Executive Search and HR
Athlete telemetry and tactics that never leave the training ground.
Elite Sport and Performance
The client black book that never leaves the room.
Luxury, Private Aviation and VIP Concierge
Clienteling and collections held in the house, not the cloud.
Luxury Fashion
Tag every frame on premises, so no pixel ever leaves the studio.
Commercial Photography and Media Houses
Sovereign deal intelligence for the agencies that hold the industry's secrets.
Talent and Literary Agencies
Your catalogue, indexed and searchable, with no master ever leaving the building.
Music Studios and Labels
Source protection that never leaves the newsroom.
Press and Investigative Journalism
The IP lifecycle stays under lock and key, from script to final pixel.
Film, TV and VFX
Safeguarding intelligence that never leaves the trust.
Multi-Academy Trusts (Primary and Secondary)
Where the question paper never leaves the vault until test day.
Examination and Testing Boards
Special-needs records that never leave the setting
SEN and Alternative Provision
Ship native AI for schools without inheriting the data-processing-agreement fight.
EdTech and LMS Vendors