I'm Aggressively Trying to Replace Myself With AI
AI becomes more useful as it learns more context, but every email, document, and story moves the privacy boundary. A personal reflection on automation, AI slop, focus, and builder responsibility.
AI-powered · Limited to 20 requests per hour

Answer Snapshot
In 2026, I am aggressively trying to replace the repetitive, interruptible version of myself with AI.
I want AI to understand my projects, help with my domain email accounts, answer repeated questions, and politely deal with messages that would otherwise break my concentration. The more complete the context is, the more useful the system becomes.
That is also the problem.
Every useful document, email, picture, story, project decision, and personal detail moves a little more context into someone else's system. I mask some information. I do not mask all of it. I have not read every privacy policy either.
So no, privacy did not stop mattering. I think our threshold moved quietly. What once felt obviously private now gets pasted into a chat box because the benefit feels immediate and the risk feels abstract.
I am still making that trade. I want to make it deliberately, build guardrails around it, and take responsibility when the AI that represents my work gets something wrong.
The Question That Kept Bothering Me
A few weeks ago, I started thinking about privacy again.
AI is the hot layer in almost every product right now, so people are trying to use it for everything. Literally everything. Writing, coding, searching, planning, therapy-like conversations, business decisions, legal documents, medical questions, family photos, company emails, and private stories all end up in the same kind of prompt box.
AI is powerful, but it needs context. If I ask it to analyze a situation, I need to explain the background and provide the thing I want analyzed. That thing might be a document, a picture, an email thread, a story, or a project history.
Then the small decisions begin.
- Do I replace people's names?
- Do I change the domain name?
- Do I remove an email address or leave it because it helps explain the relationship?
- Do I upload the whole document or only the relevant paragraph?
- Do I strip metadata from the picture?
- Do I mask the credentials?
I hope the last answer is always yes. Passwords, private keys, API tokens, session cookies, and other live credentials are not useful "extra context." They are access. The AI should not receive them.
The other choices are less obvious, which is exactly why lazy shortcuts become normal. Replacing a name takes effort. Rewriting a scenario takes effort. Reading a provider's current data policy takes more effort. The useful answer is one paste away, so the paste usually wins.
Masking a Name Is Not a Privacy Strategy

Names, email addresses, IP addresses, online identifiers, message contents, browsing history, location, and inferences about a person's preferences can all be privacy-relevant information. The exact legal definition depends on the law and situation, but the category is much broader than "government ID number."
The European Commission's GDPR explanation says personal data includes information related to an identified or identifiable person, and that pseudonymized data can remain personal data when someone can still be re-identified. The California Attorney General's CCPA guide similarly describes personal information broadly, including names, email addresses, browsing history, geolocation, and inferences.
That means changing "Alice" to "Person A" can help, but it is not magic. If the prompt still says where Person A works, what project they own, which domain they use, and what unusual event happened last Tuesday, the identity may still be obvious.
I am trying to use a more practical filter:
- Remove details that do not change the answer.
- Replace names, domains, IDs, and exact dates when their real values are unnecessary.
- Summarize the relevant section instead of uploading the entire file.
- Crop or clean images before sharing them.
- Separate security credentials from personal information, then keep both out unless the task has a strict reason and a safe path.
- Assume that a combination of harmless-looking details may identify someone even when no single detail does.
This is data minimization in plain language: give the system what it needs for the purpose, not everything I happen to have. The European Commission lists that principle directly in its GDPR processing guidance.
Did I Consent? The Question Is Too Simple
When I send information to an AI service, does that mean I consent to every part of its data policy?
I used to frame the question that way. It is too simple.
I may have accepted terms and received a privacy notice, but the real handling can differ by provider, consumer product, business product, API, retention setting, and legal jurisdiction. Under GDPR, consent is also not the only lawful basis for processing personal data. The European Commission lists consent alongside contract, legal obligation, public interest, vital interests, and legitimate interests. When consent is the basis, its valid-consent guidance says it must be freely given, informed, specific, clear, and withdrawable.
So clicking through terms is not a useful substitute for understanding what happens to the data. Mentioning CCPA or GDPR is not a substitute either. Those laws give definitions, duties, and rights; they do not read the policy for me or make every prompt safe.
Here is my confession: I did not read all of those policies.
I intentionally mask some of my information. I also intentionally leave some information intact because the real context improves the result. Sometimes that is a considered trade. Sometimes it is convenience wearing the clothes of a considered trade.
I think it is better to admit that than to pretend I have a perfect privacy process.
Privacy Did Not Become Unimportant. The Bar Moved.
Ten years ago, many people would have hesitated before sending a private email thread, an internal document, or a family story to an unfamiliar website.
Now the same information goes into an AI chat because the interface feels conversational. It feels like explaining something to a helper. The value comes back immediately, while any privacy cost is delayed, uncertain, and mostly invisible.
That changes common sense.
I do not think people collectively decided that privacy no longer matters. I think many of us silently lowered the threshold for what counts as an acceptable disclosure. The utility is high enough that we accept a risk we would have rejected in a different interface.
Calling it an acceptable risk does not remove the risk. It only means I have decided the benefit is worth it for this particular task.
The important part is keeping the decision visible. What data am I sharing? Whose data is it? Does the model need the real version? What would happen if it were retained, exposed, recalled in the wrong context, or used by an automation I forgot was running?
If I cannot answer those questions, I am not making a trade. I am drifting into one.
I Am Not Watching From the Sidelines
I am asking these questions while trying to use AI for as much of my work as possible.
One of my current goals is to let AI handle parts of my personal domain email accounts: understand questions about my projects, draft or send useful answers based on project knowledge, and politely handle solicitation that would otherwise annoy me or interrupt what I am doing.
That only works when the AI knows the projects.
This is where Dense-Mem has been helping me. While I work with LLMs on a project, decisions, corrections, facts, and context can become managed memory instead of disappearing with the chat session. A future agent can recall the relevant project background instead of forcing me to explain the same thing again.
AI MemMail is one interface on top of that idea. The AI can reason over the language and recalled project context, while the application still controls the deterministic parts such as recipients, threading, validation, forwarding, and sending. I do not want a language model to receive unlimited mailbox power merely because it can write a polite paragraph.
This architecture does not eliminate privacy concerns. It makes them more concrete. If a memory layer knows my projects well enough to represent them, access scope, provenance, deletion, correction, and separation between contexts all matter more, not less.
AI Slop Is Real, and I Avoid It Too
I understand why people are fed up with AI responses and AI slop.
Sometimes I feel the same way. Sometimes I deliberately avoid AI when I search. If I need a correct, spot-on result from a source, the last thing I want is a confident synthesized answer that is almost right. I want the document, the exact quote, the current setting, the real error, or the primary source.
That is not anti-AI. It is task selection.
An AI-generated answer is a bad replacement for a source when the source is what I need. It is also a bad replacement for human judgment when the question is unusual, sensitive, or high impact.
But consider the other side. What if I answer many questions every day and most of them are nearly the same? What if the answer already exists in an FAQ, project documentation, or a previous explanation, but the person asking does not know where to look or how to phrase the search?
That gap is where AI can be useful.
It can translate a person's messy question into the right project context, retrieve the existing answer, explain it in the language and level that person needs, and do it again without getting tired or irritated.
The goal is not to generate more words. The goal is to make existing knowledge easier to reach.
The Boundary I Am Using
| Situation | My current default |
|---|---|
| Repeated project or FAQ question | Let AI retrieve the known answer and respond within a narrow scope. |
| Routine solicitation | Let policy decide whether to decline, ignore, or prepare a polite response. |
| Unusual, sensitive, or high-impact request | Escalate to me instead of improvising authority. |
| Research where exact accuracy matters | Go to primary sources first; use AI to navigate or compare, not replace the evidence. |
| Password, token, private key, or live session | Keep it outside the model context. |
| Memory that may be stale or disputed | Show provenance, surface the conflict, and ask before treating it as current. |
This boundary will change as the systems improve and as I find new failure modes. That is fine. I would rather have an explicit boundary that evolves than an invisible one set by convenience.
The Benefit I Actually Want Is Focus

The biggest gain is not that AI can send more email than I can.
The gain is that I can stay with a hard problem for a longer period of time.
Every repeated question, routine reply, and solicitation creates a context switch. The message may take only two minutes to answer, but leaving a project, reconstructing the email context, choosing a tone, responding, and rebuilding my mental state costs more than two minutes.
If AI can absorb the repetitive layer and return only the messages that need my judgment, I get longer stretches of concentration. I can work on the topic I have been carrying instead of repeatedly unloading and reloading it.
That is why I think I am getting more from AI than I am giving up. Not because every generated answer is excellent. Because the right automation protects the work only I can do right now.
If the Response Is Bad, It Is My Responsibility
If an AI-generated reply or some piece of AI slop does not meet your expectation, I am sorry.
But the apology is only useful if it comes with ownership.
I am the developer, engineer, app builder, or whatever title fits the day. I chose to put the model there. I chose the context it could access, the policy it followed, the actions it could take, the review gate it did or did not have, and the way the application presented the answer.
I cannot blame the model as if it wandered into the product by itself.
I take responsibility for the application, and I want feedback when it fails. At this point, criticism is one of the most valuable inputs I can receive. I can test from a user's point of view, but I still know how the system is supposed to work. A real user will find the confusing reply, the wrong assumption, the awkward tone, and the edge case I stopped seeing.
That feedback should become a correction: a better source, a narrower permission, a clearer escalation rule, a fixed prompt, a validation check, or a product decision that the AI should not answer this class of question at all.
Open Source Is Part of the Accountability
I make these projects open source because I want people to inspect the boundary, create their own flavor, fork the project, or contribute improvements back.
Open source does not make an application safe by itself. It does make the assumptions easier to challenge. Someone can see where memory enters the workflow, where credentials stay, where an action is validated, and where the model has too much freedom.
It also lets people choose a different privacy trade. They can self-host the memory layer, use another model provider, narrow the mailbox scope, disable automatic sending, or keep the whole system in draft-only mode.
My version does not have to be everyone's version. It should be a useful place to start and an honest thing to criticize.
The Risk I Cannot Outsource
Aggressive automation can scale mistakes as efficiently as it scales useful work.
| Failure mode | Mitigation I expect from the system |
|---|---|
| Private context appears in the wrong reply | Separate memory scopes, retrieve the minimum context, validate outputs, and keep an audit trail. |
| Stale project memory produces a confident answer | Preserve dates and provenance, support correction and deletion, and escalate conflicts. |
| The AI sounds like me but invents my position | Constrain answers to known project material and send unfamiliar judgment calls back to me. |
| A bad reply is sent faster than I can catch it | Start with drafts, narrow the accepted conditions, cap actions, and expand autonomy only after reviewing history. |
| Convenience slowly expands what data I share | Review the context boundary repeatedly instead of treating the first privacy decision as permanent. |
These controls are not proof that nothing will go wrong. They are the minimum evidence that I understand what I am trying to automate.
Am I Actually Replacing Myself?
Yes. I am trying to replace myself, and I am doing it aggressively.
I want to replace the version of me that answers the same question for the fiftieth time, reconstructs the same project background, sorts the same kind of email, and loses a focused hour to ten small interruptions.
I do not know whether AI can completely replace everything I do. I doubt "everything I do" will stay fixed long enough to find out.
If AI becomes capable of handling what I do today, I expect I will be learning something new and finding a more interesting problem tomorrow. The target keeps moving because I keep moving too.
That has been the best part of this journey so far. Replacing a repeated task does not make me disappear. It gives me room to become curious about the next one.
Where I Landed
Privacy is still important. In a context-hungry AI system, it may be more important than before.
The tension is that context is also where much of the value comes from. An AI that knows nothing about my projects can give generic answers. An AI that knows their decisions, history, users, and boundaries can actually help. The distance between those two systems is made of data.
I have not solved that tension. I am choosing to make it visible.
I will mask what does not need to be real. I will keep secrets outside the model. I will use primary sources when a generated answer is the wrong tool. I will automate repeated work, preserve escalation paths, invite criticism, and own the responses my applications send.
I am trying to replace myself with AI.
I am not trying to replace responsibility.
License
Article text © 2026 Mark Huang. Licensed under Creative Commons Attribution-NonCommercial 4.0 International (CC BY-NC 4.0) unless otherwise noted. Article text is licensed for non-commercial sharing with attribution to the original article URL. Commercial use requires prior written permission and must clearly cite the original source.
Code snippets, screenshots, third-party assets, and site source code may have separate terms.
Suggested attribution: Based on "I'm Aggressively Trying to Replace Myself With AI" by Mark Huang, originally published at https://markhuang.ai/blog/aggressively-trying-to-replace-myself-with-ai.
Stay updated
Articles on Go, AI/LLMs, and distributed systems. No spam.