1 — Inbound prompt (from your app)
My name is Michael Andersen, email michael@email.com and my SSN is 123-45-6789.
AI Security Layer
The privacy-first LLM gateway for secure AI
Mask personal and sensitive data before prompts reach GPT, Claude and other models with PII masking, prompt security and a privacy-first LLM gateway.
Prevent LLMs from seeing sensitive data.
- BYOK
- Zero retention
- Provider agnostic
- Simple JSON API
Client Application
Your app or backend
Privian
Mask sensitive data
LLM Provider
GPT · Claude · Gemini
Privian
Rehydrate safely
Client Application
Original values restored
PII masking
How Privian masks sensitive data before prompts reach an LLM
The model never sees the original values. Privian detects personal and sensitive data, replaces it with deterministic placeholders, then restores the originals in the response.
2 — Sent to GPT / Claude (masked)
My name is [PERSON_1], email [EMAIL_1] and my SSN is [ID_1].
3 — Model response (still masked)
Hi [PERSON_1], I've noted the email [EMAIL_1] for follow-up.
4 — Returned to your app (rehydrated)
Hi Michael Andersen, I've noted the email michael@email.com for follow-up.
Placeholders are deterministic within a request, so rehydration is exact. Learn more about PII masking →
How it works
How Privian works
- Step 1
Route prompts through Privian
POST to one gateway endpoint with a JSON body — prompt, model and an optional stream flag. The gateway handles provider routing using your BYOK credentials.
- Step 2
Mask sensitive data
PII masking and prompt security happen before the request reaches the model. Detected values are replaced with deterministic placeholders.
- Step 3
Rehydrate responses
Sensitive values are safely restored in the model response so your application receives a normal, correctly-formed answer.
Capabilities
Built for secure LLM traffic
A focused set of primitives for LLM security, prompt privacy and sensitive data masking — composed into a single request path.
PII masking
Detect and mask personal and sensitive data before prompts leave your perimeter. Deterministic, reversible inside the gateway.
Learn morePrompt security
Guardrails for prompt content — scoping, validation and policy enforcement at the gateway. Stop prompt-level leaks before they happen.
Learn morePrivacy-first LLM gateway
One JSON endpoint routes prompts to any supported provider using your own keys. Provider-agnostic by design.
Learn moreZero-retention architecture
Raw prompts and responses are not stored. Observability is built from structural counters, not payload bodies — minimal metadata only.
Learn more
Who Privian is for
Built for teams shipping AI on sensitive data
Privian fits teams using GPT, Claude and similar models where prompts regularly contain personal or sensitive content.
Customer Support AI
- Problem
- Support tickets are full of names, emails and account data.
- How Privian helps
- Privian masks customer PII before the prompt reaches the model.
Internal Copilots
- Problem
- Employees paste internal data into external LLMs.
- How Privian helps
- Route copilot traffic through Privian so sensitive content is masked first.
AI Features for SaaS
- Problem
- Shipping AI features means sending user data to a provider.
- How Privian helps
- Add a privacy layer between your product and the model — no prompt rewrites.
Secure AI Prototyping
- Problem
- Prototyping with real data is fast but risky.
- How Privian helps
- Use the same gateway in dev so experiments never leak real values.
Trust
Built for trust
What Privian does not do is as important as what it does.
No raw prompt storage
Inbound prompts pass through memory only.
No rehydrated response storage
Outbound responses are never persisted.
BYOK architecture
Provider credentials are yours, encrypted at rest.
Provider agnostic
OpenAI, Anthropic, Google — no lock-in to one model.
Simple JSON gateway
One endpoint, one JSON body — prompt, model, optional stream.
Minimal metadata retention
Counters and latencies, never payload bodies.
Transparency
Understand exactly how Privian works before you build
Privian is in beta. Architecture, security model and known limitations are documented publicly — so you can evaluate the product on facts, not marketing.
Architecture
How the gateway, masking and rehydration fit together.
ReadSecurity model
Zero raw prompt retention, BYOK credentials, data handling.
ReadUpdates & beta limitations
What's shipping, what's exploring, what's not yet supported.
ReadDeveloper docs
Concepts, quickstart and the gateway API reference.
Read
Developer experience
Integrate in minutes
Privian exposes a small JSON gateway: POST prompt and a provider-namespaced model. Sensitive values are masked before egress and rehydrated in the response.
curl https://api.privian.io/v1/gateway \
-H "Authorization: Bearer $PRIVIAN_API_KEY" \
-H "Content-Type: application/json" \
-d '{
"model": "openai/gpt-5.5",
"prompt": "Email me at michael@email.com about ticket #4821.",
"stream": false
}'michael@email.com is masked before reaching the model and rehydrated in the response.
Learn
Understand prompt security, PII masking and LLM privacy
Deeper reading on each part of the Privian AI Security Layer.
Prompt security
Guardrails and policy enforcement at the gateway.
ReadPII masking
How detection, masking and rehydration work.
ReadAI Security Layer
The architecture pattern, end to end.
ReadLLM gateway
BYOK, provider-agnostic routing, simple JSON contract.
ReadDeveloper docs
Quickstart, concepts, guides and API reference.
Read
Start building safer AI
Protect prompts before they reach GPT, Claude and other models.