Open source PII redaction that runs entirely inside your cloud, built for healthcare, finance, legal, and government workloads.
In production since 2017. Or explore the toolkit →
Philter AI Proxy
Philter AI Proxy is open source software that sits in front of your LLM calls: prompts get through, but sensitive data never crosses your network boundary. One URL change in your existing SDK and nothing else moves. For the full walkthrough, see our guide to redact PII before sending to an LLM across chat, RAG, and agents.
Every tool in the Philterd toolkit is open source and free to run. Start from what you're trying to do, and each path maps to the tools that solve it.
Pick the surface that matches where the text lives: an API, an embedded library, or an LLM gateway.
Map where PII already lives, then watch how it moves through the systems you care about.
Build the policy, override what the system gets wrong, and measure how well it works over time.
Pattern matching handles structured identifiers. Purpose-built AI models handle everything else. Both run entirely inside your cloud.
Philter and the rest of the Philterd toolkit run inside your cloud. Your data never leaves your perimeter, never reaches a third-party API, and never lands in someone else's logs.
Transparency is the only way to verify privacy software. Our core engine is Apache 2.0 licensed, so your engineers can read every line, audit every decision, and extend the stack on their own terms.
Generic LLMs make poor privacy filters. We train and ship specialized NLP and deep-learning models built specifically for PII and PHI detection. They are accurate, tunable, and operationally affordable at scale.
Philterd provides a zero-trust architecture designed to support your HIPAA, GDPR, and CCPA compliance efforts. The discovery engine operates entirely within your infrastructure: 100% data sovereignty, no external API dependencies, no third-party data training. Detection uses NLP and is probabilistic, so validate coverage against your own data; because you self-host, you remain the data controller responsible for the output.
To support HIPAA Safe Harbor de-identification, we pair high-speed pattern matching for structured identifiers with specialized AI models for everything else, with detection and handling strategies for all 18 protected identifier categories under 45 CFR § 164.514. Healthcare and life-sciences organizations can automate much of the de-identification work across massive datasets while preserving the utility the data needs for research and innovation. Validate coverage against your own data before relying on it.
Need help with PHI redaction or mapping your HIPAA, GDPR, or PCI posture to a Philter deployment? Get an architecture review → · See the full compliance breakdown →
Same redaction engine, three paths. Pick the one that fits your team.
Free forever
$0 · Open source
Run the entire Philterd toolkit yourself. Full source on GitHub. No license keys, no usage caps, no commercial review.
Best for: Engineering-led teams who want to own every layer.
Per-hour billing
From $0.49/hr · ~$360/mo
Deploy Philter (our turnkey redaction API) into your VPC from the AWS, Google Cloud, or Azure marketplace. Production-ready in minutes; billed through your existing cloud account. The other Philterd tools are not yet on the cloud marketplaces.
Best for: Teams that want production-ready Philter without managing builds or ops.
Available on AWS, Google Cloud, and Azure. AWS Marketplace list price shown. See the full TCO comparison →
Engagement-based
Custom
Work directly with the people who built the toolkit. Custom NLP models, privacy architecture, embedded engineering, and production deployment with full handoff.
Best for: Healthcare, finance, and government workloads with custom requirements.
Practical posts on PII redaction, AI privacy, and self-hosted compliance.
· Philter, Redaction
philter-sdk-java 2.0.0 is on Maven Central and targets the Philter 4.0.0 API: API-key auth, full endpoint coverage, and Java 11 bytecode.
Read post →· Phileas
Phileas 4.0.0 is on Maven Central: authenticated AES-GCM encryption, ReDoS guards, faster span handling, PhiSQL policy input, and a Java 25 build.
Read post →· AI, Philter, Redaction
Redact PII and PHI before any prompt reaches an LLM, keeping data on your own infrastructure. A self-hosted pipeline for chat, RAG, and AI agents.
Read post →We help teams ship AI safely and build the redaction pipelines that protect sensitive data across the rest of the stack. Work directly with the creators of Philter: privacy infrastructure you own, not a black box you renew every year.
We design end-to-end PII protection for your cloud and AI workloads: data flows, redaction layers, audit trails, and the guardrails that keep them aligned with HIPAA, GDPR, and CCPA.
Off-the-shelf models miss the entities that matter most in your domain. We train specialized PII/PHI detectors on your data, evaluated against precision and recall you can measure.
Pre-launch privacy review of generative AI and RAG systems. We trace PII through prompts, retrieval context, tool calls, logs, and vector stores, then ship the redaction and policy changes.
See all consulting services → · Case studies → · Solution brief (PDF) → · Have a specific project in mind? Schedule a 30-min call →
Launch Philter from your cloud marketplace and it runs inside your own VPC in minutes, billed through your existing cloud account. Want volume pricing or a private offer? Talk to us first.