Introducing PhiSQL: The Query Language for PII Operations
PhiSQL is a declarative, SQL-like query language for PII privacy operations across the Philterd toolkit. The problem it solves and what ships in v0.1.
Introducing Arbiter: Human-in-the-Loop PII Redaction
Automation handles most of the volume; humans handle the last few percent. Arbiter is the open source review surface that bridges the two, built on Philter.
What is PII? A Practical Guide for Engineers and Compliance Teams
PII is the term everyone uses and few define the same way. A practitioner's guide to what counts as PII, how to find it in real data, and how to handle it.
The Hidden Difficulties of Redacting PDF Documents
PDFs leak redacted text in unexpected ways: invisible text layers, embedded files, and metadata. Why PDF redaction is harder than it looks, with Philter's fix.
Redaction for Legal and E-Discovery: Privilege, Rule 9037, and the In-House Counsel's Pipeline
How automated redaction fits legal workflows: court filings, e-discovery production, privilege review, and M&A due diligence for in-house counsel.
Redaction for Financial Services: PCI DSS, GLBA, and the Real-World Data Pipeline
A practitioner's guide to redacting NPPI and cardholder data in financial workflows, mapping PCI DSS, GLBA, and state requirements to the Philterd toolkit.
PII vs PHI vs NPPI: An Engineer's Guide
Three acronyms used interchangeably that shouldn't be. A reference for engineers and compliance leads, with the regulatory and architectural take on each.
Redaction for Insurance: Claims, Customer Data, and the State-by-State Patchwork
Insurance carriers sit at the intersection of GLBA, HIPAA, state rules, and the NAIC Model Law. A guide to redacting NPPI and PHI in claims and adjuster notes.
Automating HIPAA Safe Harbor: A Blueprint for Healthcare Data Pipelines
How the Philterd suite maps to the 18 HIPAA Safe Harbor identifiers, with a deployment blueprint for patient data lakes, research pipelines, and medical RAG.
Privacy Shouldn't Be a Guessing Game: Evaluating Redaction with Philter Scope
Stop hoping your redaction works. Philter Scope turns precision, recall, and F1 into a measurable, auditable health score for any redaction pipeline.
Why API-Based Redaction is a Security Antipattern
Sending sensitive data to a third-party redaction API opens the security holes you are trying to close. Why data sovereignty needs a self-hosted engine.
Redaction for Education: FERPA, Student Records, and Research Data Pipelines
FERPA governs student records but rarely gets the attention HIPAA does. A practitioner's guide for university IT, edtech vendors, and research-data teams.
What is Data Redaction? A Practical Guide
Data redaction removes sensitive information from documents and datasets, but covers more techniques than most realize. A guide to strategies and trade-offs.
Using an LLM or Pattern-based Rules for PII/PHI Redaction
Comparing the two main approaches to redacting PII and PHI: an LLM versus pattern-based rules. How each handles accuracy, cost, and GDPR or HIPAA compliance.
Shielding Your Search: Redacting PII and PHI in OpenSearch with Phinder
Phinder is an open source OpenSearch plugin built on Phileas that redacts and de-identifies PII and PHI in your search results, keeping sensitive data private.
Automatically Redacting PII and PHI from Files in Amazon S3 using Amazon Macie and Philter
Use Amazon Macie to find sensitive data in S3, then automatically redact PII and PHI such as SSNs and phone numbers from those files with Philter.
Redacting Text in Amazon Kinesis Data Firehose
Amazon Kinesis Firehose is a managed streaming service that moves data from sources to destinations like S3 and Redshift. This post redacts PII in that stream.
Phileas: The Open Source PII and PHI redaction engine
Introducing Phileas, the open source PII and PHI redaction engine, now available under the Apache license on GitHub. It powers both Philter and Phirestream.
What is format-preserving encryption?
Format-preserving encryption (FPE) encrypts a value so the ciphertext keeps its shape and won't break downstream systems. A guide with credit-card examples.