Integrations
Apache NiFi and Philter
How to use Philter to redact PII and PHI inside an Apache NiFi data flow, either through Philter's API or with an embedded NiFi processor.
Reference and how-to
Guides
Maintained guides to PII redaction with the Philterd toolkit: how redaction policies work, how to author them, and how the pieces fit together.
Compliance
Deploying Philter in a HIPAA Environment
How to configure a Philter deployment for HIPAA: encryption of data at rest and in motion across AWS, Azure, and Google Cloud.
Operations
Deploying Philter in AWS via a CloudFormation Template
How to deploy Philter in AWS with a CloudFormation template: finding the Philter AMI, editing the template, and launching the stack.
Operations
How to Use a Signed SSL Certificate with Philter
How to replace Philter's default self-signed SSL certificate with a signed certificate from a trusted authority, using a Java keystore.
Operations
How to Use an Apache Reverse Proxy with Philter
How to run an Apache reverse proxy in front of Philter for SSL termination, access control, and access logging.
Operations
Managing Philter's Configuration in an Auto-Scaling Environment
How to manage Philter's configuration across instances in an auto-scaling environment, using a pre-baked machine image or an external properties file.
Operations
Monitoring Philter in AWS
How to monitor a Philter deployment in AWS: CloudWatch Logs for application logs, load balancer health checks for availability, and CloudWatch Metrics.
AI privacy
PII in Vector Embeddings: A Defense Guide
Embeddings look like just numbers, but research shows they are partially invertible. A practical defense guide for vector stores against PII recovery attacks.
Fundamentals
PII vs PHI vs NPPI: An Engineer's Guide
Three acronyms used interchangeably that shouldn't be. A reference for engineers and compliance leads, with the regulatory and architectural take on each.
AI privacy
Prompt Engineering for Privacy: Practical Patterns for Not Leaking PII
Every prompt sent to an LLM is a data egress point. Six concrete patterns for structuring prompts, redacting inputs, and scanning outputs so PII doesn't leak.
Integrations
Redacting Text in Amazon Kinesis Data Firehose
Amazon Kinesis Firehose is a managed streaming service that moves data from sources to destinations like S3 and Redshift. This post redacts PII in that stream.
Operations
Referential Integrity with Valkey
How to configure a Valkey cache so Philter maintains referential integrity (consistent replacement values) across documents and contexts in a cluster.
Compliance
SOC 2 and HIPAA Control Mapping for Philter AI Proxy
Map Philter AI Proxy features to SOC 2 Trust Services Criteria and HIPAA Security Rule safeguards, with guidance for your own attestations.
File formats
The Hidden Difficulties of Redacting PDF Documents
PDFs leak redacted text in unexpected ways: invisible text layers, embedded files, and metadata. Why PDF redaction is harder than it looks, with Philter's fix.
The Phileas redaction policy schema
What a redaction policy is, how the JSON schema is structured, and how to use it to control exactly which PII is detected and how each type is redacted.
Detection
Using an LLM or Pattern-based Rules for PII/PHI Redaction
Comparing the two main approaches to redacting PII and PHI: an LLM versus pattern-based rules. How each handles accuracy, cost, and GDPR or HIPAA compliance.
Integrations
Using Philter with Microsoft Power Automate
How to call Philter from a Microsoft Power Automate (Flow) automation to redact PII and PHI from text, using a simple HTTP action.
Fundamentals
What is Data Redaction? A Practical Guide
Data redaction removes sensitive information from documents and datasets, but covers more techniques than most realize. A guide to strategies and trade-offs.
Encryption
What is format-preserving encryption?
Format-preserving encryption (FPE) encrypts a value so the ciphertext keeps its shape and won't break downstream systems. A guide with credit-card examples.
Fundamentals
What is PII? A Practical Guide for Engineers and Compliance Teams
PII is the term everyone uses and few define the same way. A practitioner's guide to what counts as PII, how to find it in real data, and how to handle it.
Compliance
Why Philterd Doesn't Sign a BAA (and Why You Don't Need Us To)
A self-hosted PII redaction vendor never touches your data, so there is no business-associate or processor relationship to govern. With definitions.
Writing your first redaction policy
A hands-on walkthrough from empty file to working redaction policy: detect an entity, apply it with Philter, change how it redacts, and handle false positives.