Platform

How it works→

Inspect and route every prompt at the edge

What we detect→

PII, credentials, and sensitive data types

Try PII detection in real time

Audit Dashboard→

Logs, compliance and rules in real time

Infrastructure

Cloud Infrastructure→

Why Cloudflare as a provider?

Edge Inference→

Data never leaves the edge node

MIT worker — deploy in your own infra

Compliance

Why Privedge→

Privacy by design, not by policy.

HIPAA · GDPR · PCI DSS

Trust Center→

Enterprise docs · DPA

Contact

Become a partner→

Join the Privedge partner program

By industry →

HIPAA · GDPR Art. 9

Attorney-client privilege

PCI-DSS · GDPR · AML

Public Sector→

NIS2 · GDPR · Data sovereignty

By use case

GDPR compliance by architecture

Data Residency→

Data sovereignty by architecture

PHI tokenized at the edge

PII Anonymization→

Reversible tokenization, GDPR Art. 5

Contact

Become a partner→

Join the Privedge partner program

Support

Technical assistance→

Get help with your integration

Support plans→

Managed support for enterprise teams

Professional services→

Implementation and consulting

Company

What we are building next

Blog

Technical guides and analysis

Contact

Become a partner→

Join the Privedge partner program

Documentation

API Reference→

Full REST API reference

TypeScript / Node.js client

Real-time infrastructure health

Downloads

Architecture→

Technical proxy deep-dive

Compliance Pack→

GDPR, HIPAA, PCI guides

Data Processing Agreement

Core OpenSource

MIT open source

Official Node.js and browser client

Contact

Become a partner→

Join the Privedge partner program

HIPAA · HITECH · PHI Protection

PHI never reaches the model.

Architectural HIPAA compliance. Not a BAA. Not a promise. A technical guarantee that PHI is tokenized before it leaves your network.

The problem

A BAA does not prevent PHI exposure.

Cloud model still processes raw patient data.
Cloud provider logs your queries.

PHI in vendor systems = HIPAA violation.
One breach = massive liability.

OCR fines up to $1.9M per violation category.

The solution

The model never sees PHI. Not once.

PHI tokenized at the edge. The model never sees patient data — not in transit, not in memory. Every request returns pii_matches and routed_to, giving you a complete OCR-ready audit trail from request one.

HIPAAHITECHGDPR Art. 9OCR Audit-Ready

HIPAA § 164.514(b)

"Health information is de-identified when all 18 identifiers are removed and the covered entity has no actual knowledge that the remaining information could be used to identify the individual."

Get started → Talk to us