Product

Two ways to protect sensitive data.

A Chrome extension for your team. An API for your product. Both powered by the same detection engine.

Chrome Extension

Install once. Forget about it.

PII Shield runs silently in the background, intercepting sensitive data before it reaches any AI platform.

Automatic interception of all AI prompts

Real-time alerts when personal information is detected

One-click redaction to safely send your prompt

No code, no configuration — just install and go

Works with

ChatGPT

Claude

Gemini

Grok

Install extension

API

Build detection into your product.

Integrate personal information detection directly into your applications. Send text, get back a structured response with detected entities and a block/allow decision.

RESTful API with JSON responses

Sub-second detection latency

Canadian data residency (no US routing)

80+ entity types with combination analysis

# Send text, get structured detection results

curl -X POST https://api.piishield.com/detect \

-H "Authorization: Bearer YOUR_API_KEY" \

-H "Content-Type: application/json" \

-d '{"text": "John Smith, SSN 123-45-6789"}'

# Response

{
  "shouldBlock": true,
  "detectedEntities": [
    { "type": "PERSON", "text": "John Smith" },
    { "type": "US_SSN", "text": "123-45-6789" }
  ],
  "severity": "critical",
  "matchedLaws": ["HIPAA", "PIPEDA"]
}

Get your API key from the PII Shield Dashboard

Request API access

How it works

The detection pipeline.

Every query passes through three stages before reaching any AI service.

Stage 1

Pre-Detection

The system loads your compliance context before scanning begins.

Loads your selected laws (HIPAA, PHIPA, GDPR, etc.)

80+ entity types we scan for

Your custom guardrail terms

Stage 2

Detection

Multi-layer scanning identifies all sensitive information in your text.

Regex patterns for structured data (SSN, phone, email)

AI-powered NER for contextual entities

Guardrail matching for custom terms

Stage 3

Policy Engine

Determines if detected entities violate your compliance requirements.

Maps entities to severity based on selected laws

Combination analysis — the key differentiator

Final decision: allow, warn, or block

Combination Analysis

Why combinations matter.

A first name alone is rarely a privacy violation. But combine it with other data, and the risk escalates.

First Namealone

Low

First Name+Last Name

High

Full Name+Health Info

Critical

Our policy engine evaluates all entity combinations against your selected compliance laws to determine the actual risk level.

Coverage

What we detect.

80+ entity types across 8 categories of personal information.

Personal Identifiers

Names, DOB, SSN, SIN

Contact Information

Email, Phone, Address

Financial Data

Credit Cards, Bank Accounts, Income

Health Records

Diagnoses, Medications, Provider Info

Employment Data

Salary, Performance, Job History

Legal Identifiers

Passport, Driver License, Visa

Digital Identifiers

IP Address, MAC Address, Device IDs

Biometric Data

Fingerprints, Face Data, Voice Prints

Compliance

Built for the laws that apply to you.

PII Shield adapts its detection and severity thresholds based on the privacy laws that apply to your organization.

HIPAA

Health Insurance Portability

United States

GDPR

General Data Protection Regulation

European Union

PIPEDA

Personal Information Protection

Canada

PHIPA

Personal Health Information Protection

Ontario, Canada

FERPA

Family Educational Rights and Privacy

United States

CCPA

California Consumer Privacy Act

California, US

+ 12 more

Including GLBA, LGPD, SHIELD Act, Privacy Act, and others

Ready to get started?

Start with the browser extension or get access to the API. Setup takes under 10 minutes.

Install extension Request API access View pricing