Why it matters
PII leaks violate GDPR + HIPAA + CCPA. Redaction is not optional.
Advertisement
The architecture
Detection: regex patterns + ML entity detection (Google DLP).
Redaction: replace with placeholders or hash.
Advertisement
How it works end to end
Google DLP API: entity detection for many PII types.
Placement: redact before logging (always), before storing memory (for privacy), before LLM (for sensitive queries).
Reversible redaction: token → original mapping in secure store for authorized reveal.