Skip to main content

VaultProxy AI

VaultProxy AI is a secure AI gateway that sits between your application and large language model providers. It automatically detects and anonymizes Polish personally identifiable information (PII) before your data ever reaches an external AI provider.

How It Works

VaultProxy operates as a transparent proxy with a simple four-step flow:

  1. Your app sends a request -- Your application calls the VaultProxy API using the standard OpenAI chat completions format. No special SDK required.
  2. PII detection and anonymization -- VaultProxy scans the prompt for Polish PII (PESEL, NIP, names, addresses, phone numbers, and more) and replaces sensitive data with safe placeholders.
  3. Forward to AI provider -- The sanitized prompt is forwarded to the AI provider of your choice (OpenAI, Anthropic, Google, Mistral, and others).
  4. Return the response -- The AI provider's response is returned to your application. Original PII values are never stored or logged.
┌──────────┐     ┌──────────────┐     ┌──────────────┐
│ Your App │────>│ VaultProxy   │────>│ AI Provider  │
│          │<────│ (PII filter) │<────│ (OpenAI etc) │
└──────────┘     └──────────────┘     └──────────────┘

Key Features

  • Drop-in replacement -- Fully compatible with the OpenAI /v1/chat/completions API. Change your base URL and API key -- that is all.
  • Automatic PII protection -- Detects 12+ types of Polish PII using HerBERT NER, checksum validation, and pattern matching.
  • Art. 9 RODO detection -- Flags sensitive data categories (health, religion, political views, etc.) as defined by GDPR Article 9.
  • Multi-provider support -- Access 10+ AI providers through a single endpoint: OpenAI, Anthropic, Google, Mistral, Groq, DeepSeek, Cohere, xAI, Perplexity, and Bielik.
  • Provider key encryption -- Your API keys for upstream providers are encrypted with AES-256 at rest.
  • Zero content logging -- VaultProxy never persists prompt or response content. PII is held in RAM for up to 60 seconds during processing.
  • EU-hosted infrastructure -- All processing occurs within the European Union for RODO/GDPR compliance.
  • Usage tracking -- Monitor token consumption, costs, and request volume through the dashboard and API.

Who Is It For?

VaultProxy is built for teams and companies operating in Poland (or handling Polish user data) that want to use LLMs without risking PII exposure. Common use cases include:

  • Customer support automation where messages contain personal data
  • Document processing pipelines handling Polish IDs, tax numbers, or addresses
  • Internal AI assistants that employees use with real customer information
  • SaaS products that integrate LLMs and must comply with RODO/GDPR

Next Steps