Everything you need to get started.

From installation to advanced configuration, the documentation covers every layer of the Argos stack. Each guide includes step-by-step instructions and working examples.

Quick Start Guide

Install the agent, configure the proxy, connect to the executive portal, and start monitoring in under five minutes.

  • System requirements & prerequisites
  • Agent installation (macOS, Linux, Windows)
  • Proxy certificate setup
  • First scan walkthrough
setup · install · config

Detection Engine

Understand the three-layer detection pipeline: regex patterns, semantic NER models, and Sweeney k-anonymity scoring for combination attacks.

  • Layer 1: Regex pattern library (SSN, cards, API keys)
  • Layer 2: Semantic NER for names & medical terms
  • Layer 3: K-anonymity & HIPAA Safe Harbor
  • Custom pattern configuration
regex · NER · k-anonymity

API Reference

REST endpoints for ingest, dashboard queries, device management, and webhook integrations. Schema-validated, rate-limited, fully documented.

  • Authentication: token hashing & sessions
  • Ingest API: scan event submission
  • Dashboard queries: scans, devices, departments
  • Webhook configuration & payloads
REST · webhooks · auth

Deployment Guide

Docker Compose, bare-metal, and cloud deployment options. TLS configuration, environment variables, and production hardening checklist.

  • Docker Compose single-command deploy
  • Bare-metal: systemd, nginx reverse proxy
  • Cloud: AWS, GCP, Azure templates
  • TLS certificates & environment vars
docker · cloud · TLS

Executive Portal

Navigate the seven dashboard views: overview, devices, departments, scan log, monitoring, executive reports, and server-level settings.

  • Overview: fleet metrics & 7-day trends
  • Devices: per-agent drill-down & sorting
  • Departments: risk heat map by team
  • Reports: board-ready PDF export
portal · dashboard · views

Integrations

Connect Argos to Slack, PagerDuty, Jira, and custom SIEM pipelines. Webhook payloads, alert routing, and SMTP configuration.

  • Slack: real-time alert channels
  • PagerDuty & Jira ticket creation
  • SIEM: Splunk, Elastic, custom syslog
  • SMTP email notifications
slack · SIEM · alerts

Frequently asked questions.

The most common questions about Argos architecture, deployment, privacy, and compliance.

Argos is a transparent proxy that runs on every device. It intercepts outbound LLM requests, detects and tokenizes PII before the prompt leaves the machine, forwards the sanitized payload to the model, and rehydrates the response with original values. The user sees a coherent answer; the model never sees raw PII.

No. Detection runs entirely on-device. The only data sent to the central executive portal is anonymized metadata: counts, scores, categories, and timestamps. The raw PII findings are dropped before the report is queued. The matched text never crosses the network.

Argos monitors 16 endpoints out of the box: OpenAI, Anthropic, Gemini, Mistral, Cohere, Groq, Together, Perplexity, OpenRouter, Bedrock, Azure, Vertex, HuggingFace, Replicate, DeepSeek, and xAI. Custom endpoints can be added via configuration.

K-anonymity measures re-identification risk. A name alone is safe. A ZIP code alone is safe. A date of birth alone is safe. But combine them in one prompt and 87% of the US population becomes uniquely identifiable. Argos uses Sweeney k-anonymity scoring and HIPAA Safe Harbor rules to detect these dangerous combinations that regex will never catch.

P50 detection latency is under 50ms. The pipeline is engineered for imperceptible overhead with optimized caching and compilation strategies. Users don't notice any perceptible delay when interacting with their LLM tools.

Argos tracks 6 regulatory frameworks: GDPR, HIPAA, PCI-DSS, SOC2, CCPA, and FERPA. Each scan event is tagged with applicable regulations based on the PII categories detected. The executive report generates board-ready compliance summaries.

Yes. Argos supports containerized, bare-metal, and cloud deployment. For enterprise deployments, we offer dedicated support with SLA guarantees and custom configuration.

Yes. Models can hallucinate emails, paraphrase names, and generate plausible PII. Argos independently rescans the model's output stream and logs any findings as separate model-generated PII events, giving you visibility into what the model is producing.

The Argos agent runs on macOS, Linux, and Windows. The Executive Portal server supports both x86_64 and ARM architectures and runs on all major platforms.

Argos is priced per device with volume discounts. Contact us for a quote tailored to your fleet size. We offer plans for teams of 1–10, 11–50, 51–200, and 200+ devices. Enterprise plans include dedicated support, SLAs, and custom integrations.