Fleet-wide AI privacy, one executive view.

Argos runs as a transparent proxy across every device. The Executive Portal aggregates anonymized metadata from every agent — giving you org-wide visibility with zero raw data exposure. Try it: edit the prompt and watch what the model would actually receive.

Open Executive Portal See all views

The portal runs entirely client-side. Everything you see is realistic demo data.

What the model sees scanning as you type
Your prompt
through the Argos proxy
Forwarded to the LLM
0 findings k-anonymity risk 0/100 LOG
Monitors 16 endpoints:
OpenAIAnthropicGeminiMistral CohereGroqTogetherPerplexity OpenRouterBedrockAzureVertex HuggingFaceReplicateDeepSeekxAI

One roundtrip: tokenize, scale, forward, rehydrate.

The proxy rewrites sensitive bytes before they leave the box and restores them in the response, so your users never notice. Here is the whole trip.

device any app, any process Argos proxy detect → tokenize → scale → forward LLM OpenAI · Anthropic · Gemini SSN 545-12-8443 [ID:SSN:0413] response: placeholders restored, magnitudes un-scaled
The raw value crosses the first wire only. Past the proxy, the model works with [ID:SSN:0413].
01 · outbound

Tokenize

Every detected PII span is swapped for a deterministic [CAT:SUBCAT:NNNN] placeholder before the request leaves the box.

detector.tokenize_tier1
02 · outbound

Scale

The Prism Method multiplies revenue, headcount and other sensitive magnitudes by a cryptographic factor. Ratios preserved, secrets hidden.

scaler · os.urandom seeded
03 · wire

Forward

The tokenized payload travels to OpenAI, Anthropic, Gemini or 13 more. Streaming SSE plus gzip and brotli are handled statefully per vendor.

transparent proxy
04 · inbound

Rehydrate

The response stream is decompressed, placeholders restored, magnitudes un-scaled. The user sees a coherent answer in plain English.

restore_tokens · O(n) regex

Org-wide visibility. Zero raw data.

The Executive Portal aggregates anonymized metadata from every reporting agent. Seven views cover everything from fleet overview to per-device drill-downs, department breakdowns, and board-ready compliance reports.

Org Overview⤢ tap to expand
Executive Portal, Org Overview
Device Browser⤢ tap to expand
Executive Portal, Device Browser
Departments⤢ tap to expand
Executive Portal, Departments
Org-wide Scan Log⤢ tap to expand
Executive Portal, Scan Log
Network Monitoring⤢ tap to expand
Executive Portal, Network Monitoring
Executive Report⤢ tap to expand
Executive Portal, Executive Report
Server Settings⤢ tap to expand
Executive Portal, Server Settings
Open the Executive Portal demo

Regex catches the obvious. K-anonymity catches the rest.

Detection runs end-to-end in under 50ms. Nothing is sent off-device for analysis: every layer ships with the agent.

layer 01

Regex

SSN, credit card, IBAN, ICD-10, API keys, JWT, private keys, DB connection strings, emails. Deterministic, sub-millisecond.

layer 02

Semantic NER

ML named-entity recognition for personal names, medical conditions, minors and special categories that escape pattern matching.

layer 03 · k-anonymity

The combination attack. Where regex stops, Sweeney begins.

"John Smith" is safe. "94304" is safe. "1987-03-12" is safe. Put them in one prompt and 87% of the US population is uniquely identifiable. Argos models re-identification risk with Sweeney k-anonymity and HIPAA Safe Harbor, and blocks combinations regex will never see.

# prompt: "patient John Smith, DOB 1987-03-12, ZIP 94304, ICD F32.1"
findings: 4 spans · layer_3_k: 1.0
combo: hipaa_safe_harbor · sweeney_quasi_identifier
verdict: CRITICAL → action: BLOCK

Metadata only

The central reporter sends counts, scores and labels, never raw findings. The PII string never crosses the network.

Response-side scan

Models hallucinate emails and paraphrase names. Argos independently rescans the model's output and logs it as a separate model-generated PII event.

What ships today.

0
LLM endpoints monitored
OpenAI, Anthropic, Gemini, Mistral, Cohere, Groq and 10 more
0
Detection layers
Regex, then semantic NER, then k-anonymity scoring
0ms
P50 detection latency
Optimized pipeline engineered for imperceptible overhead
0
Regulations tracked
GDPR, HIPAA, PCI-DSS, SOC2, CCPA, FERPA

Every endpoint treated like a target.

v2.2 ships with the OWASP API Top-10 mitigations the average self-hosted security tool quietly ignores.

Adaptive rate limiting

Per-IP and per-identity controls on every API surface. Ingest, dashboard, login and admin each enforce separate thresholds automatically.

Strict input validation

Every request is gated by a strict schema that rejects unexpected fields. Errors never echo raw input back to the caller.

Hashed token storage

Authentication tokens are stored only as cryptographic hashes and verified using constant-time comparison to prevent timing attacks.

Hardened session management

Auth cookies are inaccessible to client-side scripts, auto-secured on HTTPS, and protected against clickjacking with strict framing policies.

Decompression-bomb caps

50 MB cumulative output ceiling per stream. Per-format guards on PDF, DOCX, XLSX and PPTX uploads.

Zero-knowledge reporter

The findings list, the only part of the scan that holds matched PII, is dropped before the payload is queued for the central server.

Run it now, in this browser.

No sign-up, no install, no backend. The Executive Portal works entirely offline against realistic demo data; every filter, chart and export is live.

Open Executive Portal