Skip to main content

Privacy layer for AI prompts

Project description

🔐 PrivyLayer

Privacy layer for AI systems — protect sensitive data before it reaches the LLM.


🚀 Overview

PrivyLayer is a lightweight Python library designed to act as a secure buffer between user input and AI models. It detects sensitive information (PII), replaces it with secure tokens, and restores the original data after the AI response—ensuring zero data exposure to third-party providers.


⚡ Why PrivyLayer?

Modern AI systems often process raw user data, which may contain:

  • Identity: Aadhaar, PAN
  • Contact: Phone numbers, Emails
  • Finance: Bank details, IFSC codes

PrivyLayer solves this by introducing a reversible masking system, allowing AI to understand context without ever seeing the actual private values.


🧠 How It Works

  1. User Input: "My Aadhaar is 1234 5678 1234."
  2. Mask (PrivyLayer): "My Aadhaar is ⟦PII_AADHAAR_x1⟧." (Validates checksum internally).
  3. AI Model: Processes the masked text.
  4. Restore (PrivyLayer): Swaps the token back for the original value.
  5. Final Output: Securely displayed to the user.

✨ Features

  • 🔍 Advanced Detection: Uses optimized patterns for PII.
  • Aadhaar Validation: Now includes checksum verification to notify if an Aadhaar number is real or fake.
  • 🔁 Reversible Masking: Maintain full context without data loss.
  • 🧠 Smart Tokenization: Structured ⟦PII_TYPE_ID⟧ format for easy LLM processing.
  • Fast & Lightweight: Minimal overhead for real-time applications.
  • 🔒 Privacy First: No data is stored or sent to any external server.

📦 Installation

pip install privylayer

🛠️ Usage

🔐 Protect (Mask data)

from privylayer import protect

text = "My phone is 9876543210 and Aadhaar is [Aadhaar Redacted]"
# find_p analyzes the text and returns masked version, context, and metadata
mask, context, seen = protect.find_p(text)

print(mask)
# Output: My phone is ⟦PII_PHONE_x1⟧ and Aadhaar is ⟦PII_AADHAAR_x2⟧

🔓 Restore (Unmask data)

from privylayer import restore

original = restore(masked_response, context)
print(original)
# Output: My phone is 9876543210 and Aadhaar is [Aadhaar Redacted]

🧩 Supported Data Types

  • 📱 Phone numbers (India-specific)
  • 📧 Email addresses
  • 🪪 Aadhaar numbers (With Checksum Validation)
  • 🧾 PAN numbers
  • 🏦 IFSC codes

🛡️ Aadhaar Checksum Validation

The latest version of PrivyLayer automatically validates the integrity of Aadhaar numbers using the Verhoeff algorithm.

  • Note: The library will print a system message indicating whether the detected Aadhaar is Real or Fake based on the checksum, ensuring higher data quality before masking.

🚀 Roadmap

  • AI-based entity and name detection
  • Risk scoring system for data sensitivity
  • API Gateway integration
  • Encryption-based token vault for enhanced security

⚠️ Limitations While PrivyLayer provides a robust security buffer, users should be aware of the following technical boundaries:

No Official PAN/IFSC Verification: The library detects PAN cards and IFSC codes using structural pattern matching (Regex). It does not connect to government databases or banking APIs to verify if the identity or bank branch actually exists.

Aadhaar Checksum Only: For Aadhaar, the library performs a Verhoeff algorithm checksum validation. This confirms if the number is mathematically valid (Real vs. Fake format), but it does not perform biometric or OTP-based authentication.

Regex-Based Detection: Since the core engine relies on sophisticated regular expressions, it may occasionally struggle with high-accuracy name detection if the names are common dictionary words.

Context Dependency: The restore() function requires the original context object generated during the protect() phase. If this context is lost or corrupted, the masked data cannot be recovered.

No Global Storage: PrivyLayer is entirely stateless. While this is a security feature, it means you are responsible for securely managing the mapping context within your own application environment.


📄 License

MIT License

👨‍💻 Author

Built by Nithish 🚀 Portfolio | GitHub


🌟 Vision: Making AI safe for everyone by protecting sensitive data at the source.

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

privylayer-0.2.2.tar.gz (4.1 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

privylayer-0.2.2-py3-none-any.whl (4.6 kB view details)

Uploaded Python 3

File details

Details for the file privylayer-0.2.2.tar.gz.

File metadata

  • Download URL: privylayer-0.2.2.tar.gz
  • Upload date:
  • Size: 4.1 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/6.2.0 CPython/3.12.10

File hashes

Hashes for privylayer-0.2.2.tar.gz
Algorithm Hash digest
SHA256 afac85cb54346545d1acc8b56457a7c9d2d9a36ff78b064b366001e7db452128
MD5 1e4753c3a0959986bdf49ecc42898f03
BLAKE2b-256 0d88f4339135c0661d2f5e0b5de94253a086b9c3a76182c9730f4825d7d1a716

See more details on using hashes here.

File details

Details for the file privylayer-0.2.2-py3-none-any.whl.

File metadata

  • Download URL: privylayer-0.2.2-py3-none-any.whl
  • Upload date:
  • Size: 4.6 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/6.2.0 CPython/3.12.10

File hashes

Hashes for privylayer-0.2.2-py3-none-any.whl
Algorithm Hash digest
SHA256 5c7933d4bc3248647e6ee6a70184706416e36bb9ce67e12b3fd0adfcc578d738
MD5 24c36e6eb97242bc4e09b7e600994722
BLAKE2b-256 e7ca17f1028cddea095a8595d8d3270ba28a454d33ebf07494590360558f7f36

See more details on using hashes here.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page