Trust & Safety
Security is not a feature — it's the foundation. Every component of Proxai is designed with defense in depth.
All data is encrypted in transit (TLS 1.3) and at rest (AES-256). API keys are encrypted with per-workspace keys.
Automatic detection and redaction of personally identifiable information before it reaches LLM providers. Supports emails, phone numbers, IBANs, and custom patterns.
All data processing and storage happens within the European Union. No data leaves EU borders.
Every request is authenticated, authorized, and audited. No implicit trust between services.
Designed for GDPR, EU AI Act, and SOC 2 compliance. Full audit trails for every LLM interaction.
Proxai operates as a transparent proxy layer. Requests flow from your application → Proxai gateway → LLM provider. At no point does Proxai store the raw content of LLM responses beyond the configured retention window.
The gateway performs synchronous PII masking, policy evaluation, and budget enforcement before forwarding to the upstream provider. The entire pipeline adds <10ms of latency in the p99 case.
Audit logs are append-only and stored separately from the request pipeline, with independent access controls.