// On-device AI protection for ChatGPT, Claude, Gemini, Copilot and Perplexity
RedactPII catches PII, API keys, and secrets the moment you paste—before they ever reach the server. Everything runs on your device. We never see your data. Not even once.
Free forever. Three protected pastes per day. No account required.
Real extension. Real interception. No scripted demo.
Works where you work
Protects your paste on every major AI platform. More coming soon.
of employees paste sensitive data into ChatGPT
LayerX Security, 2025
of all ChatGPT inputs contain sensitive information. Up from 11 percent in 2023.
Q4 2025 Research
Average cost of an AI-associated data breach.
IBM, 2025
Stolen ChatGPT credentials found on the dark web.
Group-IB, 2024
Samsung engineers leaked proprietary source code to ChatGPT. Your next paste could be the one that costs you.
We fill that gap.
Copy code, text, or documents and paste into any supported AI tool. RedactPII intercepts the paste event before it reaches the input field.
Two specialized on-device language models analyze your content across 20 PII categories—names, emails, SSNs, API keys, credentials, and more. Nothing leaves your machine. Not one byte.
See exactly what was detected with visual highlighting. Click "Redact & Paste" to mask sensitive items, or "Paste Original" to proceed. You're always in control.
Average detection time: under two seconds. No cloud. No network calls. Verify it yourself in Chrome DevTools.
You don't have to trust us. You can verify.
RedactPII makes exactly zero network requests during detection. No telemetry. No analytics. No phone-home. Open Chrome DevTools, go to the Network tab, and see for yourself. If you see a single outbound request during a paste, uninstall us immediately.
Our dual Small Language Models (0.22B parameters each) run entirely on your machine via MLX-based inference on Apple Silicon. The models ship with the extension. Your text is tokenized, analyzed, and discarded locally. It never serializes, never transmits, never persists beyond the active session.
Install. Use. That's it. The free tier requires no email, no sign-up, no registration. We can't track what we don't collect.
Our PII detection models are published with full model cards. The extension requests only the minimum Chrome permissions necessary. No <all_urls>. No background data collection. Review our permissions before you install.
We built RedactPII because we didn't trust cloud-based alternatives with our own code. We don't expect you to trust us either. We expect you to verify.
Names, emails, phone numbers, SSNs, credit cards, API keys, passwords, medical conditions, and 12 more. Dual specialized language models, not brittle regex rules.
Visual preview with color-coded highlighting. Accept the redaction or paste the original. Every detection shows you exactly what was found and why.
Catches what regex misses: "my social is four five six..." or "call John at his cell." Context-aware NER models understand natural language, not only patterns.
Warm inference completes in under two seconds for typical pastes (up to 5KB). Progressive UI feedback means you never stare at a blank screen.
ChatGPT, Claude, Gemini, Microsoft Copilot, and Perplexity. All included in the free tier. More platforms coming.
No cloud processing. No server-side anything. IndexedDB for local settings. Your clipboard contents never touch a network interface.
You paste code into ChatGPT dozens of times a day. Connection strings. Environment variables. Client codebases. Internal APIs. One slip and your AWS keys are in OpenAI's training data. RedactPII sits between your clipboard and the AI input field. It catches API keys, credentials, internal hostnames, and PII your colleagues' names are attached to—before any of it leaves your machine. No enterprise DLP contract. No IT approval. Install in 10 seconds, protected on the next paste.
You paste code into ChatGPT dozens of times a day. Connection strings. Environment variables. Client codebases. Internal APIs. One slip and your AWS keys are in OpenAI's training data. RedactPII sits between your clipboard and the AI input field. It catches API keys, credentials, internal hostnames, and PII your colleagues' names are attached to—before any of it leaves your machine. No enterprise DLP contract. No IT approval. Install in 10 seconds, protected on the next paste.
Bar associations in Florida, Texas, and Alaska have already issued AI guidance: using client data with ChatGPT may require informed consent. OpenAI retains chat logs even after deletion—and those logs can be subpoenaed. RedactPII automatically masks client names, case details, and identifying information before they reach any AI tool. Attorney-client privilege stays intact because the privileged information never leaves your browser.
66 percent of physicians now use AI tools—up from 38 percent in 2023. But ChatGPT is not HIPAA compliant without an Enterprise BAA that most practices don't have. Patient names, conditions, and dates in a single paste can trigger a reportable breach. RedactPII detects and masks patient names, medical conditions, dates of birth, and other PHI categories before they reach the AI interface. Protection happens on your device—no BAA with us required, because we never see the data.
Your clients' NDAs increasingly mention AI tool restrictions. You don't have a compliance team or an enterprise security stack. But you have five different clients with five different confidentiality requirements and one ChatGPT window. RedactPII gives you automatic protection across every client engagement. Names, company details, financial data, and proprietary information get caught before they reach the AI. No configuration. No per-client setup. It works.
Full PII detection on both tiers. Free isn't a demo—it's real protection.
$4.17 per month effective
After founding slots fill: $8 per month or $71 per year.
Founding Members lock in $50 per year permanently. Your rate never increases, even when standard pricing goes to $8 per month. Annual billing only. Cancel anytime.
Team plans ($14 per seat per month) launching later this year. Need something now? Email team@redactpii.com.
PII categories detected by on-device AI
network requests made during detection. Ever.
AI platforms protected from day one
You're probably careful most of the time. The problem is the one time you're not—the 2 a.m. debug session, the copy from the wrong terminal tab, the client document with a name buried on page 4. RedactPII catches the mistakes your attention doesn't. 77 percent of employees share sensitive data with AI tools, and most of them think they're being careful too.
Open Chrome DevTools. Click the Network tab. Paste something. Count the outbound requests from the RedactPII extension: zero. Our AI models ship with the extension and run entirely on your machine via MLX inference powered by Apple Silicon. There is no server to send data to. No API endpoint. No telemetry. The free tier doesn't even require an email address. You don't have to trust our promise—you can verify it in 30 seconds.
Detection takes under two seconds on the free tier and under 500 milliseconds on Pro. You'll see a preview modal with highlighted detections. One click to redact and paste, or one click to paste the original. In practice, it adds about three seconds to pastes that contain sensitive data and zero seconds to pastes that don't.
Click "Paste Original" to bypass the suggestion. Every detection shows you exactly what was flagged and why, so you can make an informed decision. Our dual SLM architecture targets more than 90 percent precision specifically to minimize false positives.
PasteGuard is a good project. It also requires self-hosting a local server, technical setup, and has no ongoing support. RedactPII installs in one click from the Chrome Web Store. The free tier includes all 20 PII categories and all five AI platforms—no server setup, no Docker, no config files. Pro adds unlimited pastes, faster detection (<500ms), comprehensive secrets scanning, and a local audit log.
20 categories across two specialized on-device language models: Person Name, Organization Name, Email Address, Phone Number, Street Address, Social Security Number, Credit Card Number, Banking Number, Personal ID, Other ID, Password, Secure Credential (API keys, tokens, private keys), Date, Date of Birth, Age, Gender, Nationality, Demographic Group, Religious Affiliation, and Medical Condition. All categories available on both Free and Pro.
The 1,000 Founding Members keep their $50 per year rate permanently. It never increases. After the slots fill (or at six months post-launch, whichever comes first), standard Pro pricing becomes $8 per month or $71 per year. If you're reading this and there are still slots available, this is the best price RedactPII Pro will ever be.
Install RedactPII in 10 seconds. Start catching sensitive data before it reaches the AI. Free, on-device, verifiable.
1,000 of 1,000 founding spots remaining. No account needed for free tier.
Not ready to install? Get notified when we launch new features.