The PII Redaction Tool
Redact or mask personally identifiable information in text so an agent can share, log, or process content safely — replacing sensitive values with tokens while keeping the text usable.
Autonomy without guardrails is a liability
An agent that can act can also leak PII, expose a secret, exceed permissions, or run up cost — silently. Putting agents in production means baking in detection, redaction, permission checks, and traceability, or the first incident ends the program.
Data leakage
PII and secrets slip into prompts, logs, and outputs.
Over-permissioned
Agents act beyond what their role should allow.
No accountability
Without a trace, you can’t explain what an agent did or why.
Runaway cost
Unbounded tool use burns budget with no early warning.
PII Redaction, without the risk
Capability
What it does
Strip personal data out of text automatically.
it redacts or masks personally identifiable information in text, replacing it with safe placeholders.
Assignable to any agent
How it works
Predictable, inspectable behavior
Designed to be reliable.
redaction runs inside your perimeter and preserves structure with reversible or irreversible masking, so content stays usable while sensitive values are protected.
Every call logged
Governance
Private, governed, on-premise
Runs inside your perimeter.
These controls run inside your perimeter and feed a single audit trail, so detection, redaction, permission checks, and cost limits are enforced locally — the governance layer that makes agent autonomy defensible to security and compliance.
Per-tenant, logged
Parameters
The pii_redact tool accepts these inputs when an agent calls it. Required inputs are flagged.
default: mask Optional How to replace matches. masktokenremove
How the PII Redaction tool works in practice
PII Redaction is a security, governance & ops tool you assign to a VDF AI agent. It redacts or masks personally identifiable information in text, replacing it with safe placeholders. Its hallmarks — Redact, Mask, Reversible — let an agent rely on it as a dependable step in a larger task rather than a brittle one-off script.
Under the hood, redaction runs inside your perimeter and preserves structure with reversible or irreversible masking, so content stays usable while sensitive values are protected. It expects text as required input, so calls are explicit and easy to audit. Every call is scoped to the requesting tenant and written to an audit log, so the capability is safe to run inside a regulated, on-premise environment — the same governance model behind every VDF AI tool.
Teams reach for PII Redaction when they need to handle safe prompts, shareable data, and compliant logs. It rarely works alone — pair it with PII Detection, Secrets Scan, and Vector Delete by Repository to build a complete, governed workflow, then compose those steps into an on-premise VDF AI Network.
Where PII Redaction pays back
Safe prompts
Strip PII before sending text to a model.
Shareable data
Anonymize records before distribution.
Compliant logs
Redact sensitive values from logs.
Training data
Clean datasets before fine-tuning.
Assigned to agents, orchestrated as networks
On VDF AI, an industry’s use cases map to agents, and you assign tools like this one to those agents. Compose multiple agents into a governed, on-premise network.
What changes after you assign it
Questions about the PII Redaction tool
What is the PII Redaction tool?
It redacts or masks personally identifiable information in text, replacing it with safe placeholders. Assigned to a VDF AI agent, it runs under role-based policy with full audit logging so the capability is safe to use in production.
Can redaction be reversed?
With the token strategy, masked values can be mapped back under control; remove and mask are irreversible.
Does it keep text usable?
Yes. Structure is preserved so redacted text remains readable and processable.
What inputs does the PII Redaction tool need?
It requires text, and optionally accepts entity_types and strategy. Each parameter is validated when an agent calls the tool, and the full call is logged for audit.
Which tools pair well with PII Redaction?
PII Redaction is commonly assigned alongside PII Detection, Secrets Scan, and Vector Delete by Repository. On VDF AI you compose several tools and agents into a single governed, on-premise network.
Does it run on-premise?
Yes. Like every VDF AI tool, it can run on-premise or in your sovereign cloud, scoped per user and audit-logged, so your data never leaves your perimeter.
How do agents use it?
You assign the tool to an agent under a role-based policy; the agent calls it as one step in a task, and several agents and tools can be orchestrated together as a governed VDF AI Network.
Assign PII Redaction to these agents
These VDF AI agents can be assigned this tool. Open an agent to see the full toolkit it can run.
Tools that work well alongside this one
Where this tool delivers value
Put PII Redaction to work
See the PII Redaction tool assigned to an agent and orchestrated in a governed, on-premise network.