PII Redaction

PII redaction is the automated process of detecting and removing or replacing personally identifiable information from text before it is processed by an AI model. In the context of AI governance, it's the single most important control — the difference between compliance and a ₹250 crore penalty.

Unlike traditional data masking in databases, AI PII redaction operates on unstructured text in real-time. Customer support messages, insurance claims, medical records, loan applications — any text that flows through an AI system may contain personal identifiers that must be stripped before reaching external model providers.

The challenge is both breadth and speed. Indian PII encompasses over a dozen identifier types, each with unique formats and validation rules. Detection has to stay inside a buyer-defensible latency budget, because adding noticeable gateway overhead to AI responses is not acceptable in production.

Production PII detection uses a pipeline of increasingly sophisticated checks. Each layer filters candidates, reducing false positives while maintaining high recall:

Layer 1 — Pattern Extraction: Optimized regex patterns identify candidate sequences for each PII type. This is fast but produces false positives.

Layer 2 — Format Validation: Structural rules validate candidates. Aadhaar uses Verhoeff checksum, PAN validates character positions, IFSC checks bank code registries.

Layer 3 — Contextual Analysis: Surrounding text is analyzed for identity-related keywords. A 12-digit number near the word 'Aadhaar' gets higher confidence than one in a math equation.

Layer 4 — ML Classification (optional): For ambiguous cases, a lightweight classifier makes the final determination based on features from all previous layers.

This architecture achieves 99%+ detection while keeping the production gateway overhead in the sub-100ms P95 range because most candidates are resolved at layers 1-2 without needing expensive ML inference.

PII redaction fails when it's implemented as a library that developers must remember to call. The gateway pattern solves this by intercepting all AI traffic at the network level.

Every request to an LLM provider passes through the gateway regardless of which application, team, or SDK initiated it. This provides universal enforcement — no developer can accidentally bypass PII controls by using a direct API call.

CrewCheck's gateway adds PII scanning to the request path transparently. Applications don't need code changes. The gateway detects PII, applies masking, forwards the cleaned request, scans the response, and returns it — with current production overhead measured at sub-100ms P95, excluding provider time.

India's linguistic diversity creates unique challenges for PII detection. Aadhaar numbers might appear in Devanagari numerals (२३४५ ६७८९ ०१२३), names in Tamil script, or addresses mixing Hindi and English.

Effective multilingual PII detection requires: script-aware tokenization that handles Devanagari, Tamil, Telugu, and Bengali numerals; transliteration normalization for Hinglish text; language-specific context keywords (e.g., 'आधार' in Hindi); and cross-script entity linking.

CrewCheck's detection pipeline normalizes all text to a canonical form before pattern matching, then applies script-specific validators for each PII type. This handles code-mixed text where a single sentence might contain English, Hindi, and numeric identifiers.

Every PII detection event must generate compliance evidence. This isn't just logging — it's creating tamper-evident records that prove to regulators that your AI systems consistently protect personal data.

A complete audit record includes: what was detected (PII type and confidence score), what action was taken (masked, blocked, or flagged), which application triggered the detection, which model provider would have received the data, and a timestamp with cryptographic integrity.

Critically, the audit trail must never contain the actual PII value. You're proving that masking happened, not creating another copy of the sensitive data.