// DATA SHIELD

Sensitive data never leaves the perimeter.

Every call to an external language model is a data step through someone elses infrastructure. For enterprise systems holding sensitive information, that is a regulatory and competitive risk.

Data Shield is the IRIS layer that intercepts every data step toward external components: it detects sensitive information, masks it with reversible tokens before it leaves, and reconstructs the response with the real data only inside the client perimeter.

PERIMETRO CLIENTEDatos sensiblesIRIS coreDATA SHIELDdetectartokenizarreconstruirEXTERNOLLM externotokens
// SOVEREIGNTY

Deployment options

Private cloud per client

Dedicated instance with network and storage isolation per client.

On-premise

Client-owned server. ALMA is the packaged variant for this case.

Air-gapped edge

Physical device with no external connection. Privacy-Box case for cognitive residential.

// COMPLIANCE

Aligned with global regulatory frameworks

AR · Argentina
Ley 25.326

Personal Data Protection. Private deployment in Argentina with reproducible audit trail.

US · Estados Unidos
HIPAA / CCPA / GLBA / FERPA

Health, consumer privacy, financial and educational data. Data Shield intercepts PII before any outbound call.

EU · Europa
GDPR

Data subject rights, minimization and auditability by design.

BR · Brasil
LGPD

Personal data protection aligned with GDPR.

MX · México
LFPDPPP

Personal data protection held by private parties.

See compliance detail

Frequently asked

No. Data Shield replaces sensitive data with reversible tokens before any external call. Real data only exists inside the perimeter.