Product

Anonos Data Embassy®

Put your most sensitive data to work — everywhere it needs to go. One platform to power AI, analytics, and cross-border collaboration on protected data, without slowing the business or compromising trust.

What customers demand from data protectionand how Data Embassy® delivers

Show transcript

Enterprises tell us the same thing again and again: when it comes to protecting sensitive data, three demands have to be met at once.

Manage risk. The protection has to hold up to regulators, auditors, and internal privacy and security reviews — across jurisdictions and across the full life of the data.

Retain value. Protected data still has to be useful. Utility, fidelity, and scale can't collapse the moment controls are applied, or the analytics, AI, and collaboration use cases stop working.

Reduce cost. Time and manual effort are the hidden tax. Enterprises need automation, not another queue of privacy tickets and bespoke engineering work per project.

These demands come from three different owners inside the enterprise — privacy, cyber, and data — who historically pull in different directions. Data Embassy is designed to satisfy all three at the same time, so protected data can move safely without stalling the business.

Summary of the conversation with CRIF. Lightly edited for clarity.

What Data Embassy enables

Unlock sensitive data safely

Enable analytics, AI, and collaboration on protected data while preserving utility, governance, and controlled relinking.

Enforce privacy policies dynamically

Automate policy enforcement, disclosure controls, and access governance across workflows, users, and environments.

Reduce operational complexity

Minimize manual privacy reviews, governance overhead, and engineering effort with AI-assisted privacy intelligence.

Protect identifiers across workflows

Protect sensitive identifiers across transactional and operational workflows, issuing different de-identifiers per context and time period so downstream systems never see the underlying values.

How It Works

Data protection powered by advanced tokenization

Data Embassy creates high-fidelity tokenized data products with embedded, policy-controlled protection tailored to each use case. Unlike static masking and irreversible anonymization, Data Embassy preserves data utility while enabling governed access, controlled disclosure, and privacy-preserving analytics across environments.

  • Embedded protectionProtection travels with the data, enabling governed use across systems, users, and environments.
  • Use-case specificProtection policies adapt dynamically based on context, user roles, and application requirements.
  • Extensively patentedBuilt on a foundational patent portfolio covering dynamic de-identification, controlled relinking, and policy-driven disclosure.
  • PortableData products move securely across teams, clouds, partners, and jurisdictions without losing governance controls.
Data Embassy workflow: Create Projects, Connect Data Sources, Define and Run Transformations, Assess Results, Export De-identified Data, Re-Link

Platform or SDK: Tailored to your use case

Platform
Data Embassy platform interface showing configuration, data utility at 99%, and privacy score at 98%

A unified interface for full-spectrum data protection — manage policies, create tokenized data products, and monitor compliance from a single dashboard.

Tokenization API
Minimal Tokenization API infographic with a braces icon

A programmable REST API to tokenize and re-link sensitive data on demand — embed policy-driven protection directly into applications, services, and event streams.

SDK
Data Embassy SDK showing terminal commands and Python code for data tokenization

Integrate tokenization and synthetic data generation directly into your existing data pipelines with built-in PII detection and differential privacy.

Platform

Data Embassy Platform

Unified interface for full-spectrum data protection. Manage policies, create tokenized data products, and monitor compliance from a single dashboard deployed on your infrastructure. It generates and manages distinct identifiers, keeps a controlled re-linking store, and enforces disclosure policy at the edge.

  • Full-spectrum data protectionTokenization, synthetic data, masking, and redaction in a single tool
  • Policy management dashboardDefine, manage, and enforce data protection policies across your organization
  • Real-time privacy assessmentsContinuous monitoring of privacy scores and data utility metrics
  • AI-enabled Privacy AdvisorAutomated recommendations for protection levels and policy configuration
  • On-premise deploymentDeployed entirely within your infrastructure
Data Embassy platform interface showing configuration, data utility at 99%, and privacy score at 98%
Tokenization API

Data Embassy Tokenization API

A programmable REST API that brings advanced tokenization into any application, pipeline, or service — without moving data out of your environment. Tokenize fields on the fly, enforce policy at the edge, and re-link results only for authorized callers.

  • Tokenize and re-link on demandSimple POST endpoints to tokenize fields, batches, or streams — and controlled re-linking for authorized callers.
  • Policy enforced at the edgeEvery request is evaluated against centrally managed policies for role, purpose, and jurisdiction.
  • Format-preserving tokensKeep types, lengths, and referential integrity intact so downstream systems keep working unchanged.
  • Built for low-latency workloadsDesigned for high-throughput applications, real-time event streams, and inline AI inference.
  • Full audit trailEvery tokenize, detokenize, and access decision is logged for compliance and forensics.
Minimal Tokenization API infographic with a braces icon
SDK

Data Embassy SDK

terminal
# Generate DP-protected synthetic data$ dataembassy synthesize \ --input data.csv \ --profile dp \ --output synthetic.csv# Tokenize a dataset$ dataembassy tokenize \ --input data.csv \ --policy production.yaml \ --output protected.csv# Evaluate data utility$ dataembassy evaluate \ --original data.csv \ --synthetic synthetic.csv ┌─────────────────┬──────────┐ │ Evaluator │ Result │ ├─────────────────┼──────────┤ │ Singling Out │ PASS │ │ Linkability │ PASS │ │ Inference │ PASS │ └─────────────────┴──────────┘✓ Overall data utility: 96%✓ Privacy score: 98%
Synthetic data generationGenerate privacy-preserving synthetic datasets that maintain the statistical properties of your original data
Automatic PII detectionAuto-detect 50+ PII types including names, emails, credit cards, IBANs, and SSNs — plus custom configurations for your own sensitive fields
Multi-table synthesisPreserve referential integrity across related tables with automatic relationship detection
Unstructured data sanitizationProtect sensitive data in PDFs, Word docs, Excel files, JSON, and XML
Differential privacyApply mathematically rigorous privacy guarantees during data generation
Built-in evaluationsAssess data quality and privacy with built-in utility and re-identification risk evaluations

Business Applications

Cloud migration & internal data sharing
AI/ML model training with protected data
Test data management
Third-party data sharing & monetization
Data retention & regulatory compliance
Payments & fraud

GenAI and LLM Protection

Enable the full benefits of AI without the risk of exposing trade secrets, personal data, or intellectual property.

1

Protect before the LLM

Sensitive data in your prompts is automatically protected before it ever reaches the language model.

2

LLM processes safely

The language model works with tokenized data — reasoning and generating responses without ever seeing the original sensitive information.

3

Relink in the response

The protected response is securely re-linked to the original data on your side, delivering a useful answer without the data ever leaving your control.

Protect trade secrets & IP

Keep proprietary information, financial data, and intellectual property secure in highly untrusted AI environments — without limiting what your teams can ask.

Unlock desired GenAI use cases

Reconcile data protection and utility. Enable departments across your organization to leverage GenAI for summarization, analysis, and content generation.

On-premise deployment

Deploy within your own infrastructure. No data leaves your environment — tokenization and relinking happen entirely on your side.

Scalable & customizable

Scale to enterprise-level usage across teams and use cases. Customize tokenization policies to match your organization's specific data protection requirements.

What makes Anonos different — in 90 seconds

Show transcript

Anonos is a unique opportunity in the market. It's the combination of multiple privacy technologies, which no large company should be without.

Using Anonos allows these kind of companies to unlock all of their data assets, and if you've been following the news for the past few years, you know that using data is key to driving value. What's really special about what we offer is that it's an end-to-end platform.

So there are a lot of point solutions for privacy, which are fine if you're working in a lab environment, but if you're working in a production enterprise environment where you need to be able to get data to stakeholders, regardless of the use case.

The way that works is Anonos has under the hood a whole range of privacy technologies, which can be combined in a myriad of ways to bring a safe data set at the end, regardless of that use case.

And what that means for our customers is that they can feel safe as privacy engineers or as data scientists that the data they're generating is compliant, but still has a lot of business value.