Is it safe to put company code into Cursor or Copilot?

Not by default. Whatever you paste or open gets sent to the AI provider's servers, including secrets and customer data. Emil sits between your tools and the model and catches API keys, credentials, customer data, and source code before they ever leave.

Can AI coding tools see my API keys and .env files?

Yes, whenever they end up in the files or prompts you send, which is the most common way secrets leak. Emil detects keys, tokens, passwords, and .env values and redacts them before the prompt reaches the model.

Does Emil slow down my AI?

No. Emil screens in the moment and hands the model a clean prompt, so you get the same responses at the same speed.

Does Emil store my prompts or my code?

No. Emil processes your text in memory and keeps only a short screening record (the decision, risk score, and a redacted preview), never the full content. Classification runs on Emil's own infrastructure, is never sent to a third-party model, and is never used for training.

Which tools does Emil work with?

Anything OpenAI-compatible: Cursor, Claude Code, Copilot, Lovable, v0, ChatGPT, Gemini, DeepSeek, Ollama, and self-hosted models. Point your tool at Emil instead of the provider, or use the browser extension if you don't write code.

Do I need to be technical to use it?

No. Developers change one line of config (the base URL). Everyone else uses the one-click browser extension that screens prompts before they reach the AI.

Solution

Redact PII before the AI ever sees it

Emil detects and masks personal data in both prompts and responses — so your team and your AI product can work with real documents without exposing the people in them.

Protect your team For developers

The exposure

Real documents are full of names, SSNs, and account numbers your AI doesn't need to see.
Once PII is in an AI provider's logs, it's a reportable exposure.
Manual redaction is slow, error-prone, and nobody does it consistently.

What Emil redacts

Social Security Numbers, with or without dashes
Credit card numbers (Luhn-validated) and bank account / routing numbers
Emails, phone numbers, and postal addresses
IP addresses and other identifiers

How redaction works

Each detected span is replaced with a [REDACTED] tag in place
The cleaned text is what reaches the AI — the original never leaves
Runs deterministically in sub-millisecond time, no network needed

Questions

Is the redaction reversible?

No. Emil replaces the detected span with a tag before the text leaves; the original sensitive value is never transmitted or stored, so there's nothing to reverse on the AI provider's side.

What PII types are supported?

SSNs (dashed or not), credit cards (Luhn-checked), bank account and routing numbers, emails, phone numbers, addresses, IPs, plus custom patterns you define.

Will it over-redact normal text?

Detectors are validated (e.g. Luhn for cards, structural rules for SSNs) to keep false positives low. In the warn-only browser extension the bar is intentionally cautious; the auto-redacting server path is tuned to be precise.

Does it redact the AI's response too?

Yes. When Emil fronts your AI product, it screens the model's output and redacts PII before the response reaches your user.

The exposure

What Emil redacts

How redaction works

Questions

Related solutions