Sluice
Join the waitlist
The privacy layer between your apps and every LLM

Use any LLM without sending private data.

Redact sensitive data before prompts leave your organization — then route the clean request to the best model.

Join the waitlist See how it works

Frontier models for your teams. Private data stays behind your boundary.

outbound prompt
# support_copilot › summarize_ticket
Customer [NAME_1] (SSN [SSN_1], [EMAIL_1], [PHONE_1]) is disputing a $1,240 charge on account [ACCT_1]. Summarize the issue and suggest next steps.
5 entities redacted PII PHI → provider: best match
Why AI adoption stalls

Your teams want AI. Your data can't be the price of using it.

It's not capability — it's exposure. Records get pasted into chat tools, documents into copilots, personal details into assistants. None of it malicious; all of it leaves your boundary.

Enterprises solve this with private deployments and per-vendor agreements. Most teams can't — so it becomes productivity or privacy. Sluice removes the trade-off.

A private AI gateway for your organization

Stop sensitive data before it reaches the model provider.

Sluice sits between your apps and the LLMs they call. Sensitive values become safe placeholders before a request leaves — then rehydrate inside your environment.

The model sees the shape of your request — never the private parts.

Inside your boundary
"…patient Dana R., DOB 03/14/77, MRN A-22817…"
Sluice  detect · redact · enforce policy
Sent to the model provider
"…patient [NAME_1], DOB [DOB_1], MRN [MRN_1]…"
Four steps, one gateway

Connect once. Every prompt gets the same treatment.

Step 01

Connect

Point your apps, chat tools, and copilots at Sluice. Existing integrations keep working.

Step 02

Detect & redact

Strip PII, PHI, and sensitive business data into safe placeholders before the prompt leaves.

Step 03

Route

The clean request goes to the best model by cost, speed, or policy — any provider, no raw data.

Step 04

Return

The response returns through Sluice, where placeholders rehydrate inside your environment.

What's in the gateway

Built for the teams accountable for the data.

PII & PHI redaction

Rules plus lightweight ML catch personal and health data before it leaves.

LLM provider routing

Route by cost, latency, or policy — across providers, one endpoint.

Policy-based controls

Rules per team, app, or use case: strictness, allow-lists, guardrails.

Audit logs & visibility

What was redacted, where it went, which policies applied — retention you control.

Prompt & response inspection

Compare sanitized prompt and rehydrated response to verify what left.

Optional local filtering

Where supported, detect closer to the source to minimize raw data earlier.

Placeholder mapping & rehydration

Reversible mappings keep reasoning intact; real values restore only inside.

Multi-provider support

Add, swap, or fail over between providers without rewriting your apps.

Developer-friendly API

One endpoint instead of each provider — redaction and routing in the path.

Admin dashboard

A control surface for security and compliance to manage policy and usage.

Where Sluice earns its place

One privacy layer, many workflows.

Support

Summarize and triage tickets without exposing customer records.

Health-adjacent

Cut PHI exposure in AI workflows that would otherwise send it to a third party.

Insurance & finance

Analyze claims and documents with account and personal data redacted first.

Internal copilots

Answer employee questions without leaking HR or customer data to external models.

SaaS teams

Ship AI features without sending raw user data to model vendors.

Agencies

Use LLMs across client data with policy-enforced privacy per engagement.

The honest trade-offs

A practical privacy layer — without giving up the best models.

Direct public LLM use Enterprise agreements Self-hosted models Sluice
Setup effort Lowest High — legal & procurement High — infra & ops Low — route through one gateway
Private data exposure High Reduced, per contract Lowest Reduced — redacted before it leaves
Access to frontier models Yes Yes, per vendor Often lags Yes — across providers
Cost profile Pay-per-use Expensive, vendor-specific High to operate A gateway over existing usage
Vendor lock-in Per tool Strong N/A Low — multi-provider
Privacy control Minimal Contractual Full, but you own it all Policy you enforce in the path

Easy but exposed. Strong but expensive. Controlled but hard to run. Sluice puts a practical privacy layer in front of the best models — without a separate deal per vendor.

Privacy by design — stated plainly

A strong protection layer. Not a silver bullet.

Data minimization

The safest data to send is none. Sluice removes it before the request leaves.

Policy enforcement

Redaction, allow-lists, and guardrails are rules you define and apply consistently.

Defense-in-depth

One layer beside your own access controls and policies — not a replacement.

Auditability

See what was redacted, where it went, and what was retained.

What we don't claim

Sluice helps reduce the chance sensitive data reaches a third-party model. No automated system catches everything, and it doesn't make you HIPAA compliant, SOC 2 certified, or legally compliant on its own.

It's a real, enforceable privacy control — we'd rather say that plainly than oversell it.

Drop-in by design

Drop-in API compatibility for AI apps.

Your apps call sluice instead of each provider. It redacts, applies policy, logs what you choose, picks a provider, and returns the response — all in the path.

your_app Sluice
Anthropic best match OpenAI Google Mistral

One endpoint in. Redact, route, return — apps don't change when routing does.

Stop private data before it leaves.

Give your teams access to powerful AI without giving every model provider your sensitive data.

We'll only email you about early access.