Ironwright
● Stable v5.6.0-dev

Panoptes

Stop sensitive data from leaving your endpoints for AI tools.

Talk to IronwrightTechnical detail

The problem

Employees paste regulated data into AI assistants every day. Patient records, customer SSNs, API keys, and bank details flow out of your network into ChatGPT, Claude, Copilot, and 22 other consumer AI tools. Existing DLP catches email and browsers, but not the AI chat layer.

What it does, and who it is for

Panoptes runs on the endpoint and inspects prompts before they leave the device. It flags PHI, PII, financial data, and credentials across 25 plus AI services and 10 client platforms (browsers and IDEs). Detection happens locally; nothing crosses the network until you say it can.

  • CISOs and security teams in regulated industries
  • Compliance officers in healthcare, finance, legal, and government
  • IT administrators rolling out AI policy at scale
  • DLP and SIEM teams looking to close the AI blind spot

Proof at a glance

70+

Detection patterns

25+

AI services monitored

10

Client platforms (browsers + IDEs)

HIPAA, GDPR, PCI, SOX

Compliance coverage

Capabilities

Endpoint-local detection

Inspection runs in the browser extension or IDE plugin before the prompt leaves the device. No prompt content crosses the wire until you allow it.

Verified regex plus ML scoring

Pattern matches gated by a confidence model to keep false positives low. Tuned for the categories that actually carry compliance risk.

DLP and SIEM native

Drop-in feeds for Microsoft Purview, Symantec, Forcepoint, Digital Guardian, plus Splunk, Sentinel, Chronicle, QRadar, and Elastic. No custom glue code.

Identity attribution on Windows

AD and Entra ID user context attached to every alert (UPN, SID, domain) so investigations close in minutes, not days.

Wide AI surface

Consumer (ChatGPT, Claude, Gemini), enterprise (Copilot, Bedrock), developer (Cursor, Windsurf), and local LLMs. New services added on a rolling cadence.

Compliance and trust

Aligned with: HIPAA, GDPR, CCPA, PCI-DSS, FERPA, GLBA, SOX

  • Detection is endpoint-local; prompts do not leave the device on a flag
  • Pattern + ML scoring tuned to target false positive rate under 5%
  • Tenant isolation enforced end to end (multi-tenant deployments tested)
  • Alerting through your existing DLP and SIEM, no parallel pane of glass

How it deploys

Panoptes ships as a browser extension and IDE plugins. The optional central server gives you a multi-tenant dashboard for policy and alerting; deploy on your infrastructure or ours. SSO and RBAC ready for enterprise rollout.

What is coming next

  • Centralized policy management (Phase 5.4)
  • Expanded coverage of local LLM tooling
  • Additional SIEM connectors
Talk to Ironwright

See the technical detail