Privacy API for Developers — MCP Server & REST

The Security Problem

🚨

MCP 8000+ Exposed

Claude's Model Context Protocol has 8000+ exposed servers. Agents can enumerate internal APIs without auth. Data exfiltration in seconds.

🔗

LangChain CVE-2025-68664

CVSS 9.3. Attacker-controlled LLM can execute arbitrary tool calls. Database queries, file access, network requests. No PII filtering.

🛡️

Zero Privacy by Default

LLMs don't understand PII. LangChain agents paste customer data. RAG systems upload contracts to Claude context. No redaction layer.

MCP Server (7 Tools)

Tool 1: /analyze

POST /mcp/analyze | { "text", "language" }

Detect 285+ PII entity types. Response: array of `{entity_type, value, start, end, score}`.

Tool 2: /anonymize

POST /mcp/anonymize | { "text", "method" }

Redact PII. Methods: mask (████), hash (SHA-256), encrypt (RSA-4096), remove.

Tool 3: /deanonymize

POST /mcp/deanonymize | { "text", "key" }

Decrypt reversible redactions. Authorized users only. Audit log per access.

Tool 4: /scan_file

POST /mcp/scan_file | { "file_content", "file_type" }

Scan PDF, DOCX, XLSX. Return redaction suggestions. Batch process 5000+ files.

Tool 5: /batch

POST /mcp/batch | { "texts": [...] }

Process 5000+ items in parallel. Returns all results in under 30 seconds.

Tool 6: /get_entities

GET /mcp/get_entities | ?language=en

List all 285+ entity types. Filterby language or domain.

Tool 7: /estimate

POST /mcp/estimate | { "text_length", "entities_count" }

Estimate token cost before processing. No charges for dry-run.

REST API Quick Start

curl -X POST https://anonym.legal/api/presidio/analyze \
  -H "Authorization: Bearer YOUR_API_KEY" \
  -H "Content-Type: application/json" \
  -d '{
    "text": "My SSN is 123-45-6789 and email is john@example.com",
    "language": "en"
  }'

# Response:
# {
#   "results": [
#     { "entity_type": "US_SSN", "start": 11, "end": 23, "score": 0.99 },
#     { "entity_type": "EMAIL_ADDRESS", "start": 38, "end": 56, "score": 0.99 }
#   ]
# }

Why Developers Choose This

⚡ Speed: Sub-200ms response. 48 languages. 285+ entity types. Faster than Presidio standalone.
🔐 Zero Cloud: No PII uploaded. Processed in-memory on your infrastructure. Compliant with GDPR, HIPAA, SOC 2.
📊 Flexible Auth: Bearer token, API key, OAuth 2.0. Works with LangChain, LlamaIndex, custom agents.
💰 Cost Predictable: Token-based pricing. No surprise bills. Batch pricing 50% cheaper.
📈 Enterprise Scale: 5000+ concurrent requests. Auto-scaling. Redundant endpoints globally.

SDKs & Libraries

🐍 Python SDK

pip install anonym-sdk

from anonym import Client
client = Client(api_key='...')
results = client.analyze(
  'SSN: 123-45-6789',
  language='en'
)

📘 Node.js SDK

npm install anonym-sdk

import { Client } from 'anonym-sdk';
const client = new Client({
  apiKey: '...'
});
const results = await client.analyze({
  text: 'SSN: 123-45-6789'
});

🔗 REST API

curl -X POST \
  https://anonym.legal/api/analyze \
  -H "Authorization: Bearer KEY" \
  -d '{"text":"SSN:123"}'

3 Lines of Code. 285+ Entity Types. Zero Data Retention.