The category: keyboard-edge protection
Enterprise DLP scans after data leaves your keyboard. Veil sits at the edge — catching API keys, credentials, and PII
in Outlook, Gmail, and AI chat before they reach the pipeline. Encrypt locally, send as normal mail with
[redacted] or team tokens. Plaintext never required on Goldspire servers.
Purview, Nightfall, and Strac need your data in flight. Veil encrypts at the keyboard — secrets never reach mail servers or LLM APIs in plaintext.
[redacted] and [veil:vt_…] look like ordinary email. Recipients click to unlock in-thread — or use the hosted unlock page with no install.
Copilot shows what matched (e.g. sk-…x4K9) before you act. Weekly stats, SIEM metadata, and admin dashboards — without reading message content.
Veil copilot catches secrets in compose, forms, and AI chat — quietly on signup pages.
One click replaces sensitive text with [redacted] or a team token inline.
Email and forms look ordinary. Recipients unlock in place with Veil or your hosted link.
Policy packs, SIEM export, and admin console — without reading message content.
Veil is listed in the Chrome and Edge stores worldwide. Detection runs in your browser — copilot sees paste and typing locally, not on a regional server.
We validate country-specific formats where standards exist, and flag labeled or high-confidence patterns everywhere else. Policy packs map detections to GDPR, HIPAA, PCI DSS, and SOC 2 context before you send.
Credit cards (Luhn), IBANs with check digits, SWIFT/BIC, EU VAT (AT, DE, FR, GB, IE, NL), US EIN patterns, bank routing.
Labeled MRNs, UK NHS (Mod-11), US SSN/ITIN, Irish PPS, UK NINO, Canadian SIN, Australian TFN/Medicare, Singapore NRIC, Indian Aadhaar, French INSEE, Dutch BSN, Brazilian CPF, Hong Kong HKID, NZ IRD, Nordic personnummer/CPR, Mexican CURP, Japanese My Number, Korean RRN, Belgian/Taiwan/SA IDs, passports, licences.
API keys (OpenAI, Anthropic, Stripe, AWS, GitHub, Slack, SendGrid, Supabase, Twilio, Shopify, and more), JWTs, PEM private keys, database connection strings, passwords, emails, phone numbers, internal ticket refs — across mail, forms, and AI chat surfaces.
Personal and one-time messages include a hosted unlock page. Recipients open the link, enter the passphrase you shared separately, and read the secret in their browser — no install required.
Team tokens and in-thread unlock require the Veil extension for org members.
IT can deploy via Chrome or Edge policy. Team cloud is billed annually per seat — card required after the trial.
IT can deploy via Chrome or Edge policy. Team cloud is free during early access.