DATACENDIA

The Defensible AI Platform

CendiaGateway™ — AI Governance Control Plane

See and Control Every AI Interaction in Your Organization

A reverse proxy for enterprise AI traffic. Every prompt scanned for PII. Every interaction signed with cryptographic proof. Deploy in 30 minutes. No employee behavior change required.

Request a Technical Briefing View on GitHub

The Problem You Have Right Now

Shadow AI

75% of employees use AI at work

Most won't admit it. You have no visibility into what data they're sending to external AI models. You can't answer a regulator's question about your AI usage.

Data Leakage

PII is being sent to AI models

Social security numbers, patient data, financial records, source code. Once it reaches an external model, you've lost control. In 2023, Samsung engineers pasted proprietary semiconductor code into ChatGPT — the company only discovered it after an employee report.

No Audit Trail

Zero evidence of AI governance

When a regulator asks "How is your organization governing AI usage?" — what do you hand them? Email threads? Meeting notes? Nothing?

Current Options Fail

Ban AI? Employees use it anyway.

Banning AI pushes usage to personal devices outside your perimeter. Approving specific tools without monitoring gives you compliance theater, not compliance.

One Proxy. Full Governance.

Route AI traffic through a single control point. Employees use their tools normally. You see everything.

Employee → CendiaGateway → OpenAI / Anthropic / Google / Ollama ↓ PII Detection → Policy Engine → DCII Signing → Audit Ledger ↓ SSN detected → BLOCKED Email detected → REDACTED Clean prompt → FORWARDED + SIGNED

PII Detection

Core high-risk PII classes scanned on every prompt — SSN, credit card, email, phone, IP, DOB, medical records, bank accounts, passport, driver's license — with an extensible rule engine for custom patterns.

Policy Enforcement

Block, redact, warn, or allow — per department, per user, per model. Custom keyword blocking. Max prompt length limits.

Cryptographic Proof

Every interaction signed with SHA-256 + HMAC. Merkle tree integrity. Tamper-evident. The same evidence infrastructure used by our Decision Council.

Cost Attribution

Track AI spend by department, team, project, and user. Per-model pricing for OpenAI, Anthropic, Google. Know exactly what AI costs you.

Sovereign Deployment

Self-hosted. Your infrastructure. Your keys. Air-gap capable. No cloud dependency. Data never leaves your perimeter.

30-Minute Deploy

For API-based model usage: change one environment variable. Point OPENAI_API_BASE at the gateway. Done. Browser-based AI tools require additional configuration (extension or network proxy).

Why Not [Existing Tool]?

The honest comparison.

Capability Microsoft Purview Zscaler / Netskope Helicone / LiteLLM CendiaGateway
AI traffic monitoring Yes (Azure only) Partial Yes Yes (any provider)
PII detection in prompts Yes (deep DLP) Limited No Yes (extensible)
Policy enforcement Yes Yes No Yes
Cryptographic evidence packets Not available Not available Not available SHA-256 + HMAC + Merkle
Signed compliance artifact Not available Not available Not available AI Manifestâ„¢
Self-hosted / sovereign No (Azure) No (SaaS) Yes Yes (air-gap capable)
Open-source No No Yes Yes (Apache 2.0)
AI decision governance Not focus Not focus Not focus Yes (The Council)

Deploy in 30 Minutes

For API-based AI usage (developer tools, internal apps, Copilot integrations) — one environment variable change.

# Before — employees hit OpenAI directly, zero governance OPENAI_API_BASE=https://api.openai.com # After — every interaction governed, signed, and auditable OPENAI_API_BASE=https://gateway.yourcompany.com/api/v1/gateway

The AI Manifestâ„¢

The compliance artifact a CISO hands to an auditor.

What's Inside

See Your Organization's AI Usage for the First Time

30-minute technical briefing. We'll show you the gateway, the PII scanner, and the AI Manifest — using your own sample data.

Request a Technical Briefing Email sales@datacendia.com