HOW IT WORKS

The AI Gateway
In Action

One gateway between your workforce and every AI provider. Tenlines authenticates users, scrubs sensitive data from prompts, enforces your organization's data handling policies, and logs every interaction for compliance.

Whether your team uses ChatGPT, Claude, Copilot, or any other AI tool, every request flows through Tenlines before reaching the provider. Employees don't change how they work — protection happens transparently in the background.

REQUEST FLOW

YOUR MACHINE
Your Teammakes AI request
T
Local Proxyencrypted token mappings
TLS encrypted
TENLINES CLOUD — ENCRYPTED
Managed Scrubbinglogs encrypted at rest
Secure Processing
AI Providerreceives clean data onlyNo secrets. No PII.

Three Layers of Protection

Every request passes through all three layers before reaching any AI provider. Together, they give your organization complete control over what data leaves your network.

Data Protection

Automatically detect and protect PII, API keys, and proprietary code before it reaches any AI provider.

Access Control

Set policies once. Tenlines enforces them across every AI tool your team uses—no manual review needed.

Full Visibility

Complete audit trail of every AI interaction. See who sent what, when, and to which model.

How the Request Pipeline Works

When an employee sends a prompt to any AI tool, the request first hits the Tenlines gateway. The gateway inspects the full prompt body for personally identifiable information (PII) such as names, email addresses, phone numbers, social security numbers, and credit card numbers. It also detects API keys, authentication tokens, and other credentials that could cause a security incident if leaked.

Detected sensitive data is handled according to your organization's policy. You can redact it entirely — replacing values with safe placeholders like [EMAIL_REDACTED]. You can tokenize it — swapping real values for reversible tokens so AI responses can be de-tokenized back to the original. Or you can encrypt it with AES-256-GCM, where only your organization holds the decryption key.

Beyond PII, Tenlines also checks prompts against your registered proprietary code. Using semantic embedding similarity, it detects when employees paste source code, internal documentation, or trade secrets that should never reach an external AI provider.

After scrubbing, the clean request is forwarded to the AI provider. The response streams back through the gateway, where it can be de-tokenized or decrypted before reaching the employee. The entire interaction — including what was detected, what action was taken, and which user initiated it — is written to an audit log.

Works With Every AI Provider

One gateway for all your AI tools. No SDK changes required.

Tenlines operates as both a reverse proxy for API-based tools (Claude API, OpenAI SDK, Claude Code CLI) and a forward MITM proxy for browser-based tools (ChatGPT, Claude.ai). This means it covers both developers using AI through code and non-technical employees using AI through web interfaces — all with the same policies and audit trail.

ChatGPT logo

ChatGPT

Full support
Claude logo

Claude

Full support
SOONGitHub Copilot logo

GitHub Copilot

Coming soon
SOONGemini logo

Gemini

Coming soon

How Your Data Is Protected

Tenlines sends your data to our secure infrastructure for PII detection and scrubbing before forwarding the cleaned version to AI providers. Your original, unredacted data is never persisted — scrubbed audit logs are encrypted at rest for compliance visibility. Token mappings are encrypted and stored in AWS for long-running conversation persistence.

Ready to secure your AI usage?

Be the first to protect your AI workflows. We'll notify you when we launch.

Join WaitlistRead Manifesto