ZeroShare Gateway is an enterprise AI security gateway that prevents sensitive data leakage when your organization uses AI services like ChatGPT, GitHub Copilot, Claude, and other generative AI tools. It works as a transparent proxy that scans all traffic for PII (Personally Identifiable Information) and secrets, blocking or redacting them before they reach external AI services.
Product Overview
ZeroShare Gateway sits between your users and AI services as a transparent proxy. It uses Microsoft Presidio and regex patterns to detect PII (emails, SSNs, credit cards, etc.) and secrets (API keys, passwords, credentials). When sensitive data is detected, it can be blocked, redacted, or flagged for review before reaching the AI service.
ZeroShare Gateway supports all major AI services including OpenAI ChatGPT and GPT-4, Anthropic Claude, Google Bard and Gemini, Microsoft Copilot, GitHub Copilot, Amazon Bedrock, Cohere, and any custom or self-hosted AI models accessible via HTTP/HTTPS.
Yes. ZeroShare Gateway can be configured to inspect traffic to any HTTP/HTTPS endpoint, including self-hosted LLMs like Llama, Mistral, or private ChatGPT deployments. This is useful for organizations that want to protect data even when using internal AI services.
Technical
ZeroShare Gateway adds minimal latency -- less than 5 milliseconds overhead on average. The gateway uses streaming pass-through technology, so users see AI responses in real-time without noticeable delay. Performance is optimized for high-throughput enterprise deployments.
ZeroShare Gateway offers three deployment options: 1) On-Premise using Docker containers or Kubernetes, 2) Private Cloud deployment on AWS, Azure, or GCP with customer-controlled infrastructure, and 3) AWS Marketplace for one-click deployment. All options support high availability configurations.
No. ZeroShare Gateway is a transparent proxy requiring zero code changes to your applications. Simply configure your network to route AI traffic through the gateway using standard proxy settings (HTTP_PROXY/HTTPS_PROXY environment variables), browser extensions, or network-level routing.
When properly deployed with network controls (firewall rules, PAC files, or DNS configuration), bypassing the gateway is not possible. Enterprise tier includes bypass detection alerting that notifies security teams if users attempt to access AI services directly.
No. ZeroShare Gateway is designed for high availability with active-active clustering. Multiple gateway instances can run simultaneously with automatic failover. Enterprise tier customers can discuss custom SLA terms.
Security & Privacy
No. ZeroShare Gateway is a pass-through proxy that inspects data in memory only. Your data is never stored on the gateway. Only metadata (blocked/allowed status, detection type, timestamp) is logged for audit purposes. This design ensures your sensitive data never leaves your control.
ZeroShare Gateway detects dozens of PII types using Microsoft Presidio, including: email addresses, phone numbers (international formats), Social Security Numbers (SSN), credit card numbers, bank account numbers, passport numbers, driver license numbers, IP addresses, physical addresses, medical record numbers, dates of birth, national ID numbers, and tax identification numbers.
ZeroShare Gateway detects many secret patterns including: AWS access keys and secret keys, Google Cloud service account keys, Azure connection strings, GitHub tokens, Slack tokens, Stripe API keys, database connection strings (PostgreSQL, MySQL, MongoDB), JWT tokens, SSH private keys, OAuth tokens, and generic API key patterns.
When sensitive data is detected, you can configure multiple actions: block the entire request, automatically redact the sensitive portions, send an alert to your security team, log the incident for audit purposes, or allow the request with a warning. Actions can be configured per data type, user, or group.
Compliance
ZeroShare Gateway is designed with SOC 2 requirements in mind. SOC 2 Type I is currently in progress, with Type II planned to follow. Our architecture includes comprehensive audit logging, access controls, encryption, and security monitoring aligned with SOC 2 Trust Service Criteria. Contact us for our current security documentation and certification timeline.
ZeroShare Gateway includes features designed to support GDPR compliance: PII detection for EU data patterns, support for data subject rights (access, erasure), data minimization by design (configurable data retention), and complete audit trails. Note: Your organization is responsible for overall GDPR compliance; we provide tools to help.
ZeroShare Gateway includes features designed to support HIPAA compliance: PHI detection and protection, comprehensive audit logging with configurable retention, encryption at rest and in transit. We can provide Business Associate Agreements (BAA) for healthcare customers. Note: Your organization is responsible for overall HIPAA compliance; we provide technical safeguards to help.
ZeroShare Gateway helps protect cardholder data by detecting and blocking credit card numbers, CVVs, and other payment data before it reaches AI services. We provide audit trails for compliance reporting. Note: PCI DSS compliance is your organization's responsibility; we provide technical controls to prevent accidental data exposure.
Pricing
ZeroShare Gateway offers four tiers: Free (up to 5 users), Team ($499/month for up to 25 users), Business ($1,499/month for up to 100 users), and Enterprise (custom pricing with unlimited users). All paid plans include a 14-day free trial. Available on AWS Marketplace for consolidated billing.
Yes. The Free tier includes up to 5 users, full PII detection, and secrets blocking. A credit card is required for all tiers (including free) to verify identity and prevent abuse -- the free tier is never charged. Get your free license key at deployzeroshare.com/pricing. Upgrade to Team, Business, or Enterprise when you need more capacity or features.
ZeroShare Gateway accepts credit cards for monthly subscriptions, ACH/wire transfer for annual contracts, and is available through AWS Marketplace with consolidated AWS billing. Enterprise customers can negotiate custom payment terms.
Getting Started
Getting started is easy: 1) Visit deployzeroshare.com/pricing to choose a plan, 2) Deploy via AWS Marketplace (one-click) or download for on-premise installation, 3) Configure your network to route AI traffic through the gateway, 4) Access the dashboard to monitor activity and customize rules.
AWS Marketplace deployment takes approximately 15 minutes for a basic setup. On-premise deployment with Kubernetes typically takes 1-2 hours including configuration. Enterprise deployments with custom integrations are typically completed within 1-2 weeks with dedicated support.
Yes. All customers receive access to comprehensive documentation and video tutorials. Professional tier includes email-based onboarding support. Enterprise tier includes dedicated onboarding sessions, custom training for security teams, and ongoing customer success management.
Support
Support varies by tier: Free tier has community support via documentation and forums; Team tier includes email support with 24-hour response time; Enterprise tier includes dedicated support with 4-hour response SLA, phone support, and a dedicated customer success manager.
You can reach support through: the support portal at deployzeroshare.com/support, email at support@deployzeroshare.com, or for Enterprise customers, direct phone line and Slack channel access. Documentation is available at deployzeroshare.com/docs.