GitHunt
PR

privacyshield-ai/privacy-firewall

A local AI-powered DLP solution

chrome-extensiondlpllmlocal-firstprivacypythonsecurity

PrivacyFirewall Logo

PrivacyFirewall

๐Ÿ‘‹ If you're trying PrivacyFirewall, please star the repo!

It helps others discover the project and motivates development.
Takes 2 seconds โ†’ โญ (top right)

Stop AI Data Leaks Before They Happen
100% Local โ€ข Zero Server โ€ข Full Control

Chrome Extension ONNX Runtime 100% Local MIT License

PrivacyFirewall Demo

The Problem

Every day, sensitive data gets leaked to AI chatbots:

  • ๐Ÿ“ง Customer emails pasted into ChatGPT for summarization
  • ๐Ÿ”‘ API keys accidentally included in code snippets
  • ๐Ÿ‘ค Employee names shared in meeting notes
  • ๐Ÿ’ณ Credit card numbers copied from support tickets
  • ๐Ÿ  Home addresses in shipping data analysis

Traditional DLP tools don't protect AI chat interfaces. PrivacyFirewall does.

The Solution

PrivacyFirewall intercepts sensitive data before it reaches AI tools โ€” running entirely in your browser with no external servers.

Key Features

Feature Description
๐Ÿ›ก๏ธ Paste Protection Blocks sensitive pastes with a confirmation modal
โŒจ๏ธ Real-time Typing Detection Warns as you type sensitive data
๐Ÿง  Local AI Detection BERT NER model runs in-browser via ONNX/WASM
โš™๏ธ Configurable Rules Enable/disable specific PII types, set block vs warn
๐ŸŒ Site Management Protect ChatGPT, Claude, Gemini, Copilot, and more
๐Ÿ”’ Zero Data Transmission Nothing ever leaves your machine

How It Works

graph TD
    A[User Pastes/Types Text] -->|Intercept| B(Content Script)
    B -->|Layer 1| C{Regex Scan}
    C -->|Match Found| D{Block or Warn?}
    D -->|Block| E[๐Ÿ›‘ Show Modal]
    D -->|Warn| F[โš ๏ธ Show Banner]
    C -->|No Match| G{AI Engine Ready?}
    G -->|Yes| H[ONNX Model in Browser]
    H -->|Entities Found| D
    H -->|Clean| I[โœ… Allow]
    G -->|No| I

    style E fill:#dc2626,color:#fff
    style F fill:#f59e0b,color:#fff
    style I fill:#22c55e,color:#fff
Loading

Two-Layer Protection

  1. Instant Regex Layer โ€” Catches obvious patterns (emails, credit cards, API keys) in milliseconds
  2. AI Layer โ€” BERT Named Entity Recognition detects names, organizations, and locations that regex misses

Both layers run 100% locally in your browser. No Python server. No API calls. No cloud.

Quick Start

Option 1: Download & Install (No Code Required)

Perfect for trying it out โ€” takes 30 seconds

  1. Download the latest release:

    Download Extension

  2. Unzip the downloaded file

  3. Install in Chrome:

    • Go to chrome://extensions
    • Enable Developer mode (toggle in top right)
    • Click Load unpacked
    • Select the unzipped folder

  4. Done! Visit ChatGPT and try pasting:

    Contact john.doe@company.com or call 555-123-4567

Option 2: Build from Source (For Developers)

Click to expand developer instructions

  1. Clone the repository

    git clone https://github.com/ArnabKar/privacy-firewall.git
cd privacy-firewall

  2. Build the extension

    cd src/extension
npm install
node build.js

  3. Load in Chrome

    • Navigate to chrome://extensions
    • Enable Developer mode (top right)
    • Click Load unpacked
    • Select the src/extension/dist folder

Screenshots

Block Modal
Paste Blocked
Sensitive data detected with highlighting 		Warning Banner
Typing Warning
Real-time detection as you type
Popup
Extension Popup
Quick status and settings access 		Settings
Settings Page
Full control over detection rules

Detection Coverage

Regex Detection (Instant)

Type Examples
๐Ÿ“ง Email user@example.com
๐Ÿ“ฑ Phone 555-123-4567, +1 (555) 123-4567
๐Ÿ’ณ Credit Card 4532-0151-1283-0366
๐Ÿ”ข SSN 123-45-6789
๐Ÿ”‘ AWS Keys AKIAIOSFODNN7EXAMPLE
๐ŸŽซ JWT Tokens eyJhbGciOiJIUzI1NiJ9...
๐Ÿ” Private Keys -----BEGIN RSA PRIVATE KEY-----
๐ŸŒ IP Addresses 192.168.1.1
๐Ÿ“ MAC Addresses 00:1A:2B:3C:4D:5E
๐Ÿ  US Addresses 123 Main St, New York, NY 10001

AI Detection (BERT NER)

Entity Type Examples
๐Ÿ‘ค PERSON John Smith, Dr. Sarah Thompson
๐Ÿข ORGANIZATION Acme Corp, Goldman Sachs
๐Ÿ“ LOCATION New York, Silicon Valley

Configuration

Settings Page

Access via the extension popup โ†’ Open Settings

  • PII Rules: Enable/disable detection for each type
  • Block vs Warn: Choose blocking modal or warning banner
  • Protected Sites: Manage which AI tools are protected
  • AI Confidence: Adjust sensitivity threshold (0-100%)
  • Behavior: Toggle real-time typing detection

Protected Sites (Default)

  • โœ… ChatGPT (chat.openai.com, chatgpt.com)
  • โœ… Claude (claude.ai)
  • โœ… Gemini (gemini.google.com)
  • โœ… Copilot (copilot.microsoft.com)
  • โœ… Poe (poe.com)
  • โœ… Grok (grok.com)
  • โœ… DeepSeek (chat.deepseek.com)

Architecture

src/extension/
โ”œโ”€โ”€ manifest.json          # Chrome MV3 manifest
โ”œโ”€โ”€ background.js          # Service worker (message routing)
โ”œโ”€โ”€ content-script.js      # Page injection (paste/typing interception)
โ”œโ”€โ”€ offscreen.js           # AI model execution environment
โ”œโ”€โ”€ offscreen.html         # Offscreen document container
โ”œโ”€โ”€ lib/
โ”‚   โ””โ”€โ”€ transformer-detector.js  # BERT NER model wrapper
โ”œโ”€โ”€ modules/
โ”‚   โ”œโ”€โ”€ config.js          # Regex patterns & constants
โ”‚   โ”œโ”€โ”€ scanner.js         # Detection orchestration
โ”‚   โ”œโ”€โ”€ settings.js        # Chrome storage management
โ”‚   โ”œโ”€โ”€ event-handlers.js  # Paste & input handlers
โ”‚   โ””โ”€โ”€ ui/
โ”‚       โ”œโ”€โ”€ modal.js       # Blocking modal component
โ”‚       โ”œโ”€โ”€ banner.js      # Warning banner component
โ”‚       โ””โ”€โ”€ styles.js      # Shadow DOM styles
โ””โ”€โ”€ ui/
    โ”œโ”€โ”€ popup.html/js/css  # Extension popup
    โ””โ”€โ”€ settings.html/js/css # Settings page

Technology Stack

  • Extension: Chrome Manifest V3, ES Modules
  • AI Runtime: ONNX Runtime Web (WASM)
  • Model: Xenova/bert-base-NER-uncased via Hugging Face Transformers.js
  • UI Isolation: Shadow DOM (no CSS conflicts with host pages)

Privacy & Security

What We DON'T Do

  • โŒ Send data to external servers
  • โŒ Log or store your text
  • โŒ Use analytics or telemetry
  • โŒ Make any network requests (except model download on first run)

What We DO

  • โœ… Process everything locally in your browser
  • โœ… Cache the AI model locally after first download
  • โœ… Store settings in Chrome's encrypted sync storage
  • โœ… Provide fully auditable open-source code

Verify yourself: Open DevTools โ†’ Network tab. You'll see zero outbound requests during detection.

Development

Build

cd src/extension
npm install
node build.js

Run Tests

node tests/content-script.test.js

Project Requirements

  • Chrome 120+ (for Offscreen Documents API)
  • Node.js 18+ (for building)

Troubleshooting

"AI Model Loading..." stays forever

  • Check DevTools console for errors
  • The model (~50MB) downloads on first run โ€” may take a minute on slow connections
  • Try clearing extension data and reloading

Extension doesn't detect on some sites

  • Check if the site is in your protected sites list
  • Some sites use iframes โ€” detection may be limited
  • Open an issue with the site URL

False positives/negatives

  • Adjust AI confidence threshold in settings
  • Some patterns (like short names) may not be detected
  • Report edge cases as issues

Roadmap

  • Firefox/Safari support
  • Custom regex patterns via settings
  • Redaction mode (replace vs block)
  • Export/import settings
  • Keyboard shortcuts
  • Enterprise policy support

Contributing

PRs welcome! Please include:

  • Browser version
  • Steps to reproduce
  • Expected vs actual behavior

License

MIT License โ€” see LICENSE

Built for privacy. Runs locally. Open source.
Report Bug โ€ข Request Feature

Languages

JavaScript90.4%CSS5.4%HTML4.2%

Contributors

PRAR
MIT License
Created December 6, 2025
Updated March 5, 2026
privacyshield-ai/privacy-firewall | GitHunt