30 Days Gen AI Risk Trial -Start Now
Book a demo
Generative AI DLP

DLP for generative AI,prompts and files included

Generative AI DLP is data loss prevention that operates where generative AI actually happens: the prompt box and the file upload. Aona inspects every prompt and attachment at the browser and endpoint layer, then hard-blocks or redacts sensitive data in real time, before it leaves the device, across ChatGPT, Copilot, Gemini, Claude, and 5,600+ other tools.

97-99%
Sensitive data detection accuracy
5,600+
Generative AI tools covered
7 regions
Data residency options
SOC 2
Type II certified
How it works

Hard-block DLP for prompts and files, in three steps

The same pipeline runs whether an employee types a prompt or attaches a document. Enforcement happens before the data reaches the AI provider, not after.

1

Intercept before it leaves the device

Generative AI traffic is HTTPS encrypted, so network DLP reads nothing. Aona sits at the browser and endpoint layer and sees the prompt or file at the moment of submission, before it leaves the device.

2

Classify the sensitive content

The content is classified against sensitive data types: PII, financial records, source code, credentials, and confidential business data, at 97 to 99 percent detection accuracy. Custom classifiers cover data types unique to your organisation.

3

Enforce your policy in real time

Your policy decides the outcome per tool, team, and data class: hard-block the submission, redact just the sensitive portion, or coach the employee in the moment and let the safe remainder through.

What's covered

Prompts, files, and every GenAI tool

We are explicit about capability status. Prompt inspection and DOCX and Excel redaction are available today. PDF redaction is in active development.

Prompts

Available now

Every prompt is inspected before submission. Sensitive content is hard-blocked or redacted inline, and the employee sees why, in the moment.

Word & Excel uploads

Available now

DOCX and XLSX files are redacted inline at upload with layout preserved: headings, tables, cell formats, and structure survive, so the safe copy stays usable.

PDF uploads

In development

Layout-preserving PDF redaction is in active development and not yet generally available. Until then, policy still applies: warn the employee or block the upload.

Every other GenAI tool

One policy

The same policy follows the employee across 5,600+ AI tools, sanctioned or shadow, so coverage never depends on a manually maintained blocklist.

Uploading files is the highest-bandwidth leak path. See how layout-preserving file redaction works.

Available now

Redaction that keeps the document usable

When Aona redacts a Word or Excel file, it edits the document in place rather than flattening it or stripping its structure. The employee's AI workflow continues on a clean copy that still reads like the original, minus the sensitive content. The same principle applies to prompts: remove the account number, keep the question. Blocking everything just moves AI usage to personal devices where you have no visibility at all.

Beyond blocking

A real-time coach, not just a wall

DLP that only says no trains employees to route around it. Aona pairs enforcement with coaching at the exact moment of a risky prompt.

Coaching at the moment of risk

When a prompt trips policy, the employee sees what was flagged and why, right there in the tool, and gets a safe way to continue. Over time this changes behaviour instead of just suppressing it, which is the difference between a control and a cat-and-mouse game.

Hard blocks where they belong

Some tools and data classes should never mix: unvetted AI apps, regulated records, source code for crown-jewel systems. For those, Aona enforces hard-block guardrails that stop the submission outright, with an audit trail your compliance team can stand behind.

92.9%
Reduction in shadow AI prompts in three months, from 446 to 28 per month, while overall AI usage kept growing.
ACD, a regulated Australian healthcare college, after deploying Aona's real-time guardrails and coaching. Read the case study
Trust

Certified controls, data residency you choose

A DLP vendor sees your most sensitive near-misses. Ours is a short, verifiable list of claims.

SOC 2 Type II

Independently attested controls

Security, availability, and confidentiality

7 regions

Data residency built in

Australia, France, UK, Germany, US, Singapore, Hong Kong

97-99%

Sensitive data detection

Across PII, financial, and source code

FAQ

Generative AI DLP questions

Generative AI DLP is data loss prevention that operates where generative AI usage actually happens: the prompt box and the file upload. It inspects the content of every prompt and attachment at the browser and endpoint layer, classifies sensitive data such as PII, financial records, source code, and confidential documents, then blocks or redacts it in real time, before it reaches ChatGPT, Microsoft Copilot, Gemini, Claude, or any other generative AI tool.
See it in action

Protect every prompt and file,starting this week

Start a 30-day free trial and enforce your first generative AI DLP policy in minutes, or book a demo to watch hard blocks, redaction, and the real-time coach on live prompts.

30-day free trial · No credit card · SOC 2 Type II