Personally identifiable information (PII), or sensitive personal information (SPI), refers to information that can be used on its own or with other information to identify, contact, or locate a single person, or to identify an individual in context.
Some examples of PII include Social Security Number, email address, credit card numbers, passport number, home address, and so forth.
Kore.ai allows you to redact any sensitive information that users share with your bots. When you enable redaction for an information type, you can transform its value into a pattern that doesn’t contain comprehensible data.
The platform provides the following three modes to redact specified information types:
Option |
Description |
Example |
Redaction |
Replaces the data with a unique random alphanumeric value |
An email address entered gets replaced with a random value such as jjh4ezb2 |
Replacement |
Replaces the data with a static value that you enter in the PII Redaction settings. |
If the static value entered is asdf1234, any email address entered is replaced with asdf1234 |
Mask with Character |
Replaces the first few and last few characters of the data with ‘+’ or ‘#’ symbols. You can select the number of characters to mask as well as the symbol for masking. |
If you configure the first four and last four characters to be masked with ‘+’, an email address such as helpdocs@kore.ai gets redacted as ++++docs@kor++++ |
Once redaction is enabled for an information type, Bots Platform stores only the redacted data of instances of the specific type. Therefore, no user can get access to original PII data from the platform.
Note: If a PII value determines the transition in a Dialog task, then the original value is used for transition. However, developers can only see the redacted data in the context variable or other places where it is displayed.