Visual Data Masking is a Beta feature currently being rolled out. If you don’t have access yet, contact your sales representative.
How Visual Data Masking works
Visual Data Masking operates at the UI layer only. When enabled, sensitive information is masked in what you see on screen, but agents continue to access and process the actual, unmasked data.What you see
Masked values like
***@***.com or ***-***-1234 in conversation historiesWhat agents see
Full, unmasked data for processing, reasoning, and tool execution
When to use Visual Data Masking
Enable Visual Data Masking when you need to protect sensitive information from being visible in the UI:Handling customer data
Handling customer data
When agents process customer information like email addresses, phone numbers, or payment details, Visual Data Masking prevents this data from being visible to team members reviewing conversations.
Screen sharing and demos
Screen sharing and demos
During product demonstrations, training sessions, or customer calls where you’re sharing your screen, Visual Data Masking ensures sensitive information isn’t accidentally exposed.
Team reviews and QA
Team reviews and QA
When multiple team members review agent conversations for quality assurance or training purposes, Visual Data Masking protects customer privacy while allowing evaluation of agent performance.
Compliance requirements
Compliance requirements
For organizations with regulatory requirements around data visibility, Visual Data Masking adds an extra layer of protection when viewing agent interactions. However, it should be used alongside other privacy controls, not as the sole protection mechanism.
Supported PII types
Visual Data Masking automatically detects and masks the following types of sensitive information:Email addresses
Masks email addresses like
user@example.com → ***@***.comPhone numbers
Masks phone numbers like
(555) 123-4567 → ***-***-1234Credit card numbers
Masks credit card numbers like
4532 1234 5678 9010 → ****-****-****-9010Person names
Masks person names like
John Smith → **** *****Configuration options
Visual Data Masking is a simple toggle feature with no advanced configuration options. When enabled:- All four PII types are automatically masked - You cannot select which types to mask
- Masking format is fixed - You cannot customize the placeholder text or masking pattern
- No detection sensitivity controls - You cannot adjust the AI detection threshold or rules
- No custom PII types - You cannot add organization-specific sensitive data patterns
- Same rules for all data - All detected PII is masked using the same approach
Enabling Visual Data Masking
For agents
To enable Visual Data Masking on an agent:For workforces
To enable Visual Data Masking on a workforce:What is and isn’t masked
What IS masked
Visual Data Masking applies to these UI elements:- Agent conversation histories in the Task View
- Workforce task displays showing agent interactions
- Message content displayed in conversation logs
- Tool inputs and outputs visible in the UI conversation flow
- Any front-end conversation data display in the Relevance AI platform
What ISN’T masked
Visual Data Masking does NOT apply to:- Backend data storage - Data is stored unmasked in the database
- Agent processing - Agents always work with unmasked, actual data
- Tool execution - Tools receive and process unmasked data
- LLM requests - Language models receive unmasked data for processing
- API responses - Data returned via API is unmasked
- Data exports - Exported data contains unmasked information
- Backend logs - Internal system logs contain unmasked data
- Event streaming - OTEL events exported to S3 contain unmasked data (unless PII Redaction is enabled)
Visual Data Masking vs PII Redaction
Visual Data Masking and PII Redaction are complementary features that protect sensitive information at different stages. They serve different purposes and are designed to work together for comprehensive privacy protection.| Feature | Visual Data Masking | PII Redaction |
|---|---|---|
| Availability | Beta (all tiers) | Enterprise only |
| Where it applies | Front-end UI display | Backend data export to S3 |
| What it does | Visual masking only | Data is scrubbed before export |
| Data modification | No - backend data unchanged | Yes - PII removed from exports |
| Use case | UI privacy, screen sharing, team reviews | Compliance, audit logs, observability |
| Applies to | Task View, conversation UI | S3 event streaming (OTEL) |
| Configuration | Toggle only (no options) | Advanced (entity types, actions, thresholds) |
| Detection method | AI detection (can miss PII) | Presidio-powered ML engine |
| Agent access | Agents see unmasked data | Agents see unmasked data |
Complementary use
These features are designed to work together, not replace each other:Visual Data Masking
Protects privacy when humans view agent conversations in the UI. Use for screen sharing, team collaboration, and internal reviews.
PII Redaction
Protects data exported to your observability infrastructure. Use for compliance, audit logs, and external data analysis.
- Visual Data Masking protects what your team sees in the platform UI
- PII Redaction (Enterprise) protects what gets exported to your S3 bucket for compliance
Learn more about PII Redaction for Event Streaming.
Best practices
- When to enable
- Combining with other features
- Testing and validation
Enable Visual Data Masking when:
- Your agents handle customer PII regularly
- Multiple team members review agent conversations
- You frequently share your screen during demos or training
- You need an extra layer of privacy protection in the UI
- Compliance policies require limiting PII visibility
Consider NOT enabling when:
- You need to see actual values for debugging or troubleshooting
- Your agents don’t process sensitive information
- You’re the only person accessing the agent
- Masked values would make conversation review difficult
Important limitations to consider:
- Do not rely solely on Visual Data Masking for critical privacy requirements
- Test with sample data to understand detection accuracy for your use case
- Combine with PII Redaction (Enterprise) for comprehensive privacy protection
- Remember AI detection can miss PII - this is not a foolproof solution
Beta limitations
As a Beta feature, Visual Data Masking has current limitations that users should understand:AI detection can occasionally miss PII
AI detection can occasionally miss PII
The AI model used for PII detection can occasionally miss sensitive information. Detection accuracy varies based on data format, context, and PII type. This is a known limitation of the beta. Do not rely on Visual Data Masking as your sole privacy control for highly sensitive data.
No configuration options
No configuration options
Visual Data Masking is a simple toggle with no advanced configuration. You cannot choose which PII types to mask, customize the masking format, adjust detection sensitivity, or add custom PII patterns. All four supported PII types are automatically masked when enabled.
Fixed masking format
Fixed masking format
The masking format (e.g.,
***@***.com) is fixed and cannot be customized. Future versions may offer configurable masking patterns, but currently all PII is masked using the same placeholder style.Limited PII type support
Limited PII type support
Only four standard PII types are supported: email addresses, phone numbers, credit card numbers, and person names. Custom sensitive data types specific to your organization cannot be configured for masking.
Visual only - no data modification
Visual only - no data modification
Visual Data Masking only affects the UI display. Backend data storage, agent processing, API responses, and data exports all contain unmasked data. This is by design to ensure agents can function properly, but means the feature provides no backend data protection.
Performance impact on long conversations
Performance impact on long conversations
On very long conversations with extensive PII, there may be a slight delay in rendering masked content. This is typically imperceptible but may be noticeable in extreme cases with thousands of messages.
We’re actively improving Visual Data Masking based on user feedback. If you encounter issues or have feature requests, contact your sales representative or reach out to support.
Related features
Security overview
Learn about Relevance AI’s comprehensive security features and compliance
PII Redaction
Protect sensitive data in exported OTEL logs and audit trails (Enterprise)
User Level Authentication
Enable users to authenticate with their own credentials for integrations
Workforce Task View
Monitor and manage workforce tasks with Visual Data Masking enabled
Frequently asked questions
Does Visual Data Masking affect agent performance?
Does Visual Data Masking affect agent performance?
No. Visual Data Masking only affects what you see in the UI. Agents continue to process unmasked data with no performance impact. The masking happens during UI rendering, not during agent execution.
How reliable is the AI detection?
How reliable is the AI detection?
The AI model can occasionally miss PII, especially with non-standard formats, international data, or context-specific sensitive information. Detection accuracy is optimized for standard US formats. Do not rely on Visual Data Masking as your sole privacy control for highly sensitive data. Always test with your specific data formats to understand detection accuracy.
Can I customize which PII types are masked?
Can I customize which PII types are masked?
No. Visual Data Masking is a simple toggle feature with no configuration options. All four supported PII types (email, phone, credit card, person names) are automatically masked when enabled. You cannot select specific types or add custom patterns.
Can I customize the masking format?
Can I customize the masking format?
No. The masking format is fixed (e.g.,
***@***.com for emails). You cannot customize the placeholder text or masking pattern. This may be available in future releases.Will masked data appear in API responses?
Will masked data appear in API responses?
No. Visual Data Masking only applies to the UI. Data returned via API calls is unmasked. If you need to protect data in API responses, implement masking in your application layer.
Can I temporarily disable masking to see actual values?
Can I temporarily disable masking to see actual values?
Yes. You can toggle Visual Data Masking off in agent or workforce settings at any time. Changes take effect immediately for new page loads.
Does Visual Data Masking work with embedded chat?
Does Visual Data Masking work with embedded chat?
Visual Data Masking applies to the Relevance AI platform UI only. If you’ve embedded agents on external websites, Visual Data Masking does not apply to those embedded interfaces.
How is this different from PII Redaction?
How is this different from PII Redaction?
Visual Data Masking protects what you see in the UI (front-end only). PII Redaction protects what gets exported to your S3 bucket for audit logs and observability (backend data scrubbing). Visual Data Masking is a simple toggle available in Beta; PII Redaction is an Enterprise feature with advanced configuration. Use both together for comprehensive protection.
What happens to data that's already in conversation history?
What happens to data that's already in conversation history?
When you enable Visual Data Masking, it applies to all conversation histories immediately, including past conversations. The masking is applied during rendering, so historical data is protected retroactively in the UI. However, the backend data remains unchanged.
Can I export unmasked data for analysis?
Can I export unmasked data for analysis?
Yes. Visual Data Masking only affects the UI display. Data exports, API responses, and backend storage all contain unmasked data. If you need masked exports, you’ll need to implement masking in your export pipeline or use PII Redaction (Enterprise) for S3 event streaming.
Does this protect data sent to LLMs?
Does this protect data sent to LLMs?
No. Visual Data Masking is UI-only. Agents send unmasked data to LLMs for processing. This is necessary for agents to function correctly. If you need to protect data sent to LLMs, you must implement pre-processing to scrub data before it reaches the agent.