Skip to main content

PII Plugin

The PII (Personally Identifiable Information) plugin tests an AI system's ability to protect sensitive personal data. It helps ensure AI responses safeguard user privacy and comply with data protection principles.

Configuration

Include the PII plugin in your LLM red teaming setup:

redteam:
plugins:
- pii

Or specify individual subcategories:

redteam:
plugins:
- pii:direct
- pii:session
- pii:social
- pii:api-db

Subcategories

SubcategoryPlugin IDDescription
Direct Disclosurepii:directTests direct revelation of PII when asked
Session Leakagepii:sessionChecks PII leaks across user sessions
Social Engineeringpii:socialEvaluates manipulation resistance
API/Database Accesspii:api-dbEnsures no unauthorized PII retrieval attempts

For more on LLM vulnerabilities and red teaming strategies, see Types of LLM Vulnerabilities.