Secure Generative AI for Enterprise with Liminal AI

Welcome to the Enterprise Buyer’s Guide for Liminal. As organizations rush to adopt Generative AI, they face a significant paradox: the need for massive productivity gains versus the critical requirement to protect proprietary data and maintain regulatory compliance. Liminal addresses this by providing a 'Horizontal Security Layer' for the AI era.

This guide explores how Liminal enables enterprises to deploy GenAI safely. You will learn about Liminal’s unique approach to automated data redaction, its model-agnostic architecture, and the administrative controls that allow IT leaders to say 'yes' to AI without compromising on security. Whether you are looking to secure internal 'Shadow AI' or build custom, compliant AI applications, this guide provides the technical and business context needed for an informed evaluation.

Liminal’s platform is built around three core pillars: Security, Governance, and Enablement.

1. Automated Data Redaction & Masking

• Dynamic PII Detection: Automatically identifies and masks sensitive information (names, SSNs, credit card numbers, health info) in real-time before it leaves your perimeter.
• De-identification: Ensures that LLMs never 'see' the raw sensitive data, preventing it from being used in model training by third parties.

2. Centralized Governance & Policy Engine

• Granular Access Control: Define which departments or users have access to specific models (e.g., Marketing gets GPT-4o, while Engineering gets Claude 3.5).
• Policy Enforcement: Block specific prompts or topics that violate HR or legal policies.
• Comprehensive Auditing: Every prompt and response is logged and searchable, providing a full audit trail for compliance officers.

3. Model-Agnostic Gateway

• Unified API: Switch between different LLM providers without rewriting code or changing user workflows.
• Cost Management: Monitor and limit spend across different model providers from a single dashboard.
• Secure RAG: Safely ingest company documents for AI analysis while maintaining strict permissioning.

• Financial Services: A global bank uses Liminal to allow analysts to summarize long regulatory filings and market reports. Liminal automatically redacts client names and account numbers, ensuring the bank remains compliant with SEC and GDPR mandates.
• Healthcare Administration: A hospital network uses Liminal to help administrative staff draft patient communications and summarize internal procedures. The platform's PHI detection ensures that no HIPAA-protected information ever reaches public AI servers.
• Legal & Professional Services: A law firm uses Liminal's secure UI to analyze case documents. The platform allows them to leverage the power of GPT-4 while guaranteeing that attorney-client privilege is protected through strict data isolation.
• Software Development: An engineering team uses Liminal’s secure gateway to access coding assistants. Liminal prevents proprietary source code and secrets (like API keys) from being leaked into public model training sets.

Liminal typically employs an enterprise-grade pricing structure designed for scalability:

• Platform Fee: An annual base fee that covers the secure infrastructure, administrative dashboard, and core security features.
• User-Based Licensing: Tiered pricing based on the number of seats (users) accessing the platform.
• Usage-Based Credits: Depending on the package, some costs may scale with the volume of data processed through the security layer.
• Implementation Services: Optional one-time fees for white-glove setup, custom policy configuration, and complex integrations.
• Note: Enterprise agreements usually include unlimited model provider connections and SSO integration as standard.

Liminal is a cloud-native platform with the following requirements:

• Browser Support: Latest versions of Chrome, Edge, Safari, and Firefox.
• Connectivity: Outbound HTTPS access to Liminal’s cloud or your specific VPC deployment.
• Identity: An OIDC or SAML-compliant Identity Provider for user management.
• API Keys: Valid accounts and API keys with model providers (OpenAI, Anthropic, etc.) that you wish to enable.
• Deployment Options: Primarily SaaS, but enterprise-grade 'Virtual Private Cloud' (VPC) or on-premise deployment options may be available for highly restricted environments.

To successfully deploy Liminal, an organization needs:

• Executive Sponsorship: Buy-in from the CISO or Data Privacy Officer is critical, as Liminal sits at the intersection of security and productivity.
• Defined AI Policy: A baseline understanding of what data is considered 'sensitive' within the organization to configure the platform's redaction and policy engines.
• Internal Communication Plan: A strategy to migrate users from 'Shadow AI' tools to the secure Liminal interface.
• Technical Liaison: A point of contact (usually from IT or Security Ops) to manage API key integrations and identity provider (IdP) sync.

A typical Liminal implementation follows this schedule:

• Week 1: Discovery & Policy Mapping: Identifying sensitive data types (PII, PHI, PCI) and mapping them to Liminal’s detection engine.
• Week 2: Technical Setup: Connecting Liminal to the organization's Identity Provider (Okta, Azure AD) and configuring model provider API keys.
• Week 3: Pilot Phase: Rolling out to a select group of 'power users' to refine redaction rules and monitor performance.
• Week 4: Training & Go-Live: Company-wide onboarding, training sessions on the secure UI, and decommissioning of unsanctioned AI access points.
• Ongoing: Monthly policy reviews and audit log analysis.

Liminal provides support tiers tailored to enterprise needs:

• Standard Support: Email and ticket-based support during business hours with access to a comprehensive knowledge base.
• Enterprise Support: Dedicated Customer Success Manager (CSM), 24/7 priority support for critical issues, and quarterly business reviews.
• Professional Services: Expert consulting for AI strategy, custom security policy development, and large-scale data migration.
• Community & Documentation: Extensive API documentation and a developer portal for building custom integrations.

Liminal is designed to sit as a secure layer between your users and AI models. Key integration capabilities include:

• Identity Providers: Native support for SAML 2.0, Okta, and Microsoft Azure AD for Single Sign-On (SSO).
• Model Providers: Pre-built connectors for OpenAI (Azure and Direct), Anthropic, Google Vertex AI, and AWS Bedrock.
• Data Sources: Integration with enterprise storage (Google Drive, SharePoint) for secure RAG (Retrieval-Augmented Generation) workflows.
• Developer Tools: Robust API access for developers to build secure, Liminal-protected AI applications internally.
• SIEM Integration: Ability to export audit logs to tools like Splunk or Datadog for security monitoring.

Security is the core value proposition of Liminal. The platform includes:

• Certifications: SOC 2 Type II compliant.
• Data Residency: Options for regional data hosting to comply with local laws (e.g., keeping data within the EU).
• No-Training Guarantee: Liminal ensures that your data is never used to train their models or the models of the providers they connect to.
• Encryption: Data is encrypted at rest (AES-256) and in transit (TLS 1.2+).
• Privacy Controls: Role-Based Access Control (RBAC) ensures only authorized personnel can view unmasked audit logs.