๐Ÿ‡น๐Ÿ‡ญ Thai-first ยท Offline ยท Built for the AI era

Locate the personal
data across your
machine before it leaks

ADVY is a Local-only data-privacy management system designed specifically to detect and protect personal data (PII) on the user's own machine. It puts security first with a self-contained design that never sends data outside unless you explicitly tell it to. A key strength is full Thai-language support through a 4-layer Multi-layer Detection engine that blends rule-based logic with AI for accurate, traceable results (Explainable Risk). ADVY's architecture spans risk scanning, PDPA compliance assessment, and policy enforcement that creates copies to avoid destroying the original files. It also includes an AI Gateway that screens data before it reaches large language models, ensuring confidential data never leaks in the age of working alongside AI.

๐Ÿ”’ Runs fully on-device nothing leaves your machine โšก Powered by Presidio + PyThaiNLP ๐Ÿ“‹ Mapped to 9 standards & laws
Why organizations need ADVY

Personal data is scattered across your machine often without you knowing

PDPA

Fines up to THB 5 million

Thailand's Personal Data Protection Act imposes civil, criminal, and administrative penalties for data that leaks or is retained without a lawful basis.

73%

Files with no owner

Payroll spreadsheets, scanned ID cards, and contracts often sit in shared folders that anyone can open, with no clear owner accountable for them.

AI

Careless sharing with AI

Copying customer data into an AI tool without removing personal information first can push that data outside the organization in an instant.

Overview

A privacy scanner and AI gateway that runs entirely on your machine

ADVY stands for ARAK Data Discovery a tool for individuals and small teams who need to know where personal data lives, how risky it is, and how to send data to AI safely without relying on the cloud, standing up a server, or needing an IT team.

Discovery

Walks every file in a folder to find personal data using Microsoft Presidio and PyThaiNLP covering Thai national IDs, bank account numbers, credit cards, names, emails, and credentials.

Risk Score

Every file receives a 0โ€“100 risk score with an explainable breakdown data sensitivity, access permissions, file age, and storage location.

Auto-Label

Classifies and labels files automatically with a confidence level from PUBLIC to RESTRICTED, plus PDPA-PERSONAL, PCI-DATA, HEALTH-DATA, and CREDENTIAL.

PDPA Mapping

Maps data to the 10 PDPA data categories and onward to 9 standards Cybersecurity Act, ISO 27001/27701, NIST CSF, PCI DSS, and SOC 2.

Policy Enforcement

Supports quarantine, secure-copy, watermarking, and masking/redaction written as copies under ~/.advy/enforce/, never modifying or deleting the originals.

AI Gateway

Applies Privacy-Enhancing Technologies PETs (Anonymize/DP/Synthetic/Federated) before sending to Claude, with a policy gate that blocks credentials and requires anonymization for PDPA-covered data.

How it works

From a messy folder to a risk report in 5 steps

Every step runs on your own machine, with no cloud connection unless you choose to send data yourself.

Point to a folder

Specify the path to scan, e.g. /mnt/c/HR, then start the scan.

Detect personal data

Reads each file to find entities in both Thai and English, and validates national ID checksums.

Score the risk

Combines risk factors into a 0โ€“100 score and a critical / high / medium / low rating.

Label & map to law

Auto-labels files and maps them to PDPA data categories and the relevant standards.

Take action

Quarantine, redact, or send safely through the AI Gateway.

๐Ÿ”’ Core principle: ADVY never deletes the original files and never sends data off the machine automatically. Everything is stored in a local SQLite database at ~/.advy/state.db, which persists across restarts.

The big picture

Understand ADVY in pictures

The core ideas, the workflow, and the technology behind ADVY summed up in a few clear visuals.

The four design principles of ADVY
01 ยท Design principles

Real data protection starts and ends on your own machine

The four core principles at the foundation of ADVY that ensure sensitive data never leaks through the tool itself.

  • Local-Only by Design โ€” 100% on-device, nothing sent out, no hidden telemetry
  • Multi-Layer Detection โ€” combines Regex, checksums, NLP, and dictionaries
  • Explainable Risk โ€” a 0โ€“100 score you can explain, not a black box
  • Fail-Safe & Never Destructive โ€” never edits or deletes originals; every action makes a new copy
From a messy folder to a risk report in 5 steps
02 ยท The 5-step pipeline

From a messy folder to a risk report and AI

A closer look at each step and the technology behind it. Every stage runs locally on your own machine.

  • 1. Discover โ€” Walk + Read every file in a folder, e.g. /mnt/c/HR
  • 2. Detect โ€” deep analysis with Presidio + PyThaiNLP to surface hidden entities
  • 3. Score โ€” combine risk factors into a 0โ€“100 score (Critical / High / Medium / Low)
  • 4. Label โ€” auto-label PUBLIC โ†’ RESTRICTED and map to the PDPA
  • 5. Enforce & Send โ€” quarantine, redact, or send safely through the AI Gateway
Mapping a single file to the relevant standards and laws
03 ยท Standards mapping

Map a single file to many standards and laws

ADVY automatically links the data found in each file to the relevant standards and laws, keeping a mapping record and audit log for verification.

  • Laws โ€” PDPA ยท Cybersecurity Act ยท GDPR (EU)
  • Global standards โ€” ISO 27001 / 27701 ยท NIST CSF ยท SOC 2 ยท PCI DSS
  • Governance โ€” Data Governance Framework and Internal Policy
  • Audit-ready โ€” mapping records + audit log as evidence for audits
Benefits

Why organizations choose ADVY

๐Ÿ”’

Privacy by default

Runs entirely on-device, with no cloud connectors and no telemetry so sensitive data never leaks through the tool itself.

๐Ÿ‡น๐Ÿ‡ญ

Built for the Thai context

Validates Thai national IDs with mod-11, detects Thai names via NER and bank account numbers, and understands Thai keywords for health, HR, and finance.

โšก

Up and running instantly

No server, no central database, and no IT team required just pip install and you're ready, even in regex-only mode.

๐Ÿ“‹

Audit-ready

Maps to 9 standards and laws, exports CSV/JSON, and keeps an enforce log evidence to support a PDPA audit.

Use AI with confidence

A policy gate keeps sensitive data from leaking into prompts, so you get the benefit of AI without risking a PDPA breach.

๐Ÿ›Ÿ

Safe for your originals

Every action creates a new copy and never edits or deletes the source so you can experiment without harming your data.

Product screens

Real screens from ADVY

Actual ADVY screens โ€” from the overview dashboard and data discovery to the catalog and compliance assessment.

ADVY Dashboard
Dashboard Discovery Catalog Compliance
Get started

Install and run in minutes

Install the base build to run anywhere (regex-only), or add extras to enable full Thai and English NER.

  • advy ui open the web UI at http://127.0.0.1:8080
  • advy scan scan with a risk-sorted table
  • advy report PDPA & framework coverage summary
  • advy send AI gateway (dry-run by default)
๐Ÿ’ก On WSL? Your Windows C: drive lives at /mnt/c scan it directly, e.g. advy scan /mnt/c/Users/You/Documents
# Install (pick the level you need) pip install . # regex-only runs anywhere pip install '.[thai]' # add Thai name support (PyThaiNLP) pip install '.[all]' # add Presidio + Claude SDK # Open the web UI advy ui --port 8080 # Or scan from the command line advy scan ~/Documents advy report ~/Documents advy send note.txt --redact # Everything is stored in ~/.advy/ (SQLite)
๐Ÿ”Ž PII national ID ยท bank acct ยท credit card ยท name ยท email ยท credential ๐Ÿ“Š Risk 0โ€“100, explainable ๐Ÿท๏ธ Labels PUBLIC โ†’ RESTRICTED โš–๏ธ 9 frameworks 4 PETs