Unmasking APIs
Reverse tokenized values back to their original sensitive content. Unmasking is a privileged operation governed by permissions and policies.
Overview
The Unmasking API reverses tokenized content back to its original sensitive values. It is designed for authorized recovery of tokenized text — including entities such as names, emails, phone numbers, URLs, addresses, and nationalities.
Unmasking is a privileged operation and must only be used by authorized users in accordance with your organization's security and compliance requirements.
All unmasking operations use HTTP PUT.
Unmasking exposes original sensitive data. Restrict access to unmasking endpoints, enforce role-based access controls, and audit all unmask operations.
Authentication
| Header | Value |
|---|---|
Authorization | Bearer <AUTH_TOKEN> |
Base URLs
| Environment | Base URL |
|---|---|
| Trial | https://protecto-trial.protecto.ai |
| Production | https://api.protecto.ai |
Available endpoints
Unmask with Token
Restore original values from tokenized text produced by auto-detect masking.
Unmask with Policy
Apply a named policy during unmasking for governance-controlled re-identification.
Toxicity in Unmask API
Understand the toxicity scores returned alongside unmasked values.
Errors
Full list of unmasking error messages and HTTP status codes.
Last updated 3 weeks ago
Built with Documentation.AI