🎉 Use coupon MYXERO to enjoy 20% recurring discount on any plan. View Pricing
XeroWP
PIIP – PII Protection

PIIP – PII Protection

0/5 (0 ratings) — active installs Updated Feb 7, 2026
data protectionGDPRPIIprivacysecurity
Download v1.4.0 Plugin Website

PIIP (PII Protection) is a plugin that automatically detects and masks personally identifiable information (PII) in WordPress comments and community plugin content before the data is saved to your database. This helps protect user privacy and ensures GDPR compliance.

Key Features

  • Automatic PII Detection: Intelligently detects multiple types of PII including emails, phone numbers, addresses, credit cards, SSN/My Number, passwords, API tokens, IP addresses, and hosting account IDs
  • Server-Side Masking: All masking happens on the server (PHP) for maximum security – cannot be bypassed by users
  • WordPress Core Support: Native support for WordPress comments
  • Community Plugin Support: Works seamlessly with wpForo, BuddyPress, bbPress, and other popular community plugins
  • Configurable: Choose which PII types to mask via easy-to-use settings page
  • Consent Opt-Out: Users can include consent phrases to skip masking when sharing personal info publicly
  • Presidio-Level Detection: High-accuracy detection with validation (Luhn for credit cards, check digits for My Number)

Supported PII Types

  • Email addresses ([email protected] e***@domain.com)
  • Phone numbers (Japanese mobile/landline, international formats)
  • Addresses (masked to ***)
  • Credit card numbers with Luhn validation (4532-1234-5678-9010 ****-****-****-9010)
  • Social Security Numbers / Japanese My Number with check digit validation
  • Passwords (masked to [REDACTED])
  • API Tokens/Keys (partial masking showing first and last 4 characters)
  • AI API Keys (OpenAI sk-***, Anthropic sk-ant-***, Google AIza***, Hugging Face hf_***, Replicate r8_***, Cohere, Azure OpenAI)
  • IP Addresses (192.168.1.1 192..1)
  • Hosting Account IDs (XServer, Sakura, AWS, Azure, GCP, ConoHa, Lolipop, mixhost)

Supported Integrations

  • WordPress Core
    • Comments
  • Community Plugins
    • wpForo Forum
    • BuddyPress
    • bbPress
  • More integrations coming soon!

How It Works

  1. User posts a comment or content in a community plugin
  2. PIIP intercepts the submission before database save
  3. Automatically detects PII using field names, regex patterns, and validation
  4. Masks detected PII according to your settings
  5. Content saves normally with masked data

Privacy & Security

  • All processing happens on YOUR server (no external API calls)
  • Original values are NEVER stored for maximum privacy protection
  • Server-side processing prevents client-side bypass attempts
  • Full control over your data

Privacy Policy

PIIP – PII Protection does NOT:
* Send any data to external servers
* Track users
* Use cookies
* Share data with third parties

PIIP DOES:
* Process content locally on your server
* Automatically mask PII without storing sensitive data

Support

For support, bug reports, or feature requests:
* Website: https://github.com/benridane/piip

Development

Development happens on GitHub. Pull requests welcome!
* Follow coding standards
* All code must pass composer run phpcs