PrivacyPal Max is for the teams running ahead. The ones shipping agentic workflows, wiring up MCP, and giving every employee a copilot. Max gives you back the controls — on every prompt, every agent, every model — and pairs them with a swarm of on-device Privacy Agents that think alongside you.
Max keeps everything you love about Pro — Privacy Twins, connectors, SSO, audit — then adds four things only the leading edge needs.
Block models, gate access behind training paths or certifications, intercept and steer prompts, redact at the wire. Define what your employees can do with AI — and prove it to your auditors with one click.
Run a Private MCP that lets your team's agents reach internal tools, data and APIs without those connections leaking back to a public host. Your context. Your tools. Your control plane.
Every device becomes its own DSPM sensor. Discover, classify and continuously monitor sensitive data where it actually lives — on your team's laptops — without a single byte phoning home.
Max's headline. A swarm of on-device agents augmenting PrivacyPal with intelligent detection, analysis and decision-making — across Claude, ChatGPT, Gemini, Copilot and anything you wire up.
On-device, autonomous, and purpose-built to reason about privacy, intent and risk — in real time, across every AI your team touches. Mix the agents we ship, the agents you build, and agents from the marketplace.
Understand what an agent is actually trying to do before it does it. Authorize, alert or quietly redact based on intent — not just keywords.
Catch jailbreaks, tool-call hijacks and exfiltration patterns at the endpoint. The agent reasons about adversarial intent so your humans don't have to.
Drop in a Legal Agent that knows privilege, or a Financial Agent that knows MNPI. Agents bring vertical intelligence to every interaction — without retraining a model.
Customize and ship your own agents, or enable privacy, security and AI agents from the marketplace. Enrich any AI conversation across Claude, ChatGPT, Gemini, Copilot and more.
Privacy Agents run on the device — so the same protections apply whether your team is in Claude, ChatGPT, Gemini, Copilot or a custom stack.
Intent Detection recognizes the workflow, the Legal Agent flags an NDA clause, and the Privacy Twin scrubs vendor names — all before the request leaves the laptop.
Org-wide controls require the agent's caller to be in the "client-facing" training cohort. Not enrolled? The request is blocked, the user is nudged to the training, and audit fires.
Prompt Injection Prevention catches it on-device, quarantines the file, and lets the user continue their actual task. Your incident channel gets a one-line note instead of an outage.
Engineers, analysts and a custom Financial Agent all share the same internal context — without that context ever leaving the org. Same fluency. Zero exfiltration.
Max is a strict superset of Pro. If you're still rolling out copilots, start with Pro. If your roadmap already says "agentic," start with Max.
| Capability | Pro · $18/mo | $50/mo |
|---|---|---|
| Privacy Twins on-device | Included | Included |
| Connectors (CRM, Drive, Slack, SQL) | Included | Included |
| Team policies, SSO, SCIM, audit | Included | Included |
| Organization AI controlsBlock, require training paths, certify, intercept | — | Max only |
| Private MCP | — | Max only |
| On-device DSPM | — | Max only |
| Privacy Agents (intent, injection, vertical, custom) | — | Max only |
| Agent marketplace | — | Max only |
| Pricing | $18/mo · $180/yr | $50/mo · $500/yr |
If your culture is AI-native, your roadmap is agentic, and your competitive edge is speed — Max was built for you. Let's show you what it looks like inside.
Not at agentic scale yet? Start with PrivacyPal Pro →