Hey Felix,
I don’t know Nonym myself, but when you say this “ensures” that no sensitive PII or secrets leave your network, I wonder how it achieves that in practice.
It seems likely to me that it cannot be 100% determinate — just as the LLM itself isn’t.
If it’s rule-based, it will miss edge cases.
If it’s model-based, it’s inherently probabilistic.
So it feels more like risk reduction than a guarantee.
I’d be interested to understand where that line is drawn in reality.
This may also be of interest in the broader scope 