Fastly’s privacy enablement solutions help you be compliant, protects your users’ personally identifiable information (PII) and their browsing information.
Fastly offers several types of solutions to help ensure your users personally identifiable information is private. Whether it’s stripping out the personal information or keeping users browsing data private, Fastly can help you avoid potential fines.
MASQUE Relay
MASQUE Relay is an essential component that may be used to construct a double-blinded privacy enablement service for general purpose web browsing.
OHTTP Relay
Fastly's Oblivious HTTP (OHTTP) Relay is a key component of a double-blinded privacy enablement service for APIs and other recipients of specially crafted HTTP requests.
Private Access Tokens
Private Access Tokens are an alternative to CAPTCHAs for supported client platforms.
MASQUE Relay
Masque Relay safeguards users' web browsing activity online.
The Relay IPs visible to the web servers will not serve as user identifiers, since they will be used for a large number of actual users and will not remain statically mapped to any single user.
Geolocation accuracy
MASQUE Relay has been designed to carefully reflect users’ approximate location in the Relay IP addresses that are visible to servers.
Performance
User traffic through MASQUE Relay does not see performance degradation. In fact, using the relay can improve performance because of the rich connectivity between a customer and Fastly.
Data breaches increased throughout 2023
According to this report, the total number of data breaches, exposures, leaks and “unspecified events” reached 3,205, impacting an estimated 353,027,892 victims, including those affected by multiple compromises.
OHTTP Relay is a component of the Oblivious HTTP architecture that allows you to receive critical request data from your end users without any of the identifying metadata that you don't need.
A web browser or other HTTP client which sends this type of request (potentially PII) exclusively to relay.
Relay
OHTTP Relay services receives requests from the Client, performs anonymization behaviors on it, and forwards an encrypted payload to the Gateway.
Gateway
A customer-provided HTTP service which receives forwarded requests from the relay and validates/decrypts them before sending on to the target.
Target
A customer-provided HTTP service which receives decrypted and anonymized requests via the relay/gateway request path and performs the actual business logic upon the initial request.
Private Relay
Private Relay ensures that no single relay or website — and therefore no single organization — has visibility into which websites and content is accessed by a particular user. That means only the user knows both their IP address and the websites they visit.
The Relay IPs visible to the web servers will not serve as user identifiers, since they will be used for a large number of actual users and will not remain statically mapped to any single user.
Geolocation accuracy
Private Relay has been designed to carefully reflect users’ approximate location in the Relay IP addresses that are visible to servers.
Performance
User traffic through Private Relay does not see performance degradation. In fact, using the relay can improve performance because of the rich connectivity between website owner and Fastly.
Private Access Tokens
Use a careful application of cryptography and requirements to guarantee that a website learns only exactly what it needs to know about a user in order to provide access to a resource.
The attester might have access to more data about the user – think of all the info accessible on your phone. But the attester is designed to use cryptographic means to attest to exactly – and only – the minimal information needed for interaction with the website.
Separation of duties
Tokens can specify that “clients” and “attesters” (e.g., your device and provider) are the only ones that can access user data needed to say something useful about the client.
Cryptographic designs
Tokens apply blinded signatures. When your client platform attests to some property about a user, it cryptographically blinds data about the website they are visiting.
Fastly is a Leader in the IDC MarketScape: Worldwide Edge Delivery Services 2024. With 377 Tbps capacity, 150 ms instant purge, & expanding global coverage, we believe we’re setting the edge standard.
Commissioned by Fastly, Forrester's Total Economic Impact™ (TEI) reveals that composite organizations using Fastly experienced improved web performance, reduced costs, increased revenue, and enhanced customer experience.
We’re excited to announce the latest product in our privacy enablement portfolio — the Fastly OHTTP Relay, now in beta with availability for select partners.
iCloud Private Relay is a new internet privacy service from Apple. With iCloud Private Relay, users with an iPhone, iPad, or Mac and an iCloud+ subscription can connect to and browse the internet and in a more secure and private way using Safari.
At its core, Private Access Tokens present a privacy-respecting, anti-fraud and authorization framework. This blog post provides an overview of what it does and how developers can try it out with Fastly and Apple today.
