eXate APIgator is a data-in-motion protection tool that embeds in, or operates next to, an API gateway — or directly within services — to secure data flowing through APIs and streaming pipelines. It supports JSON and XML data formats and operates at the proxy level, enabling protection of data within microservices and APIs. APIgator applies the Principle of Least Privilege (PoLP) to limit data distribution, ensuring only relevant information is delivered to the appropriate consumers. The product evaluates multiple facets of an API call and makes access decisions based on claims, allowing it to deny or allow access to all or part of the data delivered by an API. This means that even if API access credentials are compromised, the underlying data remains protected because the attacker lacks the appropriate claims. Key capabilities include: - Data Access Management: Revoke or grant access to datasets or individual dataset attributes using configurable techniques, per consumer. - Discovery and Remediation: Analyse a data estate to identify privacy or security issues and risks. - Policy Management: Automatically and consistently apply data access policies, replacing manual, document-based policy enforcement. - Audit and Reporting: Real-time visibility into who is accessing data, with the ability to remediate issues based on live insights. APIgator raises alarms when access attempts lack the appropriate claims, providing an additional security layer beyond standard API keys and tokens.