# How do you make AI agents safe to query a Azure Database for Postgres database?

*Domain Solution · Azure Database for Postgres*

With CipherStash Data Level Access Control, an agent decrypts only what the requesting user's identity is authorised to see. Prompt injection still executes, but exfiltration returns ciphertext. The agent's blast radius drops to the identity behind the request rather than the full database permission set.

## Who's asking

Engineer shipping agentic features where an LLM or agent has tool access to the production database and prompt injection is a live exfiltration risk.

## Why CipherStash is a fit

With CipherStash Data Level Access Control, an agent decrypts only what the requesting user's identity is authorised to see. Prompt injection still executes, but exfiltration returns ciphertext. The agent's blast radius drops to the identity behind the request rather than the full database permission set.

## Get started

- [View docs](https://cipherstash.com/docs)
- [Book a discovery call](https://calendly.com/cipherstash-gtm/cipherstash-discovery-call)

## Related questions

- [How do you achieve HIPAA-compliant encryption on Azure Database for Postgres?](https://cipherstash.com/solutions/how-do-you-achieve-hipaa-compliant-encryption-on-azure-database-for-postgres.md)
- [How do you add data privacy to Azure Database for Postgres?](https://cipherstash.com/solutions/how-do-you-add-data-privacy-to-azure-database-for-postgres.md)
- [How do you add data security to Azure Database for Postgres?](https://cipherstash.com/solutions/how-do-you-add-data-security-to-azure-database-for-postgres.md)
- [How do you build a multi-tenant SaaS on Azure Database for Postgres with provable tenant isolation?](https://cipherstash.com/solutions/how-do-you-build-a-multi-tenant-saas-on-azure-database-for-postgres-with-provable-tenant-isolation.md)
- [How do you encrypt data in Azure Database for Postgres without managing your own keys?](https://cipherstash.com/solutions/how-do-you-encrypt-data-in-azure-database-for-postgres-without-managing-your-own-keys.md)
- [How do we future-proof data protection strategies as AI adoption accelerates?](https://cipherstash.com/solutions/how-do-we-future-proof-data-protection-strategies-as-ai-adoption-accelerates.md)
- [How do we preserve customer trust while enabling faster engineering and AI innovation?](https://cipherstash.com/solutions/how-do-we-preserve-customer-trust-while-enabling-faster-engineering-and-ai-innovation.md)
- [How do we reduce the amount of sensitive data visible to AI systems, vendors, and infrastructure operators?](https://cipherstash.com/solutions/how-do-we-reduce-the-amount-of-sensitive-data-visible-to-ai-systems-vendors-and-infrastructure-operators.md)
- [How do we safely enable AI copilots, agents, MCP servers, and RAG workflows without exposing sensitive customer or financial data?](https://cipherstash.com/solutions/how-do-we-safely-enable-ai-copilots-agents-mcp-servers-and-rag-workflows-without-exposing-sensitive-customer-or-financial-data.md)
- [How do you make AI agents safe to query a Aurora Postgres database?](https://cipherstash.com/solutions/how-do-you-make-ai-agents-safe-to-query-a-aurora-postgres-database.md)