mcp-pvp — Privacy Vault Protocol for MCP

Inspiration We were building an AI agent that handled customer emails. The agent used MCP to call tools like send_email, lookup_account, and create_ticket. It worked beautifully - until we looked at the logs. Every customer's email address, number, and account ID was sitting in plain text across four different places: the LLM prompt, the debug logs, the agent's conversation history, and the tool responses being fed back into the context window. One user request created four copies of their PII that we had no control over.