Response Format

Governed responses include policy-enforcement headers and field-level access control. This page documents the headers and field masking behavior you should expect.

Governance headers

Governed responses include the following headers:

Header	Value	Description
`X-Conduit-Governed`	`true`	Response was processed through governance pipeline
`X-Robots-Tag`	`noai, noimageai`	Anti-training directive (when enabled by MLS policy)
`X-Conduit-Anti-Training`	`true`	Data must not be used for AI/ML model training
`Cache-Control`	`no-store, no-cache, must-revalidate`	Caching disabled (when enabled by MLS policy)
`Pragma`	`no-cache`	HTTP/1.0 backward-compatible no-cache
`X-Conduit-Stateless`	`true`	Stateless enforcement — do not persist query data
`X-RateLimit-Remaining`	`<number>`	Remaining requests in the current rate limit window
`X-RateLimit-Reset`	`<unix-timestamp>`	When the current rate limit window resets

Field masking examples

Masked fields have their values replaced with a pattern defined by the MLS policy. Hidden fields are removed entirely.

Standard Access policy

Field	Access	You receive
`ListAgentEmail`	masked	`"*@*.com"`
`BuyerAgentEmail`	masked	`"*@*.com"`
`ListAgentDirectPhone`	hidden	(field removed)
`BuyerAgentDirectPhone`	hidden	(field removed)
`TaxAssessedValue`	masked	`"$*,*"`

Example governed response

json

{
  "jsonrpc": "2.0",
  "id": 2,
  "result": {
    "content": [
      {
        "type": "text",
        "text": "[{
          \"ListingId\": \"MLS-2024-12345\",
          \"StreetAddress\": \"123 Main St\",
          \"City\": \"Austin\",
          \"StateOrProvince\": \"TX\",
          \"ListPrice\": 450000,
          \"BedroomsTotal\": 3,
          \"BathroomsTotal\": 2,
          \"ListAgentFullName\": \"Jane Smith\",
          \"ListAgentEmail\": \"***@***.com\",
          \"TaxAssessedValue\": \"$***,***\",
          \"ListOfficeName\": \"Realty Associates\"
        }]"
      }
    ]
  }
}

Note: ListAgentDirectPhone is completely absent (hidden). ListAgentEmail and TaxAssessedValue are masked.

Billing status header

If your billing is past due, governed responses include:

X-Conduit-Billing: past_due

Requests are still processed while past due, but your access will be revoked if billing remains unresolved. See Billing & Usage for details.

Next: Error Handling →

←MCP Tool Routing Error Handling→