Managing transmission and storage of sensitive data

What is claimed is: 1. A method comprising: maintaining, by a network security appliance logically interposed between a plurality of local clients associated with a private network protected by the network security appliance and a plurality of remote servers residing outside of the private network, a database of sensitive data of a plurality of users of the private network; and facilitating, by the network security appliance, secure submission of sensitive data of a user of the plurality of users in connection with interactions between a local client of the plurality of local clients and a remote server of the plurality of remote servers by: intercepting outgoing traffic from the local client to the remote server; determining whether the outgoing traffic matches a policy of a plurality of policies configured by an administrator of the private network that causes the network security appliance to inject the sensitive data into the outgoing traffic on behalf of the user; and when said determining is affirmative: retrieving the sensitive data from the database; modifying the outgoing traffic by injecting the sensitive data into the outgoing traffic to form modified outgoing traffic; and sending the modified outgoing traffic to the remote server. 2. The method of claim 1 , wherein the policy matches outgoing traffic containing a Representational State Transfer (REST)ful Application Programming Interface (API) call or a HyperText Transfer Protocol (HTTP) POST request method associated with a predetermined website. 3. The method of claim 2 , wherein the predetermined website comprises a banking or online shopping website. 4. The method of claim 1 , further comprising determining, by the network security appliance, an identity of the user. 5. The method of claim 4 , wherein said determining, by the network security appliance, an identity of the user comprises identifying the user based on a source Internet Protocol (IP) address contained within the outgoing traffic. 6. The method of claim 4 , wherein said determining, by the network security appliance, an identity of the user comprises: extracting from the outgoing traffic, by the network security appliance, credential information of the user for accessing the network security appliance; and identifying, by the network security appliance, the user based on the credential information. 7. The method of claim 6 , wherein the credential information is submitted by the user via a modified version of a server login form sent from the remote server to the local client. 8. The method of claim 6 , wherein credential information of the user is submitted by the user via a local login form that was injected by the network security appliance into incoming traffic sent by the remote server to the local client. 9. The method of claim 6 , further comprising: identifying, by the network security appliance, a server login form contained within incoming traffic sent by the remote server to the local client; and modifying, by the network security appliance, the server login form by injecting a prompt for local login credentials into the server login form. 10. The method of claim 1 , further comprising: causing the user to be prompted by the local client to select a preference in relation to injection of the sensitive data by the network security appliance by injecting information into incoming traffic sent by the remote server to the local client; and checking, by the network security appliance, whether the preference selected by the user indicates a desire by the user to have the network security appliance inject the sensitive data by examining the outgoing traffic. 11. The method of claim 1 , further comprising: maintaining, by the network security appliance, a login form database containing representations of a plurality of login forms of a plurality of well-known websites; intercepting, by the network security appliance, incoming traffic from the remote server directed to the local client; identifying, by the network security appliance, the incoming traffic as containing a login form of the plurality of login forms; modifying, by the network security appliance, the incoming traffic to include a modified login form; and sending, by the network security appliance, the modified login form to the local client. 12. The method of claim 1 , wherein the sensitive data comprises one or more of user credential information associated with the remote server, a bank card number and a social security number (SSN). 13. A non-transitory computer-readable storage medium embodying a set of instructions, which when executed by one or more processors of a network security appliance protecting a private network, causes the one or more processors to perform a method comprising: maintaining a database of sensitive data of a plurality of users of the private network; and facilitating secure submission of sensitive data of a user of the plurality of users in connection with interactions between a local client of a plurality of local clients of the private network and a remote server of a plurality of remote servers residing outside of the private network by: intercepting outgoing traffic from the local client to the remote server; determining whether the outgoing traffic matches a policy of a plurality of policies configured by an administrator of the private network that causes the network security appliance to inject the sensitive data into the outgoing traffic on behalf of the user; and when said determining is affirmative: retrieving the sensitive data from the database; modifying the outgoing traffic by injecting the sensitive data into the outgoing traffic to form modified outgoing traffic; and sending the modified outgoing traffic to the remote server. 14. The non-transitory computer-readable storage medium of claim 13 , wherein the policy matches outgoing traffic containing a Representational State Transfer (REST)ful Application Programming Interface (API) call or a HyperText Transfer Protocol (HTTP) POST request method associated with a predetermined website. 15. The non-transitory computer-readable storage medium of claim 14 , wherein the predetermined website comprises a banking or online shopping website. 16. The non-transitory computer-readable storage medium of claim 13 , wherein the method further comprises determining an identity of the user. 17. The non-transitory computer-readable storage medium of claim 16 , wherein said determining an identity of the user comprises identifying the user based on a source Internet Protocol (IP) address contained within the outgoing traffic. 18. The non-transitory computer-readable storage medium of claim 16 , wherein said determining an identity of the user comprises: extracting from the outgoing traffic credential information of the user for accessing the network security appliance; and identifying the user based on the credential information. 19. The non-transitory computer-readable storage medium of claim 18 , wherein credential information of the user is submitted by the user via a local login form that was injected by the network security appliance into incoming traffic sent by the remote server to the local client. 20. The non-transitory computer-readable storage medium of claim 13 , wherein the sensitive data comprises one or more of user credential information associated with the remote server, a bank card number and a social security number (SSN).