RedactRocket LogoRedactRocket

Security & Privacy

Your documents contain sensitive information. Here's how we protect them.

Secure cloud

Encryption in Transit

All data transfers use TLS encryption. Your documents are protected from the moment they leave your device until results are returned.

On‑premises

No Document Storage

Uploaded PDFs, redacted PDFs, extracted text, prompts, and model responses are processed transiently and are not stored by RedactRocket.

Audit trail

Preview Before Export

Review all detected redactions before finalizing. See exactly what will be removed—no surprises when you share the final document.

Language aware

Regional Processing on Request

Your data is processed on secure enterprise cloud infrastructure. EU- or US-based processing is available on request for customers with data residency requirements.

Hidden content

Never Used for Training

Your documents are never used to train AI models. Period. We use enterprise-tier AI infrastructure with strict data handling agreements.

Privacy shield

Permanent Redaction

Redacted pages are flattened to images. The original text is completely removed—it cannot be recovered, selected, or searched.

How We Process Your Documents

1

Upload

Your PDF is uploaded over an encrypted TLS connection directly to our processing infrastructure.

2

Text Extraction

If needed, OCR extracts text from scanned pages. Document content is processed transiently and not stored by RedactRocket.

3

AI Analysis

Text is analyzed by enterprise AI to identify content matching your instructions. Document content is not retained for training or provider review.

4

Preview & Export

You review and approve redactions in your browser. The final PDF with permanent redactions is generated and downloaded directly to your device.

Processing Ends

Document content is discarded after processing. Limited operational metadata may remain temporarily for reliability, billing, and abuse prevention.

Compliance

GDPR Ready

EU or US data processing on request, data subject rights support, and privacy-by-design architecture.

SOC 2 Infrastructure

Our cloud infrastructure providers maintain SOC 2 Type II compliance.

DPA Available

Data Processing Agreements available for enterprise customers with specific compliance requirements.

Security FAQ

Where are my documents processed?

Documents are processed on secure enterprise cloud infrastructure. EU- or US-based processing is available on request for customers with data residency requirements.

How long do you keep my documents?

We don't store uploaded documents, redacted PDFs, extracted document text, prompts, or model responses. We retain limited operational metadata such as page count, file size, processing time, token usage, and errors for reliability, billing, and abuse prevention. See our Privacy Policy for details.

Are my documents used to train AI?

No. We use enterprise-tier AI services configured so customer document content is not used for model training or provider human review.

Can redacted text be recovered?

No. Pages containing redactions are flattened to images during export. The underlying text layer is completely removed and cannot be recovered by any means.

Do you have SOC 2 / ISO 27001 certification?

Our cloud infrastructure providers maintain SOC 2 Type II and ISO 27001 certifications. For enterprise customers with specific certification requirements, please contact us to discuss your needs.

Enterprise Security Requirements?

Need custom security configurations, DPA, or specific compliance certifications? Let's talk about your requirements.

Contact Us

For full details, see our Privacy Policy and Terms of Service.