AI News HubLIVE
In-site rewrite3 min read

Show HN: Free PDF Document Redaction

A free PDF redaction tool that uses AI to detect sensitive text, requires human review, and produces a flattened download with no live text underneath. Offers private deployment for enterprises.

SourceHacker News AIAuthor: uri_merhav

Redact a PDF the right way.

AI finds the sensitive text, you review every box, and the download is burned in - not a cosmetic overlay. Free, no signup.

Need redaction to stay out of DocuPipe's cloud?

Run redaction as a customer-hosted deployment inside your own cloud account or VPC. Documents, parsed text, redaction boxes, and storage stay in infrastructure you control.

Talk to sales

Burned in, not covered up

A black rectangle is not a redaction

Every famous redaction failure was an opaque box over live text - anyone could copy what was underneath. This download is flattened: pixels masked, text layer removed.

Pixels masked

The redacted regions are rendered out of the page image itself.

Text layer removed

No copy-paste, no find-in-page, no hidden layer for the content under a box.

Same engine as the platform

Detection uses the extraction engine DocuPipe customers run on claims files and medical records.

Enterprise: private deployment

Redaction that stays inside your environment

Redaction is the workload where "send it to a SaaS" is often the wrong answer by policy, not by preference. The documents being redacted are, by definition, the most sensitive ones an organization holds - patient charts, claim files, investigative records, personnel matters. For many hospital systems, insurers, and public agencies, the data-handling rule is simple: it does not enter DocuPipe's cloud.

DocuPipe was built for that rule. For enterprise commitments, the platform deploys into your own cloud account: the API, the OCR engine, the extraction and redaction models, the workers, and the storage all run inside infrastructure you control. The documents, extracted text, and redaction boxes stay there instead of DocuPipe's cloud. Installation is a single command, and a green install includes a live end-to-end test.

Your cloud, your keys

Runs in your cloud account or VPC with your access controls, logging, and retention rules.

Full containment

API, OCR, models, workers, and storage - the whole pipeline, not a proxy back to DocuPipe's cloud.

Same product, same reviews

Your team gets the same workflows and review screens the SaaS runs - inside your environment.

Teams without an in-environment requirement run the same redaction on DocuPipe's cloud, which carries the posture this page runs on: SOC 2 and ISO 27001 certified, HIPAA compliant, encrypted in transit and at rest, documents never used for training, and BAAs executed on paid plans.

Talk to sales about private deploymentRead the security overview →

The same presets, tuned per profession

Pick the categories that match your job, add your own rules in plain language.

HIM / release of information

Producing records with other patients, family members, or restricted information in the margins - names, MRNs, DOBs, and member IDs are the daily categories.

FOIA and public records

Personal-privacy withholdings on responsive records: requester-adjacent names, home addresses, personal phone numbers, and identifiers - before anything hits the reading room.

DSAR and privacy teams

Producing one person's data means removing everyone else's. Third-party names and contact details are the default categories for a subject-access response.

Fictional samples, free to reuse: Medical record (PDF) · Incident report (PDF)

From the blog

A black rectangle is not a redaction

Why cosmetic redactions fail, and how review works here.

Read the post

Questions records and privacy people ask first

Really removed. The downloaded file is a flattened PDF with the redacted pixels masked and the underlying text layer removed - there is no live text under the boxes to copy out. That distinction is exactly where cosmetic-overlay redactions have failed people in public.

Yes, and the tool is built to make that easy rather than to let you skip it. Automated detection is an assist: it can miss context a human would catch, so the review screen shows every proposed box on the real page before anything is downloadable.

Use it as the first pass, not the sign-off. No automated tool can guarantee a legally compliant release - your reviewer makes that call. The infrastructure side is covered: SOC 2 and ISO 27001 certified, HIPAA compliant, encrypted in transit and at rest, and documents are never used to train models.

Adjust the categories or add plain-language instructions ("redact all vehicle plate numbers") and re-run - detection follows your guidelines. Whatever it proposes, the review screen is where you verify before release.

The free tool reads the first 10 pages of a document per run - redaction runs a heavier AI pass per page than plain extraction, so its cap is tighter than our other free tools. A free DocuPipe account raises the limits substantially.

Yes. For enterprise commitments, DocuPipe deploys the platform - API, OCR engine, extraction and redaction models, workers, and storage - inside your own cloud account, so documents stay in your environment instead of DocuPipe's cloud. See the private deployment section on this page.

Yes - DocuPipe workflows run redaction on every document that arrives, by API or upload, with your presets and one review queue.

Run it at scale

Redacting one file is a chore. Redacting everything your team releases is a workflow.

DocuPipe applies your redaction rules to every inbound document and gives reviewers one place to verify and release.

Automate redaction

Free tier included. Takes about a minute to set up.

SOC 2 certified · ISO 27001 · HIPAA compliant · Encrypted in transit and at rest · Never used to train models

Related

Medical recordsInsurance claimsSecurity overviewAll free tools

Feedback on this tool?