Redact Sensitive Data.
Disarm Dangerous PDFs.
Your PDFs Aren't Just Leaking Data.
Some of Them Are Running Code.
A modern PDF can execute JavaScript on open, fire auto-actions on save or print, embed .exe and .js attachments, and chain payloads through form fields and annotations — the same vectors used in CVE-2026-34621-class weaponized-PDF attacks. Every document you open in PDFRedaction is scanned for these threats and automatically neutralized during redaction — locally, in your browser, with zero uploads.
1. Scanned on upload
The PDF object graph is walked locally. Catalogs, pages, annotations, fields, and embedded files are checked against 10 threat categories.
2. Threats surfaced
Every finding appears in the review panel with CRITICAL / HIGH severity — auto-selected for neutralization so nothing is missed.
3. Neutralized on export
Dangerous objects are stripped from the PDF — not hidden, not flagged, actually removed — and the clean PDF is downloaded to your device.
How It Works
Three steps. Everything happens on your device. Nothing is uploaded anywhere.
Upload Your Document
Drop a PDF into the browser. The file is processed locally — document content is never sent to our servers.
AI Detects PII Locally
Names, emails, SSNs, credit cards, medical IDs, and 50+ supported entity types are found automatically using AI that runs entirely in your browser.
Download Redacted PDF
Sensitive data is replaced, masked, or transformed. You download the clean file. No copy ever exists on any server.
See It in Action
Try the interactive playground \u2014 experience AI-powered PII detection that runs entirely in your browser.
Built for Regulated Industries
Smart PII Detection
Instantly identify 50+ types of PII including names, credit cards, SSNs, medical licenses, and crypto addresses using advanced NLP models.
Your Document Content Stays Private
AI detection, analysis, and redaction run locally in your browser. Document content is never transmitted to our servers — only account and usage management communicates with us.
Full PDF Redaction in Browser
Upload a PDF, detect PII with local AI, and download a redacted PDF with layout preserved. 8 built-in redaction methods, all running in your browser.
Cyber Cleaning Built In
Every PDF is scanned for embedded JavaScript, auto-actions, XFA scripts, and dangerous attachments. Threats are stripped from the file — not just flagged.
Built for Regulated Industries
Purpose-built redaction solutions for organizations that handle sensitive information under strict compliance requirements.
Legal
Attorney-client privilege protected. AI redaction runs locally so document content never reaches external servers.
Healthcare
HIPAA-compliant PHI de-identification. AI analysis runs locally so no PHI is transmitted to any server.
Government
Classified and sensitive documents processed locally. No external data transmission during redaction.
Financial
PCI DSS data processing in browser sandbox. Credit card validation via Web Crypto.
Built for Privacy-First Workflows
PDF Redaction is designed for teams that need a fast, secure workflow without routing sensitive files through external systems. AI detection and redaction run locally in the browser — our servers handle only account and usage management.
Browser-First Experience
Upload, detect, review, and redact in one interface without moving documents off the device you are using.
Secure by Architecture
Document content never reaches our servers. Server communication is strictly limited to account authentication and usage management.
Transparent by Design
The split-plane architecture separates local AI processing from server-side account management, ensuring your sensitive data stays private.
1. Open a document in the dashboard
2. Detect names, emails, IDs, and financial data
3. Review matches directly in the browser
4. Apply redaction, masking, or replacement
5. Download the cleaned PDF locallyAI That Processes Your Data Locally — Not on Someone Else's Server
Tools like Redactable, iDox.ai, and cloud AI services upload your documents to their servers for processing. PDFRedaction is different — your documents are loaded into the app in your browser and never transmitted to any server.
| Feature | PDFRedaction | Adobe Acrobat | Redactable / iDox.ai |
|---|---|---|---|
| Documents never transmitted to any server | |||
| Detects & neutralizes malicious PDF code (JS, auto-actions, XFA, exe attachments) | |||
| Automatic AI PII detection | |||
| 50+ entity types (SSN, PHI, PCI, etc.) | |||
| OCR for scanned documents | |||
| Bulk processing | |||
| PDF signing & stamping (upload, draw, position) | |||
| No subscription to desktop software required | |||
| HIPAA, GDPR, PCI DSS compatible by design |
Pricing Roadmap
Free is live now.
Free
- 10 documents/day for registered users
- 50+ PII types detected
- 100% local processing
- Document preview
Professional
- Higher daily document limit
- Batch processing
- Priority detection
- Email support
- Advanced workflows
Enterprise
- Everything in Professional
- Custom detection rules
- Compliance audit logs
- SLA guarantee
Frequently Asked Questions
Everything you need to know about PDFRedaction.
What is Cyber Cleaning and how does it protect me from malicious PDFs?
+
Cyber Cleaning is our PDF security threat detection and neutralization engine. Modern PDFs can contain embedded JavaScript, auto-actions that fire on open/save/print, XFA forms with scripts, JavaScript-laden annotations, and dangerous attachments (.exe, .js, .bat, .dll, .ps1). PDFRedaction scans every document for 10+ categories of malicious elements and automatically strips them from the PDF object graph during redaction — directly countering weaponized-PDF attacks like CVE-2026-34621-class vectors. All scanning happens locally in your browser, alongside PII detection, with zero uploads.
Does PDFRedaction upload my documents to a server?
+
When you open a document in PDFRedaction, it is loaded into the app running in your browser — by design, it is never transmitted to our servers. AI detection, processing, and redaction all run locally on your device. The only server communication is for account authentication and usage management.
What types of sensitive data can PDFRedaction detect?
+
PDFRedaction detects 50+ PII entity types including names, email addresses, phone numbers, US Social Security Numbers (SSN), credit card numbers, IBAN, medical IDs (NPI, MBI, MRN), driver's licenses, tax IDs, crypto wallet addresses, and more. It supports US, UK, EU, Australian, Singaporean, Indian, and Israeli entity formats.
Is PDFRedaction HIPAA compliant?
+
PDFRedaction is designed to be HIPAA compatible. Because all AI processing runs locally and no Protected Health Information (PHI) is ever transmitted to our servers, it does not act as a Business Associate requiring a BAA. It also supports GDPR, CCPA, PCI DSS, GLBA, SOX, and FERPA by the same principle — local-by-design means no regulated data ever reaches our infrastructure.
How does local AI processing work?
+
PDFRedaction runs advanced AI models directly in your browser using technologies built into modern browsers. When you open a document, it is loaded into the app locally — AI analysis using 50+ entity recognizers runs on your device, redaction is applied, and the output is produced without anything leaving your browser. This is local-by-design, not local-by-policy.
What redaction methods are available?
+
PDFRedaction offers 6 redaction methods: Replace (substitute with entity label like <SSN>), Redact (black box), Mask (show partial data, e.g. ****1234), Hash (MD5, SHA-256, or SHA-512), Keep (preserve as-is), and Custom (define your own replacement text).
What file formats does PDFRedaction support, and what gets redacted inside a PDF?
+
PDFRedaction supports PDF documents, image files (JPG, PNG, TIFF, BMP), and text-based formats (TXT, CSV, JSON, XML, HTML, Markdown). OCR is included for scanned PDFs and image-based documents. Inside PDFs, redaction covers visible text, images, inline images, tables, columns, form fields, comments, annotations, and document metadata — ensuring no sensitive data remains in the file.
Can I sign or stamp PDF documents after redacting them?
+
Yes. PDFRedaction lets you add signatures and stamps to PDFs directly in the browser. Upload a signature image or sign directly on screen, then position and resize it anywhere on the document. Everything happens locally — the signed PDF is downloaded to your device without being transmitted to any server.
How is PDFRedaction different from Redactable, iDox.ai, or Adobe Acrobat?
+
Cloud tools like Redactable and iDox.ai upload your documents to their servers for AI processing. Adobe Acrobat requires manual pattern entry with no automatic AI detection. PDFRedaction combines automatic AI PII detection with 100% local processing — documents are loaded into the browser app and never transmitted to any server. It also redacts images, inline images, tables, forms, comments, annotations, and metadata inside PDFs, supports OCR for scanned documents, and includes PDF signing and stamping.
Is PDFRedaction free to use?
+
Yes. Registered users get 10 documents per day on the Free plan at no cost. Paid plans with higher document limits, batch processing, and advanced workflows are coming soon.
Redact the Data. Disarm the File. Keep It Local.
Every PDF you open is scanned for 50+ PII types and 10+ classes of malicious code — JavaScript, auto-actions, XFA scripts, and dangerous attachments are stripped from the file, not just flagged. All of it happens in your browser. Start free.