Security overview

All data transmitted between your browser and DeletePII uses TLS 1.2 or higher. File uploads, API calls, Vault operations, and secure-link delivery are all encrypted in transit. Plain HTTP connections are redirected to HTTPS.

Files stored in Vault and processed artifacts are stored in Backblaze B2 object storage with server-side encryption at rest. Database records, including audit logs, run metadata, and user account data, are stored on encrypted volumes.

API keys, storage credentials, email provider credentials, and session secrets are stored in secured environment variables — never in source code or client-side bundles. Secrets are rotated on credential compromise and are not logged.

DeletePII uses authenticated sessions for all workspace operations. Users can only access their own documents, Vault files, redaction runs, and audit records. Shared-organization policy controls are available on eligible plans. Administrators can restrict access to artifacts and policy configuration.

Every redaction run records: source file hash, output file hash, detection metadata, OCR metadata, AI review status, finding decisions, export destination, operator identity, and timestamp. This gives teams a traceable, tamper-evident record of how each document was processed.

Redacted outputs can be delivered via expiring secure links rather than raw email attachments. Secure links reduce the risk of forwarding or re-sharing sensitive files. Link expiration is configurable.

AI review is optional and must be explicitly enabled per run. When disabled, no document content is sent to external AI providers. When enabled, only selected text excerpts are sent to the AI review provider — not full documents. Human review remains the required control point before any redaction is finalized or exported. See our subprocessors page for AI provider details.

Documents and Vault objects can be deleted by the account holder at any time. Retention policies are configurable on eligible plans. Deleted files are removed from active storage. Contact support for data deletion requests or account closure procedures.

To report a security vulnerability, contact us at [email protected] with subject line "Security Disclosure." We aim to acknowledge security reports within 2 business days.