// SECURITY
Security at RedactZero
RedactZero is built for organizations that handle sensitive data. Here is how we protect it.
No external API calls
All AI processing runs on our own infrastructure. Your content is never sent to OpenAI, Google, Amazon, or any other third-party AI provider.
Zero-retention processing
All documents are processed entirely in memory. No file content is written to disk, no database records are created, and nothing is retained after your session. We generate cryptographically signed audit receipts returned to you — never stored on our servers. You own your audit trail.
On-premises deployment
Enterprise and Government customers can deploy RedactZero on their own infrastructure. All AI models are open-weight and self-hostable, giving you full data sovereignty.
Encryption in transit and at rest
All connections use TLS 1.3. Any metadata stored on Team and Enterprise plans (redaction logs, not document content) is encrypted at rest using AES-256.
Access controls
Team and Enterprise plans include role-based access controls, SSO integration, and audit logging of user actions within the platform.
We will never:
- Send your content to third-party AI providers
- Store original or redacted document content
- Use your data to train AI models
- Share your data with advertisers or data brokers
- Access your content without your explicit request
For security inquiries or to report a vulnerability, contact us at security@redactzero.com.