Security
Security and privacy are fundamental to OpenRedaction. Our architecture is designed to minimize data risk and give you complete control over your sensitive information.
Zero Data Retention
When self-hosted, OpenRedaction processes all text in memory and never persists it to disk or databases. Your data is processed and immediately discarded - we store nothing.
Self-Hosted Control
Deploy OpenRedaction on your own infrastructure for complete control over your data. Your sensitive information never leaves your environment, ensuring maximum security and compliance.
Transparent Detection
All regex patterns are open source and fully auditable. You can review, test, and verify every detection pattern. No black box AI - complete transparency in how PII is detected.
Hosted API Security
When using the hosted API, your text is processed in memory and never stored. Minimal metadata may be logged for rate limiting and abuse prevention. See our Privacy Policy for details.
Security Best Practices
- Self-host for maximum security and data control
- Review and audit all regex patterns before deployment
- Use API keys for authenticated access to hosted services
- Monitor and log access to sensitive data processing
- Keep the library updated with the latest security patches
Reporting Security Issues
If you discover a security vulnerability, please report it responsibly. Open an issue on GitHub or contact us through our contact page.