GDPR Redaction Guide: Permanently Remove Data

The General Data Protection Regulation (GDPR) has changed the way the world handles digital privacy. Article 17, the 'Right to Erasure', gives individuals the right to have their personal data removed. For businesses sending documents, this presents a peril: How do you truly delete a name from a PDF?
The 'Sharpie' Fallacy
In the physical world, taking a black marker to paper hides the text. In the digital world, drawing a black rectangle over a name using a simple medical editor is dangerous. The underlying text remains in the code layer. A recipient can simply copy the text from 'under' the box, or search for it. This is a common cause of data breaches and results in massive fines.
Sanitization vs. Redaction
- Masking: Overlaying graphics. Not secure.
- Sanitization: Stripping metadata (author names, edit history).
- Redaction: The irreversible removal of data.
How to Redact Correctly
If you don't have expensive enterprise redaction software, the safest method is Rasterization.
- Open the PDF.
- Cover the sensitive info (even with a simple box).
- Convert the PDF to JPG (Images). This 'bakes' the black box into the pixel grid. The text layer is destroyed.
- Convert the images back to PDF.
This method ensures 100% compliance because there is literally no text data left to recover. It is crude, but it is foolproof.
Share this article


