Documents are redacted in a secure environment and are impossible to recreate

With Cleardox´s software redaction tool you don´t need to worry about security. We provide an encryption system that works at both the client level and the document level. Our encryption process prevents any outside party from gaining access to your documents and guarantees you the highest level of security. 

 

What’s more, you don’t need to be concerned that your redacted content can be removed and recreated. Cleardox creates a whole new document and makes it impossible to restore the original document.

Cleardox protects your documents 

Cleardox redaction tool stores your document in a secure environment Client A Client B

Cleardox ensures a high level of security to protect your company's documents. 

The three levels of security

We know that documents redacted in Cleardox are often highly sensitive and understand the serious damage a document leak can cause a company. That’s why Cleardox has implemented the highest level of security to protect your documents from cyber attacks. Our security incorporates the following 3 features:

1. A secure TLS connection from the Cleardox website to the Cleardox backend. 

2. A client-based encryption that ensures that each client has their own protected domain in Cleardox.

3. A document-based encryption that ensures that each document is protected with its own unique key.

Security level 1 - before redaction starts

Frontend to backend. Before redaction process starts

When you upload a document to Cleardox, the document will be securely transferred to the Cleardox platform using a secure TLS connection. A TLS connection uses encryption algorithms to scramble data in transit, preventing hackers from reading it as it is sent over the connection. TLS ensures that your document can move safely from the Cleardox frontend to the Cleardox backend when it needs to be redacted.

Security level 2 - the redaction process

Client and document encryption. The redaction process. 

In the Cleardox platform, encryption occurs at 2 levels – at the client level and the document level. 

 

Client encryption ensures that in the unlikely event that one of Cleardox's clients experiences a security breach, it is only that client´s documents that are accessible. Not yours.

 

On top of that, each document is symmetrically encrypted with a unique key, using ‘envelope encryption’. This means that the document is encrypted with a key, which in turn is encrypted (a key within a key). Decrypting the key to the document requires a different key. This key is retrieved in a separate Google service known as the Google Key Management Service. In other words, two unique keys must be used to decrypt a single document. 

So, even if a hacker gained access to your database, they would not be able to read your documents. They would need to obtain a unique key to open your encrypted documents.

Security level 3 - after document is redacted  

Transfer redacted document to file storage

After you have redacted your document, it is deleted from Cleardox's database. It is then transferred to Google’s file storage, can no longer be accessed from the internet and remains encrypted.

Cleardox are redacting your documents in a safe and compliant cloud 

The documents redacted in Cleardox are often classified documents containing highly sensitive information.

The General Data Protection Regulation (GDPR) says that if you are using cloud-based services to store documents, you have the right to inspect the data centers. 

 

This is one of the reasons Cleardox has chosen to use the Google Cloud platform. 

​Google allows its customers to make physical inspections of its data centers. So, in using Cleardox to redact your documents, you are acting in accordance with GDPR.

Redacted parts cannot be removed once they’re redacted

Cleardox ensures that your redacted document cannot be restored, easing any concerns that others can restore your original document and read your sensitive information. 

Cleardox works like this. When you upload your document to Cleardox, it creates a new version of the document. In this new version, all meta-data is removed from the document. Metadata is data that you, as the reader, cannot immediately see. Examples of metadata are:

​​

​​

  • Comments, track changes and names of the people who created them. 

  • Annotations and names of the people who made them.

  • Personal information associated with the document, for example, author, title of document, date and location, template names and so on.

  • Watermarks and information contained in the header or footer. 

  • Saved text in the document that the reader cannot see but is still there. 

  • Information about the server on which the document was originally stored.


  

What’s more, you don’t need to be concerned that your redacted content can be removed and recreated. Unfortunately, there are many cases where redacted documents have been recreated simply by copying the text into a new file. In fact, our research shows that the only reason many continue to redact documents manually, particularly those working for public institutions, is out of fear that sensitive content can be removed and recreated from documents redacted through non-manual processes.  


 

But when you redact documents in Cleardox, the original content is permanently removed from the document. As the original content is no longer in the document, it’s impossible to recreate the original content.​

 

With Cleardox, you can safely assume that the original content is not able to be read or accessed.

Cleardox redaction tool makes it impossible to read redacted content Removal of unique metadata Original document Brand new redacted document Irreversible

Cleardox makes redaction easy with integrations

 

Cleardox’s open APIs allow for seamless integration of the Cleardox platform with your company's document management system. This means you can redact your documents in the system where you usually work without having to download the documents to your desktop first in order to upload it to Cleardox.

unnamed-3.png

An open import API ensures that you can download the document directly into Cleardox and begin redacting. And an open export API means you also don't have to save the redacted document on your desktop before uploading it to your document management system. The API ensures that it moves directly back into your system.

An integration with Cleardox ensures that manual workflows are removed – less workflows, less clicks, less time. 

 

At Cleardox, we are continually integrating with the most known document management systems. If we don't have the integration for your company's document management system, we can easily build it.

 

Contact us today to learn more about our integrations.