HIPAA redaction guide

HIPAA-friendly image redaction

HIPAA's Privacy Rule requires that protected health information (PHI) be stripped or de-identified before sharing for non-treatment purposes. Redacted helps you cover the obvious identifiers in a medical screenshot or scan without sending it anywhere.

The 18 HIPAA identifiers, briefly

HIPAA lists 18 categories of identifying information that must be removed for "Safe Harbor" de-identification. Redacted helps with the most visible ones:

It does not, on its own, handle every category — biometric identifiers, photographs, and unique identifying characteristics often need manual review.

How to redact PHI in an image

  1. Drop or paste the medical image into Redacted.
  2. Click Detect text for the auto pass.
  3. Manually mask anything the detector didn't catch: dates, internal IDs, badge photos, MRZ lines.
  4. Use black-box masking on text — pixelation and blur can sometimes be partially recovered.
  5. Download the cleaned image.

Important: this is a tool, not a compliance product

Redacted is an in-browser editor. It's appropriate for:

It is not a substitute for your organisation's HIPAA-compliant document handling, audit trails, or BAA-covered processors. Treat this as the "before" step in a manual workflow, not as a regulated pipeline.

Privacy

The image, the OCR result, and the PII detection all stay in your browser. There is no upload and no third-party request.

FAQ

Is Redacted HIPAA-compliant?

HIPAA compliance is a property of an organisation's overall workflow, not a single tool. Redacted does not move PHI to a server, which simplifies your local handling — but you're still responsible for what you do with the redacted output.

Are dates of birth detected?

Date detection is hit-or-miss. Always review and add a manual mask if needed.

Can I redact a hospital wristband photo?

Yes. Use a manual mask over the barcode and printed text.

Redact PHI in an image

Related Redacted pages

AI image redaction tool

AI-assisted image redaction that runs entirely in your browser. Detects and masks personal information automatically — no upload, no account.

Auto-redact image online

Automatically detect and redact emails, phone numbers, names, addresses, and other personal information in an image. Runs in your browser, no upload.

Black out text in image online

Black out text in an image online with solid redaction boxes. Hide names, messages, addresses, and private details in your browser.

Blur email address in a screenshot

Blur or black out email addresses in a screenshot before you share it. Auto-detect or manual, works in your browser with no upload.

Blur face in photo online

Blur a face in a photo online for privacy. Free browser-based face redaction with no upload or account.

Blur part of image online

Blur a selected part of an image online. Hide faces, text, objects, or private details without uploading your image.

Browse all guides