Following incidents involving incorrectly redacted documents, the Information Governance team would like everyone to understand what they should be doing when removing sensitive information from documents.
‘Redaction’ is the process of removing privileged or private data from documents.
There are many things you might want to redact in your document: patient or staff information, phone numbers, NHS numbers, email addresses, employee ID numbers, and many more.
The old way of doing it would be to:
So, until fairly recently, all you needed to achieve secure redaction was a thick permanent marker.
Word (and other software) has attempted to keep this simplicity alive with ‘virtual’ black markers.
But this do-it-yourself redaction doesn’t really work.
Remember, what you see on your screen isn’t all there is going on. Just because you see a black box over text, it doesn’t mean the text isn’t there anymore.
So, what you need is a way to ‘burn-in’ the redactions properly.
Applications like Adobe Acrobat Pro have redaction tools that provide this level of security.
They create new documents that have irreversible redaction.
The PDF downloadable below explains what is, and what is not secure digital redaction and the tools that you can use to achieve it.