Auto redact private files offline before sending to Ai.
Drop a PDF in and Cover does the hard part. It finds the private info and redacts it for you, far more precisely than an Ai would (Ai over-redacts leaving a mess to clean-up). Every redaction is then yours to check and fix in seconds with single clicks.
Your original is never touched. The redacted copy saves as name-redacted.pdf next to the original, or click the arrow by Save to choose where it goes.
Most edits only take a click or a simple drag.
Good to know
Toggle on or off an entire page's redactions in the right sidebar view.
Hover your cursor over a redaction to see the original text. Or toggle using the eye icon in the header.
Flip bars into tags like [ACCOUNT 1], a structure an Ai can read, not the values.
Redact a name with a click. Our engine redacts it everywhere else in the PDF for you. Works in reverse, too.
What's new
Sent setup tips to your inbox too.
Preferences · ⌘,
Built for reviewers who need defensible output, not a black rectangle with the text still live underneath. What it detects, how it removes it, and where it maps to the standards you check.
Two behaviors reviewers tend to care about most. First, every save is self-verified: Cover re-reads the finished file and confirms the removed text is byte-absent, including compressed data and leftover file history, or it refuses to save. Second, every save can include a redaction certificate and log, a page-by-page record of what was removed and which checks the file passed.
Automatically, across body text, hidden form fields, and scanned images:
| Standard | What Cover does |
|---|---|
| NSA/CSS PDF redaction | Hidden content and metadata cleared |
| Fed. R. Civ. P. 5.2 / 49.1 | Helps filers meet the personal-identifier rules: SSNs, tax IDs, birth dates, financial accounts |
| HIPAA Safe Harbor (45 CFR §164.514) | Safe Harbor identifier categories covered |
| PCI-DSS Requirement 3 | Card numbers (PAN) fully redacted |
| GDPR Arts. 4, 28, 44–49 | Redacted output, processed fully on-device, no third-party processor involved |
| NIST SP 800-171 / CMMC Level 2 | Fully offline, no network egress |
| NARA FOIA processing | OCR runs on scans before redaction |
| EDRM / Sedona | Redaction certificate & per-run log (Enterprise tier) |
| SOC 2 | Designed to support your organization’s confidentiality controls (CC6.1 / C1.2) |
Not in scope: per-redaction FOIA exemption codes, native e-discovery load files (Relativity, Concordance).