Does SafeRedact send my documents to a third-party AI service?

SafeRedact's privacy policy lists Anthropic as a sub-processor and their security page states that extracted document text is processed by Anthropic's Claude API. Original file binaries stay in the browser; the text content extracted from them is encrypted with AES-256-GCM and sent to Anthropic for AI detection. PII Anomalyzer runs detection entirely on your device with no third-party API involvement.

Is SafeRedact HIPAA compliant?

SafeRedact's security page states explicitly: 'SafeRedact is not HIPAA compliant and does not offer BAAs.' If you handle Protected Health Information (PHI), SafeRedact directs users to consult their compliance officer before using the tool. PII Anomalyzer's local processing supports HIPAA-aligned workflows because no document data leaves your device.

How does SafeRedact pricing compare to PII Anomalyzer?

SafeRedact offers a $12 day pass, $29/month plan, or $99/year plan. PII Anomalyzer is $249/year. SafeRedact is $150/year less expensive at the annual tier; the difference reflects what each tool is built for — SafeRedact is a browser-based tool with cloud-AI detection, PII Anomalyzer is a desktop application with on-device AI.

What file formats does SafeRedact support?

On SafeRedact's standard annual plan ($99/yr), supported formats are PDF, JPG, and PNG. The Enterprise tier expands support to 10 file types — PDF, DOCX, XLSX, EML, MSG, HTML, TXT, CSV, JSON, and ZIP — but is priced via custom contact-sales quotes, not a published rate. PII Anomalyzer accepts PDF, DOCX, XLSX, XLS, XLSM, XLSB, and plain text in its single $249/year tier — no Enterprise upgrade or sales call needed. Office files are converted to PDF locally for redaction.

vs SafeRedact

Where does your document text actually go?

SafeRedact says files stay in your browser. They do. But the text extracted from them is sent to Anthropic's Claude API for AI detection. PII Anomalyzer detects, anonymizes, and redacts PII entirely on your device. Here's what that means and how to decide.

Start Free 7-Day Trial See the Architecture

Built by Southwest Management Technology Code-signed by DigiCert Notarized by Apple

Architecture

Two different answers to the same question

Both tools redact PII. They get there by different paths. The path matters when your documents are privileged, regulated, or confidential.

SafeRedact

Browser-based, cloud-AI detection

1. PDF opens in your browser
2. Text is extracted client-side
3. Extracted text is encrypted with AES-256-GCM
4. Encrypted text sent over TLS to Anthropic's Claude API
5. Anthropic returns detection results
6. Redactions applied in your browser

Original file binary never leaves the browser. Extracted text content does. Source: SafeRedact privacy policy and security architecture page.

PII Anomalyzer

Desktop app, local AI detection

1. PDF opens on your device
2. AI models run on your device
3. Detection completes on your device
4. Redactions applied on your device
5. Output saved on your device
6. No third-party API in the path

Document content never crosses your network. Any network activity the app does perform is for software housekeeping, never document content. See our security page for the full network call disclosure.

Pricing

$150 more per year. Here's what that buys.

SafeRedact at $99/yr is genuinely well-priced for browser-based redaction. The question is whether the architecture fits your work.

SafeRedact

$99/yr

$29/mo, or $12 day pass

Browser-based redaction with detection routed through Anthropic's Claude API. Free tier outputs include a watermark.

PII Anomalyzer

$249/yr

7-day free trial included

Desktop redaction with local AI detection. No third-party APIs in the document path. More file formats supported.

Feature by feature

What each tool actually does

Verified against SafeRedact's pricing, privacy, and security pages as of May 2026.

Capability	PII Anomalyzer	SafeRedact
Document text stays on your machine SafeRedact: extracted text sent to Anthropic API
Local AI (no third-party API for detection) SafeRedact: uses Anthropic's Claude API
Works without internet connection SafeRedact: requires internet for AI detection
PDF redaction
Accepts Word and Excel files as input on the standard plan SafeRedact: annual plan supports PDF, JPG, PNG only; DOCX/XLSX requires Enterprise tier (contact-sales pricing)
HIPAA-aligned workflows SafeRedact: vendor states not HIPAA compliant and offers no BAAs
Batch processing in non-enterprise tier SafeRedact: batch available on Enterprise tier only (contact-sales pricing)
Re-identification workflow (anonymize, share, translate back)
Free trial without watermark SafeRedact: free tier outputs include watermark

When SafeRedact is wrong for the job

Three contexts where the architecture matters

If any of these apply, sending document text to Anthropic isn't a feature comparison — it's a workflow blocker.

Cloud-AI prohibition

Government contracts, defense work, financial services WISP requirements, internal policies that prohibit third-party AI processing of work product.

The blocker

Routing extracted document text to Anthropic's API is a no-go regardless of encryption in transit. The text leaves your environment to a third-party processor.

In PII Anomalyzer

PII Anomalyzer's local AI keeps document text on your device. No third-party API in the document path means no contract or policy review of an AI processor — there isn't one.

Attorney-client privileged work

Discovery productions, privilege reviews, settlement drafts, client communications under ABA Model Rule 1.6 confidentiality obligations.

The blocker

ABA Formal Opinion 512 (issued July 2024) addresses lawyers' duty to evaluate whether generative AI tools preserve client confidentiality under Model Rule 1.6. Sending privileged text to an outside API at minimum requires that evaluation; not sending it sidesteps the question entirely.

In PII Anomalyzer

Local AI means no third-party processor holds your document text, even momentarily. The confidentiality analysis is simpler when nothing leaves your device.

HIPAA-touched documents

Patient records, billing documents with PHI, healthcare disclosure requests, medical research data, any document touched by 45 CFR Part 164.

The blocker

SafeRedact's own security page states: "SafeRedact is not HIPAA compliant and does not offer BAAs." If you handle PHI, SafeRedact directs you to consult your compliance officer.

In PII Anomalyzer

PII Anomalyzer's local processing supports HIPAA-aligned workflows because no document data leaves your device — there's no covered entity disclosure to manage.

The fair read

SafeRedact is well-built. Their disclosure is clear.

SafeRedact's privacy policy names Anthropic as a sub-processor. Their security page describes the dual-layer encryption and the Claude API routing in plain language. The AES-256-GCM encryption is real. The "files stay in your browser" claim is accurate for original file binaries.

For users who don't have policies prohibiting third-party AI processing, who aren't handling privileged or PHI documents, who need quick browser-based redaction at $99/year — SafeRedact is a credible option. Their honesty about what they do is a feature, not a flaw.

The architecture is just different. SafeRedact ships your document text to Anthropic. PII Anomalyzer ships the AI to your computer. Both approaches work. They're not equivalent. The right choice depends on whether your threat model includes "outside parties processing your document content."

PII Anomalyzer supports redaction workflows aligned with HIPAA, GDPR, CCPA, FERPA, GLBA, and the EU AI Act. The tool doesn't carry those certifications — your compliance program does — but because no document text reaches a third-party processor, there's no sub-processor disclosure or BAA gap to work around.

Try local-AI detection, anonymization, and redaction free for 7 days

Run PII Anomalyzer on your own documents — including the ones you can't send to a third-party AI service.

Start Free 7-Day Trial

vs Adobe → vs Foxit →

7-day free trial · $249/year · Windows & macOS