Why redactions fail — and why it keeps happening
A PDF is not a single layer. It has a visual rendering layer — what you see on screen — and a content stream, which contains the raw text objects, font data, and metadata that make up the document. When most people "redact" a PDF, they add a black rectangle to the visual layer. The content stream is untouched.
The result looks redacted. But the text is still there, encoded in the document's internal data structure, fully accessible to any PDF reader that exposes the text layer — which includes every PDF viewer, every screen reader, and the Ctrl+A keyboard shortcut.
This is not a software bug. It is the correct behaviour of annotation tools — they are designed to layer content over a document without destroying the underlying data. The problem is when annotation tools are used to perform what professionals expect to be a security operation.
Real-world redaction failures
The Department of Justice published documents in the Jeffrey Epstein case with visual black-box redactions. The redactions were purely decorative — black rectangles placed over text without modifying the content stream. Anyone who opened the document and pressed Ctrl+A → Ctrl+C → paste into a text editor could read the supposedly hidden names and information. The documents were withdrawn and re-issued after the failure was publicly identified.
Paul Manafort's lawyers filed a court document with black highlighting over sensitive text discussing his communications with Konstantin Kilimnik — a figure with alleged Russian intelligence connections. Journalists at BuzzFeed News discovered that selecting the text and pasting it into a text editor revealed the content in full. The filing disclosed that Manafort had shared campaign polling data with Kilimnik during the 2016 presidential campaign.
Apple filed court documents in their patent dispute with Samsung. Sections containing confidential smartphone market data were marked as redacted. The redaction was visual-only — the underlying financial figures were recoverable by standard copy-paste. The documents had to be refiled.
NSA documents published by the New York Times during the Snowden disclosures contained what appeared to be redacted names of intelligence personnel. The visual overlays did not remove the content from the document stream. The identity of at least one NSA analyst involved in Al Qaeda-related operations was recoverable through copy-paste.
These are not isolated incidents from a pre-digital era. They are systematic failures caused by using the wrong tool for a security-critical operation. They keep happening because most PDF software makes it easy to draw a black box and hard to understand that drawing a box is not the same as deleting text.
Fake redaction vs. true redaction
The distinction is architectural:
| Property | Fake redaction (masking) | True redaction (stream deletion) |
|---|---|---|
| What it does | Places a visual overlay over the text | Removes text from the PDF content stream |
| Underlying text | Still present, selectable, copyable | Permanently deleted — cannot be recovered |
| How to detect | Ctrl+A, copy, paste into Notepad — text appears | Ctrl+A, copy, paste — nothing there |
| Metadata | Original metadata preserved | Metadata scrubbed during redaction |
| File size | Same or slightly larger | Often smaller (removed content) |
| How it's created | Rectangle annotation tool, black highlight, shape tools | Dedicated Redact tool in software |
| Reversible? | Yes — remove the overlay annotation | No — permanent |
A PDF editor that offers a "draw rectangle" tool, an annotation tool, or a "highlight in black" feature is offering masking — not redaction. The only tools that perform true redaction have a dedicated redaction workflow that explicitly replaces the text object in the content stream.
How to check a document you receive
This is the workflow that is entirely absent from every other redaction guide: verifying a document you receive, not one you are creating.
Legal professionals, journalists, FOIA requesters, compliance officers, and court clerks regularly receive documents that are supposed to be redacted. Here is how to verify them:
Manual verification (30 seconds)
- Open the PDF in any viewer (Chrome, Edge, Adobe Reader, Foxit)
- Press
Ctrl+Ato select all content in the document - Press
Ctrl+Cto copy - Open Notepad (not Word — Word may reformat) and press
Ctrl+V - Search (Ctrl+F) for words or names you expect to be redacted
- If they appear in the text: the redaction is fake. The document should not be trusted or distributed.
Vexifa PDF Suite checks this automatically every time you open a PDF. If it detects text beneath visual redaction overlays, it flags the document immediately — before you act on information that was supposed to be hidden. The integrity check is in the free tier.
Windows tools that redact correctly — and ones that don't
| Tool | True stream redaction | Integrity check | Pattern redaction | Cost |
|---|---|---|---|---|
| Vexifa PDF Suite | ✓ Yes | ✓ Yes | ✓ Yes | Free |
| Adobe Acrobat Pro | ✓ Yes (Redact tool) | ✗ No | ✓ Yes | $239/yr |
| PDF-XChange Editor | ✓ Yes (Redact tool) | ✗ No | ~ Basic | $62 one-time |
| PDFgear | ✓ Yes | ✗ No | ✗ No | Free |
| Foxit PDF Editor | ✓ Yes | ✗ No | ✓ Yes | $108/yr |
| LibreOffice Draw | ~ Partial (export) | ✗ No | ✗ No | Free |
| PDF24 / Smallpdf (online) | ~ Varies by tool | ✗ No | ✗ No | Free (uploads to cloud) |
| Any annotation tool | ✗ No (masking only) | ✗ No | ✗ No | Varies |
Online redaction tools require uploading your document to a third-party server. For legal documents, medical records, financial filings, and any document under NDA or attorney-client privilege, uploading to a cloud service to perform redaction is itself a potential confidentiality violation — before you even consider whether the tool does true redaction. For sensitive documents, use a desktop tool that processes locally.
Step-by-step: how to redact a PDF correctly on Windows
Using Vexifa PDF Suite (free — integrity check, true redaction, and PII scanner all unlocked)
- Open your PDF in Vexifa PDF Suite. The integrity check runs automatically on open — if the document has any existing fake redactions, you will see a warning.
- Navigate to the Redact panel. Select the text or area to redact by clicking and dragging.
- Click Apply Redaction. Vexifa removes the selected content from the PDF stream, replaces the area with a filled box, and scrubs the relevant metadata.
- Run the PII scanner before finalising — it will flag any SSNs, credit card numbers, IBANs, phone numbers, or email addresses still visible in the document, including in areas you may have missed.
- Save as a new file. Run the integrity check on the output to verify the redacted areas contain no recoverable text.
Using Adobe Acrobat Pro
- Open your PDF in Acrobat Pro.
- Go to Tools → Redact (not the annotation or drawing tools — these create masking, not redaction).
- Select the areas to redact. Acrobat marks them with a highlight that shows the redaction zone before applying.
- Click Apply. Acrobat removes the content from the stream and prompts you to save as a new file.
- Verify: after saving, open the file and press Ctrl+A, Ctrl+C, paste into Notepad. The redacted text should not appear.
Using PDFgear (free)
- Open your PDF in PDFgear.
- Select the Redact tool from the toolbar.
- Click and drag to select the area to redact.
- Click Apply. PDFgear removes the content from the stream.
- Save as a new file. Verify manually using the Ctrl+A/paste test.
Finding PII you didn't know was there
The redaction failure cases above involved text someone knew was sensitive and attempted to hide. A more common scenario is text that is sensitive but was not noticed: a Social Security Number embedded in a table, a bank account number in a footnote, an email address in document metadata.
Before redacting and distributing any sensitive document, scan it for patterns:
- SSNs — US Social Security Numbers (XXX-XX-XXXX pattern)
- Credit card numbers — Visa, Mastercard, Amex patterns
- IBANs — international bank account numbers
- Email addresses — especially in embedded correspondence
- Phone numbers — in any regional format
Vexifa PDF Suite's pattern-based redaction scans the entire document for these patterns automatically and lets you review and redact all matches before distribution. It is included in the free download. This addresses the "unknown PII" problem — sensitive data you did not know was there, embedded somewhere in 200 pages of contract text.
The complete redaction workflow
Applied before sending any document that should have content removed:
- Open in a tool with integrity checking — verify the document was not already compromised before you work on it
- Run the PII scanner — find patterns you might miss manually
- Apply true redaction — use a dedicated redact tool, not a rectangle annotation
- Verify the output — run the manual Ctrl+A/paste test, or use Vexifa's automatic integrity check on the saved file
- Check metadata — ensure the document properties do not contain author names, revision history, or comments that expose information
Frequently asked questions
What is the difference between fake redaction and true redaction in a PDF?
Fake redaction places a black rectangle or annotation over text without removing it. The text remains in the PDF's content stream and can be selected and copied. True redaction permanently removes the text from the content stream — it cannot be recovered by any method.
How do I check if a PDF has been truly redacted or just covered up?
Press Ctrl+A to select all in the PDF viewer, Ctrl+C to copy, then paste into Notepad. If the supposedly redacted text appears, the redaction is fake. Vexifa PDF Suite does this check automatically every time you open a file and alerts you if it detects text beneath visual overlays.
Can I redact a PDF for free on Windows?
Yes. Vexifa PDF Suite is a free Windows download from the Microsoft Store with every feature unlocked — including the redaction integrity checker (verifies documents you receive), true stream-level redaction, pattern-based PII scanning, and metadata scrubbing for documents you are creating. PDFgear is another free Windows desktop application that performs true stream-level redaction.
Does adding a black rectangle in Adobe Acrobat count as true redaction?
Only if you use Acrobat's dedicated Redact tool (under Tools → Redact). Drawing a black rectangle using drawing or annotation tools is masking — the text remains. Adobe Acrobat's Redact tool does perform true stream removal. It is a Pro-only feature.
What happened in the Epstein files redaction failure?
In December 2025, the DOJ released Epstein case documents with black-box redactions. The redactions were visual overlays — the text was still in the document stream. Anyone could read the hidden content by pressing Ctrl+A, Ctrl+C, and pasting into a text editor. The same technique exposed Paul Manafort's communications with Konstantin Kilimnik in 2019, revealing that he had shared campaign polling data with a Russian intelligence-linked figure.