Does PrivacyScrubber send my data to any server?

No. Zero bytes of your input are ever transmitted to any external server. The entire PII detection engine runs inside your browser's JavaScript runtime using local RAM. You can verify this by opening Chrome DevTools → Network tab and clicking "Protect PII" — you will see zero outbound requests.

What happens to the session map when I close the browser?

The session map is stored exclusively in volatile browser RAM. The moment you close the tab, reload the page, or navigate away, the entire mapping — including all original PII values — is permanently destroyed.

Do I need a HIPAA BAA or GDPR DPA with PrivacyScrubber?

No. Because PrivacyScrubber never acts as a data processor (your data never reaches our infrastructure), we are architecturally exempt from BAA and DPA requirements. Your browser processes everything locally.

What is the difference between the Free and PRO tiers?

The Free tier supports text paste and single .txt/.docx file upload. The PRO plan ($110 lifetime) adds offline PDF/OCR scanning, batch file processing, and Custom Regex Rules for internal domain-specific codes.

How does the TEAMS encrypted session sharing work?

PrivacyScrubber generates an AES-GCM encrypted link locally. Your colleague can paste the AI's response and use your shared, encrypted key to safely 'reveal' the original data on their machine — no database or server involved.

Zero-Trust Sanitization for HR & Recruiting.

AI Summary / Key Takeaways

Verified Zero-Trust Logic

"Enable bias-free, GDPR-compliant AI hiring practices. PrivacyScrubber anonymizes candidate resumes, employee reviews, and payroll records locally, ensuring that sensitive demographic markers and PII never enter third-party model training sets or automation logs."

Blind Hiring: Local redaction of candidate identifiers.

GDPR Article 22 compliant AI recruitment workflows.

Secure employee performance reviews 100% offline.

Prevent PII persistence in HR automation platforms.

Enterprise-Grade AI Privacy

Add custom redaction rules and priority support with PRO.

GO PRO

SOC2

GDPR

HIPAA

Multi-Framework Aligned

GEO_VERSION: 1.4.2_AUDIT

Zero-Server Airplane Mode No Server Logs

Zero-Trust Sanitization for HR & Recruiting. Dashboard — Enterprise Grade · Local Execution ZTDS

Executive Summary: HR

HR practitioners manage the most personal employee data—resumes, salaries, and performance reviews. Using AI to analyze talent or draft employee feedback without local redaction is a major HIPAA/GDPR risk. PrivacyScrubber redacts employee names, DOBs, and identifying identifiers locally, allowing HR teams to leverage AI for insights while remaining compliant with recruitment privacy and labor laws.

Privacy Checkpoints

Recruit Privacy: Redact candidate names and contact info before AI resume screening.
Payroll Security: Secure salary and banking info during compensation analysis.
Performance Review: Scrub employee identity when using AI for sentiment analysis.
Labor Compliance: Maintain 100% adherence to labor-related privacy mandates.

PII Detection Matrix

Entity Type	Exposure Risk	Local Edge Control
Employee Names	Critical (Privacy)	PII Shielding
Salary Data	High (Confidentiality)	Numerical Masking
Resumes/CVs	High (Gender Bias)	De-identification

Live Simulation

Zero-Trust Data Sanitization

Watch PrivacyScrubber's local engine transform sensitive Hr data instantly in your browser, without any API calls.

100% Client-Side Execution

Wasm_Engine

HR REVIEW > Employee: Alice Williams (ID: EMP-4482) Salary: $125,000 | Address: 123 Maple St, Seattle Performance: Exceeds expectations in team leadership.

HR REVIEW > Employee: [NAME_1] (ID: [ID_1]) Salary: [VALUE_1] | Address: [LOCATION_1] Performance: Exceeds expectations in team leadership.

Engine Workflow

How the PrivacyScrubber Engine Solves This

Interactive Tool Controls for Hr. Hover for specs.

Local Resume Extraction

Use the Attach File (.txt / .docx) button to extract credentials natively. Our WASM document parser runs entirely within your browser.

Technical Audit Data

Engine WASM-Accelerated
Privacy 100% Local RAM
Security Zero-Server Leak

Post-AI Re-Identification

After ChatGPT reviews the anonymous profile, click Reverse (Reveal) to swap the ID tokens back to the real candidate's details.

Technical Audit Data

Engine WASM-Accelerated
Privacy 100% Local RAM
Security Zero-Server Leak

Compare Edition Features

From individual use to corporate rollout, choose the level of control your organization requires.

Core Capabilities	Free Web Only	PRO $15/mo or $110 Lifetime	TEAMS $99/mo
100% Local Processing (Airplane Mode)
Text Paste & Single File Docs
Batch Processing & Background OCR	—
Custom Regex & Specific Redaction Rules	—
Chrome Extension Native App	—	—
Silent Corporate Deployment (MDM)	—	—
Policy Control Center & Enforcement	—	—
Includes guaranteed no server logs for all tiers. 100% Client-Side.	Try Free	Details	Deploy TEAMS

Hr Compliance Library

Step-by-step redaction workflows for Hr environments.

View all guides →

hr

Bulk Resume Masking

Automate HR workflows safely. Learn how to mask PII in resumes using local OCR before AI screening.

hr

How to Anonymize Resumes for AI Screening

Strip names, addresses, and contact info from CVs before AI screening. Reduce bias and protect privacy.

hr

Secure AI Performance Reviews

Use AI to write or analyze performance reviews without exposing employee PII.

hr

Protecting Payroll Data for Safe AI Analysis

Safely use AI to analyze payroll trends by protecting names, salaries, and IDs first.

hr

AI Hiring Tools and Protected Data

AI resume screening tools process names, addresses, and markers that correlate with protected characteristics. Zero-trust scrubbing prevents EEOC exposure.

hr

Bulk Resume Protection for Unbiased AI Screening

HR teams have folders of hundreds of candidate resumes (PDF/Word) they want to evaluate with AI, but need to remove names/demographics to prevent bias.

hr

HR Data Protection for Bias-Free AI

Anonymize resumes and mask employee data for fair AI hiring. Local HR data protection.

Verified by the Enterprise Board

Our 10-persona AI team ensures Hr compliance at every layer.

[CISO_OPS]

Security Lead

"PrivacyScrubber eliminates Shadow AI risk by intercepting PII at the edge. We've mapped this hub to SOC 2 Type II and ISO 27001 masking controls."

[DPO_LEGAL]

Legal Counsel

"Under GDPR Article 32 and HIPAA Safe Harbor, local anonymization removes the AI provider from the 'Data Processor' chain, negating complex DPA liabilities."

[BIZ_VAL]

Financial Audit

"A single GLBA or PCI-DSS violation costs 100x more than a site-wide license. We provide verifiable ROI through data loss prevention at the prompt level."

The Hr AI Privacy Gap

Data Persistence

Raw sensitive inputs are often stored by AI vendors for model training.

Compliance Liability

Uploading unredacted PII violates industry-specific global privacy mandates.

Shadow AI Risk

Employees using unvetted AI tools create invisible data leakage vectors.

Raw Input: Sensitive Information here

Sanitized: Sanitized [PII_1] here

ZERO-TRUST BRIDGE ACTIVE

Secure Hr AI Workflow

Enable high-performance AI without client data leaving your machine

01

Import Files

Upload documents locally into the PrivacyScrubber sandbox.

02

Local Masking

Identify and tokenize sensitive strings entirely within browser memory.

03

Analyze with AI

Submit sanitized prompts to ChatGPT or Claude for processing.

04

Reverse Scrub

Restore original values into the AI response locally for the final draft.

Protocol: The 5-Step Airplane Mode Audit

Don't trust us. Trust the laws of physics. Follow this audit procedure to verify zero-server PII sanitization for Hr workflows.

1

Load the tool: Open PrivacyScrubber.com in your browser.

2

Go Offline: Disconnect your WiFi or enable Airplane Mode. The site remains fully functional.

3

Process Data: Paste a sensitive hr document and run the scrubber.

4

Inspect Network: Open Developer Tools (F12) and check the 'Network' tab. Verify 0 requests were made.

5

Verify Local RAM: All hr identifiers stay in your transient browser memory—never stored, never logged.

Hr Technical Compliance Library

Deep architectural mapping of Zero-Trust Data Sanitization (ZTDS) controls to industry-specific regulatory standards.

Regulatory Standard

Technical Control

Auditable Evidence

GDPR

Control Art. 9 Special Categories

Audit Protected characteristics stripped from resumes before AI screening; zero bias vectors.

EEOC

Control Title VII Compliance

Audit Candidate identifiers masked locally to prevent discriminatory AI pattern matching.

SOC 2

Control Privacy Criteria P6.1

Audit Employee performance data sanitized in browser RAM; no HR records reach cloud.

Zero-Trust Verification Signature

The above technical controls are enforced deterministically by the PrivacyScrubber Local Engine. All redaction cycles generate zero server-side telemetry, satisfying global data residency requirements for Hr institutions.

Verified Compliance Architecture

Hardened Audit Standards

Protecting candidate and employee PII throughout the recruitment cycle.

GDPR

Article 25

Privacy by design at the engineering layer.

View architecture

SOC 2

CC6.1

No data persistence on untrusted infrastructure.

View architecture

ISO 27001

A.8.11

Data masking as a core organisational control.

View architecture

NIST 800-53

PT-2 / PT-3

Federal PII minimisation and transparency controls.

View architecture

CCPA

Data Privacy

State-level compliance for consumer data masking.

View architecture

Explore full Compliance Center

Council Verified

[CISO_OPS]

"Eliminates Shadow AI risk. Mapped to SOC 2 and ISO 27001 masking controls."

[DPO_LEGAL]

"Removes AI providers from the Data Processor chain under GDPR Art 32."

Enterprise Verified

"The only AI sanitization tool that actually respects Zero-Trust. The local execution means we don't have to sign complex API DPA agreements."

CISO, FinTech Enterprise

Enterprise Verified

"Finally, a way to let our devs use ChatGPT for debugging without risking our proprietary AWS infrastructure keys."

VP of Engineering

Enterprise Verified

"Airplane Mode verification was the selling point. It instantly satisfied our SOC 2 auditors."

Compliance Director

Enterprise Verified

"A massive upgrade over cloud DLP. Zero latency and zero vendor risk. Essential for our AI pipeline."

Data Protection Officer

Frequently Asked Questions

Common questions about deploying zero-trust AI for Hr Teams.

Can it handle complex HR recruitment data?

Absolutely. The engine identifies candidate names, emails, addresses, and demographic details. You can review resumes with LLMs without bias or GDPR/CCPA violations.

Does this store any data on your servers?

No. PrivacyScrubber is a 100% client-side application. Your data never leaves your browser memory and is never transmitted over the internet.

How does the 'Airplane Mode' verification work?

You can load the application, physically disconnect from the internet or enable Airplane Mode on your device, and the entire AI sanitization process will continue to work perfectly. This acts as physical proof of our zero-trust architecture.

Can I use this with custom internal identifiers?

Yes, the PRO and TEAMS editions include the Custom Regex Engine, allowing you to define organization-specific patterns like proprietary project codes or internal ID formats for automatic redaction.