Zero-Knowledge vs. Cloud Upload: Why Redact PDF AI Fails Schrems II Compliance

The Solution: Zero-Knowledge Architecture with Mandatory Encryption

1. Six Platform Access Methods (vs. Redact PDF AI's Web-Only)

anonym.legal provides six independent access paths, allowing users to choose the interface that fits their workflow:

• Web App (anonym.legal): Browser-based, all devices, no installation required. Chrome, Firefox, Safari, Edge.
• Desktop App (Windows 10+, macOS, Ubuntu): Tauri-based native application. Local file processing, dark/light theme, offline-capable, encrypted vault.
• Office Add-in (Word, Excel, PowerPoint): Direct integration into Microsoft Office 2016+, Microsoft 365, and Office Online. Inline PII highlighting, one-click redaction within documents.
• Chrome Extension: Direct integration with ChatGPT, Claude, Gemini, and other AI platforms in the browser. Anonymize text before sending to AI systems.
• MCP Server (Claude Desktop & Cursor Pro): 7 tools for AI assistants (analyze_text, anonymize_text, detokenize_text, get_balance, estimate_cost, list_sessions, delete_session).
• REST API (Basic+ plans): Programmatic integration. Bearer token auth, 100 req/min rate limit, 1 MB max request size.

Redact PDF AI offers only browser-based SaaS. anonym.legal's 6 access methods eliminate lock-in and adapt to enterprise workflows (Office users, API integrations, AI assistant workflows).

2. Argon2id Password Derivation with Zero-Knowledge Authentication

When a user creates an anonym.legal account, they choose a password. anonym.legal uses Argon2id (memory-hard, GPU-resistant, OWASP-recommended, 64MB memory, 3 iterations) to derive a 256-bit encryption key from that password. The key is stored only in the user's browser/device. anonym.legal's servers never receive the plaintext password or the derived key. This is zero-knowledge authentication: the server never knows the user's password, making credential compromise impossible.

3. AES-256-GCM Client-Side Encryption (Mandatory)

When a user uploads a PDF, their browser/device encrypts it using AES-256-GCM (Authenticated Encryption with Associated Data) with the Argon2id-derived key. The encrypted PDF is transmitted to anonym.legal servers via TLS 1.2+. The server receives only the ciphertext, not the plaintext PDF. Even if anonym.legal's servers are breached, attackers find only encrypted blobs unreadable without the user's password.

4. Processing Encrypted Data with Deterministic NLP

anonym.legal's detection engines (Presidio + spaCy + Stanza + XLM-RoBERTa) analyze encrypted PDFs using client-side processing when possible, or decrypt results only on the client device. Plaintext never reaches anonym.legal infrastructure. Results (detected entities, confidence scores, detection methods) are returned encrypted with the same AES-256-GCM key.

5. Schrems II Compliance Proof

This architecture satisfies the European Court of Justice Schrems II ruling (July 2020) because:

• User holds encryption key: Only the user's device has the Argon2id-derived key. anonym.legal servers cannot decrypt user PDFs, even with a court order.
• Server cannot access plaintext: Even if EU law enforcement compelled anonym.legal to hand over all server data, they would find only encrypted PDFs, unreadable without the user's password.
• Supplementary measure in place: The "appropriate safeguard" required by Schrems II (encryption with provider inability to decrypt) is implemented and verifiable via source code audits.
• German BDSG Compliant: German data protection law (BDSG §3) requires data minimization. anonym.legal's zero-knowledge architecture minimizes data exposure to servers.

6. Three-Layer Detection Engine with Confidence Scoring

Unlike Redact PDF AI's proprietary AI black box, anonym.legal uses deterministic 3-layer NLP architecture:

• Layer 1: Presidio (Microsoft open-source): 317 custom regex patterns for structured data (SSN, credit cards, phone, IBAN, etc.). Sub-millisecond processing. 100% reproducible.
• Layer 2: Advanced Transformers: spaCy (25 languages, CNN/transformer), Stanza (7 languages, neural LSTM), XLM-RoBERTa (16 languages, cross-lingual). Named Entity Recognition with BiLSTM + CRF layers.
• Layer 3: Consistency Validation (Stance Classification): BERT representations for semantic validation. Resolves ambiguous entities (e.g., "Amazon" as company vs. location). Eliminates false positives through context analysis.

Each detected entity includes confidence score (0–100%) and detection method, providing the audit trail required for e-discovery, compliance audits, and legal proceedings.

7. Reversible Anonymization with Deanonymizer

anonym.legal's Deanonymizer service restores original data from encrypted redactions using AES-256-GCM decryption with session keys. This enables workflows where sensitive data must be temporarily hidden during sharing, then restored by authorized recipients. Redact PDF AI cannot reverse redactions (no deanonymization capability).

8. AI-Assisted Custom Entity Creation (50 Tokens/Creation)

Users can create custom PII patterns without manual regex coding. anonym.legal's AI Entity Creation feature teaches custom detectors using 50 tokens per creation/refinement. Examples: client case IDs, internal reference numbers, proprietary terminology. Neither Redact PDF AI nor competitors offer AI-assisted entity creation.

9. 4-Tier Pricing with Free Tier and €3 Entry Price

anonym.legal's pricing structure emphasizes accessibility and flexibility:

• Free (€0): 200 tokens/month. Basic analysis, desktop, Office add-in. No API, no batch, no deanonymization.
• Basic (€3): 1,000 tokens/month. Batch processing (50/day), deanonymization, REST API, encryption. Entry price for API integration.
• Pro (€15): 4,000 tokens/month. Unlimited batch (Pro tier), MCP Server integration (Claude Desktop, Cursor).
• Business (€29): 10,000 tokens/month. Highest limits, all features, priority support, custom SLAs.

Redact PDF AI starts at $50–$250+/month. anonym.legal's €3 entry point (≈$3.30) with free tier demolishes competitor pricing.

10. Batch Processing with Generous Limits

Batch processing enables processing multiple documents simultaneously:

• Free: 5 files/day, 20 files/month, 1 MB max file size
• Basic: 50 files/day, 500 files/month, 5 MB max
• Pro/Business: Unlimited files/day, unlimited monthly, 10–20 MB max

This enables enterprises to redact large document sets (legal discovery, healthcare records, GDPR subject access requests) without per-document overhead.

11. 260+ Entity Types Across 48 Languages

anonym.legal detects 260+ distinct PII types including:

• Government IDs: Australian Tax File, German Steuer-ID, UK National Insurance, passports (48 countries)
• Financial: IBAN, BIC, Bitcoin/Ethereum addresses, routing numbers, payment card account numbers
• Medical: ICD-10 codes, medication names, hospital ID numbers, genetic markers, lab values
• Technical: API keys, JWT tokens, SSH keys, database connection strings, AWS access keys
• Legal: Court case IDs, attorney bar numbers, patent numbers, trademark numbers
• Biometric: DNA sequences, fingerprint references, iris pattern data
• Communication: Email addresses, phone numbers, URLs, IP addresses, usernames
• Temporal: Dates of birth, appointment dates, event times

Redact PDF AI detects approximately 100 generic PII types. anonym.legal's 260+ provides 2.6× broader coverage, essential for regulated industries (healthcare, legal, finance).

12. 95.5% Production Accuracy (44 Tests Documented)

anonym.legal publishes accuracy metrics from 44 production tests across multiple entity types and languages, achieving 95.5% precision. This transparency allows users and auditors to verify detection performance. Redact PDF AI publishes no accuracy metrics.