David Huerta

Senior Digital Security Trainer

Last updated

Photo by Richard. CC BY 2.0

Photos and how we share them can present risks to the people and sensitive information that’s been captured in the process. In this guide, we discuss how to safely redact photos on the go.

By and large, the most-used cameras in people’s hands are the ones built into their smartphones. When it comes to privacy and security, smartphones present their own risks (we have some guidelines on how to address them). But they also provide some tools to quickly adjust and redact sensitive photos, such as images of sources or others who would be at risk by having their photo shared.

Redaction: What works and what doesn’t

There is no shortage of app filters that try to detect a person or a face in a photo, then cover it. Sometimes, these exist as filters on photo-sharing apps, with varying degrees of effectiveness. Unfortunately, there is often little clarity into what happens when an original photo is opened in a platform’s app and if it is quietly sent along with the edited image to the platform owner.

In the case of Instagram filters, for instance, that platform owner is Meta, also known as Facebook, which has a dedicated portal to serve requests for user data from law enforcement, even things you may have set to appear only to close friends or friends. Meta is not alone among platforms in this — TikTok and Snapchat also have processes in place for handing over your photos, videos, or more to the police.

Because of this, if you unwittingly share the original, unredacted photos with those platforms you introduce the risk that those photos will fall into the hands of law enforcement.

Fortunately, however, your smartphone likely allows you to redact photos before sharing them. For example, both iOS (Apple) and newer Android phones have built-in apps for you to edit photos before sharing.

On iPhones, the “Photos” app allows you to mark up a photo before sharing it, like by adding shapes, text, and more.

iPhone users: Open the photo you want to edit in Apple's Photos app, then choose Edit > Markup (marker in circle icon) > + > rectangle (or other shape) > circle-square shape icon > filled-in shape option

On Android 10 or newer devices, there’s an app that’s also called “Photos” that lets you similarly edit a photo before sharing it. Android's built-in Photos app doesn't feature the ability to add shapes to an image, but it does have a marker tool that can cover up an area with a little more effort.

Android users: Open the photo you want to edit in the built-in Photos app, then choose Edit > Markup > Pen

Example of an redacted work ID card which is actually a sharpie illustration it has a sunglasses face emoji over the face and black rectangle over the ID number

Example of an unredacted work ID card which is actually a sharpie illustration on the back of a coffeeshop punch card

There are numerous methods available to blur the original, but some of these algorithms may be vulnerable to some deobfuscation methods. Some blurring methods are more resilient against deobfuscation methods, like Signal’s blur feature. But other apps may not necessarily be as good, so when in doubt, it’s better to completely block a number, face, identifiable tattoo, or whatever you’re trying to cover with something completely opaque.

In the case of iOS’s built-in editing tools, a fully opaque shape is more effective than the marker tools, which are not fully opaque. Consider redacting images by adding plain old-fashioned black rectangles or spice things up 🌶🔥 by overlaying your favorite emojis with your photo app’s text tool. If you’re on Android using the Photos app, the pen tool is more opaque than the highlighter tool, but we recommend running the marker over at least twice to maximize its opacity.

After saving the edited version, don’t share it yet. Take a screenshot of it to make a copy without the metadata — that is, data about data.

Wait, what about metadata?

Even with parts of the photo successfully redacted, digital photos contain metadata, which we’ve previously written about in-depth. How much and what kind of metadata depends on your phone, the app you use, and the settings you have to change to include or not include that metadata.

Because every phone, every app, and every combination of settings will yield different types of metadata, the best thing to do is never share the original photo. Instead, if you’re on the go, use your phone’s built-in screenshot feature to make a copy of the photo as displayed on your screen without the original’s metadata. Instructions for taking a screenshot are available for all iPhones and most Android phones.

Note: Some Android phones may add new metadata in screenshots (though it won’t be the same as metadata in the original photo)! If this is the case with your phone, or if you just want to take an extra precautionary step, you can use Signal to send the screenshot copy to “Note to Self,” which will send you back a copy of the photo with the metadata removed. You can then save that to your phone.

After creating a screenshot of the redacted image, you can also crop out the phone’s clock, cell signal strength indicator, and app buttons — which are in themselves a kind of metadata that you don’t need to include — and share your photo safely with the world.

Donate to support press freedom

Your support is more important than ever.