Redact investigation files.
Digitise paper to BSI standards.
Log every action.
Docuflair for the police: PII redaction to protect witnesses, victims and third parties before file disclosure. TR-RESISCAN-compliant migration of paper archives. SHA-256 audit trail for tamper-proof supervisory logging. 100 % on-premises — no US cloud, no data leaving the premises.
Mountains of paper, redaction obligations and no time — not a good place for files.
Volume of investigation case files
Thousands of pages per complex case. Paper in cabinets, basements, file rooms — not searchable, not shareable, not audit-proof.
Witness and victim protection
Before any disclosure to defence, court or media, witness, victim and third-party data must be redacted. Manually unrealistic for files of 500+ pages.
IFG and subject access requests
Freedom of information requests under the German Freedom of Information Act (IFG) require disclosure — with prior redaction of personal data and ongoing investigations. Tight deadlines, high effort.
Legacy paper files without search
Files decades old block storage rooms and can only be retrieved through manual review. A BSI-compliant migration often fails due to the lack of a suitable tool.
How Docuflair supports police authorities
Automatic mass PII redaction
9 PII categories are detected and masked automatically. Active Directory integration protects internal police identities (officers, confidential informants). Selective exports per recipient (prosecutor, defence, media).
More on RedactBSI TR-RESISCAN for file migration
Replacement scanning under BSI Technical Guideline TR-03138 — paper originals can be lawfully destroyed after successful quality assurance. A full-text index makes legacy files searchable.
More on TR-RESISCANSHA-256 audit trail
Every access, redaction and export is logged with timestamp and user. Tamper-evident, audit-proof — for internal oversight and court proceedings.
More on Archive100 % on-premises
No US cloud, no external services, no outbound telemetry. Compatible with CLOUD Act and Schrems II considerations. Multi-tenant deployment for multiple departments within a state police force.
More on Access ControlStPO-compliant investigation file processing in 5 steps
Create investigation file
New file with case number from the case management system. Role-based access rights (officer, case worker, head of department, approver).
TR-RESISCAN scan
Paper files are digitised in a BSI-compliant way — quality assurance, integrity protection, audit log. Paper originals can then be lawfully destroyed.
Redact witnesses, victims and third parties
Mass PII redaction across 9 categories. AD integration supplies protected identities. Reusable redaction profiles per file type.
Handover to the public prosecutor's office
Selective exports per recipient — the original stays in the archive. The audit trail documents the handover with timestamp and recipient.
Audit-proof storage
SHA-256 hash secures integrity. Retention rules per file type. Gap-free audit trail for internal oversight and any reviews.
Typical police scenarios
State Criminal Police (LKA) investigations
Complex organised-crime proceedings with 10,000+ pages of files, multiple defendants and many witnesses. Docuflair digitises, redacts and archives the files in parallel with the ongoing investigation.
- Files shareable between investigator teams
- Automated witness protection
- Audit-proof chain of custody
Traffic accident files
Routine accidents with high file volumes and frequent requests from insurers, lawyers and parties involved. Docuflair accelerates disclosure with third-party redaction.
- Short turnaround for information requests
- Automated witness redaction
- Paper archives are relieved
Juvenile protection files
Particularly sensitive files on minor victims and suspects. Strict access control, uncompromising redaction before disclosure, no data leakage via cloud paths.
- Role-based access
- Irreversible redaction
- No cloud egress
The most important modules for the police
Top 3 core products plus supplementary modules for investigative work
Docuflair Redact
Automatic PII redaction across 9 categories, AD integration, selective exports per recipient.
Learn moreDocuflair TR-RESISCAN
BSI-compliant replacement scanning for paper-file migration. Quality assurance, audit log, destruction approval.
Learn moreDocuflair Archive
Audit-proof long-term archiving with SHA-256 audit trail, retention rules and tamper protection.
Learn moreLegal foundations supported by Docuflair
StPO (German Code of Criminal Procedure)
File completeness, traceability and immutability covered via audit trail.
Federal State Police Laws (PolG)
State police acts: purpose limitation, data deletion after retention period, role-based access rights.
German Freedom of Information Act (IFG)
Requests documented, PII automatically redacted before disclosure, deadline monitoring.
BSI TR-03138 (BSI Technical Guideline)
TR-RESISCAN: BSI-compliant replacement scanning — paper can be lawfully destroyed after quality assurance.
Note on classified documents: Docuflair is prepared for VS-NfD deployment environments (on-premises, no cloud telemetry, lockable user management, full logging) — a formal VS-NfD certification does not exist. For specific deployment scenarios please contact our sales team.
Frequently Asked Questions
Answers to the most important questions for police authorities
Does Docuflair support witness and victim protection during file disclosure?
Yes. Docuflair Redact automatically identifies personally identifiable information across 9 categories and masks witness, victim and third-party names before an investigation file is disclosed to defence counsel, court or the public prosecutor's office. The Active Directory integration provides employee data (officers, interrogators) as a dictionary so that internal police identities can be reliably redacted.
Is Docuflair suitable for classified documents (VS-NfD)?
Docuflair is a pure on-premises or private-cloud solution without external cloud components. It therefore meets the technical core requirements for VS-NfD (German classified documents, below secret level) environments: lockable user management, full logging and no cloud telemetry. We do not hold a formal VS-NfD certification — but the architecture is prepared for it. For specific deployment scenarios please contact our sales team directly.
How does Docuflair support StPO-compliant file management?
Docuflair maintains an SHA-256-based audit trail for every file that documents all access, redactions, exports and approvals with timestamp and user. This satisfies StPO (German Code of Criminal Procedure) requirements for file completeness, traceability and immutability.
Can Docuflair be integrated into state police case management systems?
Docuflair provides open interfaces (REST API, file exchange, SFTP) for connecting to existing police systems — case management systems, ViVA/COMVOR or specialised state police applications. The specific integration depends on the respective state system; we discuss this in an initial call with your IT department.
Why is on-premises mandatory for investigative data?
Investigative data is subject to strict purpose limitations (StPO, state police acts, GDPR) and must not leave Germany or Austria. US cloud services are legally problematic for police data due to the CLOUD Act and the Schrems II ruling. Docuflair runs exclusively on infrastructure operated by the authority.
Ready for the government file revolution?
15-minute demo — we show you how Docuflair digitises, redacts and audit-proofs investigation files. No marketing noise, real software on real file scenarios.