Pseudonymize cases.
Redact investigation files.
Archive G10-compliant.
Docuflair for security agencies and intelligence services: pseudonymization for internal analysis, PII redaction for inter-agency requests, G10-compliant archiving of surveillance files. On-premises for the most sensitive government environments.
Sensitive cases, parliamentary oversight, GDPR — security agencies need traceable tools.
Large-scale analysis during live investigations
Names, trace data and background checks in high volumes — analysts need to spot patterns without each query exposing identities. Pseudonymization is a requirement, not an option.
Inter-agency requests
Disclosure to other authorities (police, prosecutor, foreign constitution-protection agencies) requires GDPR-compliant redaction of third-party names before transfer. Manual processing does not scale.
G10 documentation
Telecommunications surveillance under Article 10 Basic Law (G10 Act) requires a gap-free, audit-proof trail — from order through execution to deletion. Paper cannot meet this requirement.
Personnel security clearance
Background checks for security-relevant positions must be performed at scale and in a traceable way. File volumes grow, review deadlines stay tight.
How Docuflair supports security agencies
PII redaction for inter-agency requests
Automatic redaction across 9 PII categories before disclosure to other authorities. Third-party names, surveillance details and internal sources are reliably masked — the original stays untouched in the archive, the recipient gets the released version.
More on RedactPseudonymization for internal analysis
Identifying attributes are replaced with consistent pseudonyms. Analysts see cross-document relationships without accessing identities. The mapping table stays separate, resolution requires four-eyes approval and full logging.
More on PseudonymG10 / BVerfSchG-compliant archive
Retention rules under the G10 Act, BVerfSchG and BDSG §§ 45–84. Automated deletion deadlines, legal hold for ongoing proceedings, SHA-256 hash, tamper protection. Gap-free audit trail for the G10 Commission and parliamentary oversight.
More on ArchiveMulti-tenancy for multiple departments
Strict separation between analysis, collection and surveillance — every department is a dedicated tenant with its own access rights, audit trails and retention rules. Cross-department access only via explicit approval.
More on Access ControlCase handling in 5 steps
Create case
New case with case number and legal basis (BVerfSchG, G10 Act, Federal Criminal Police Office Act, Security Clearance Act). Select tenant (analysis, collection, surveillance). Role-based access rights.
Scan documents
Incoming documents, tips and reports are digitised and attached to the case. TR-RESISCAN option for migration of legacy files.
Pseudonymize
Names, addresses and identifying attributes are replaced with consistent pseudonyms. Mapping table remains separate under four-eyes control.
Analyse
Analysts work on pseudonymized data — patterns and links become visible without exposing identities. Every resolution of the mapping is logged.
G10-compliant archiving
Automated deletion deadlines under BVerfSchG / G10 Act / BDSG §§ 45–84. SHA-256 hash, legal hold, audit trail for the G10 Commission and parliamentary oversight.
Typical scenarios at security agencies
Personnel security clearance
Background checks for security-relevant positions under the Security Clearance Act. Docuflair digitises self-disclosures, runs files through a workflow and documents every review step gap-free.
- Workflow with deadline monitoring
- Pseudonymization for internal analysis
- Retention under the Security Clearance Act
Surveillance files (G10 measures)
Telecommunications surveillance under Article 10 Basic Law / G10 Act. Docuflair models the documentation chain from order through execution to deletion — the SHA-256 hash secures the integrity of every individual file item.
- Gap-free G10 documentation
- Automated deletion deadlines
- Audit trail for the G10 Commission
Inter-agency requests
Disclosure to police, prosecutors or foreign constitution-protection agencies. Docuflair automatically redacts third-party names, source details and internal reference persons prior to export — the original stays in the archive, the recipient gets the released version.
- Automated third-party redaction
- Selective exports per recipient
- Gap-free handover documentation
The most important modules for security agencies
Top 3 core products plus supplementary modules for analysis and documentation
Docuflair Redact
PII redaction across 9 categories for inter-agency requests and information transfer. Selective exports per recipient, original stays in the archive.
Learn moreDocuflair Pseudonym
Pseudonymization for analysis without identity exposure. Consistent pseudonyms, separate mapping table, four-eyes approval for resolution.
Learn moreDocuflair Archive
G10 / BVerfSchG-compliant archiving with retention rules, legal hold, SHA-256 hash and gap-free audit trail.
Learn moreLegal foundations supported by Docuflair
BVerfSchG (Federal Constitution Protection Act)
Purpose limitation, file management, retention periods — covered via tenant separation, retention rules and audit trail.
G10 Act
Article 10 Basic Law — telecommunications surveillance: gap-free documentation chain from order through execution to deletion, SHA-256 hash for integrity proof.
BDSG §§ 45–84
Data protection at security authorities: role-based access, logging, deletion deadlines, inter-agency redaction prior to information transfer.
Security Clearance Act
Personnel security clearance for security-relevant positions. Workflow-based documentation and deadline monitoring.
Note on classified documents and classifications: Docuflair is prepared for VS-NfD deployment environments (on-premises, no cloud telemetry, lockable user management, full logging) — a formal VS-NfD certification does not exist. No claims are made regarding higher classification levels. The legal assessment of specific measures (G10 Act, BVerfSchG, Security Clearance Act) remains the task of the authority.
Frequently Asked Questions
Answers to the most important questions for security agencies
Does Docuflair support G10-compliant documentation?
Docuflair supports the technical requirements for G10-compliant documentation: a gap-free SHA-256 audit trail covering orders, execution steps and deletion deadlines, role-based access and a pure on-premises architecture without cloud telemetry. The legal assessment of a specific G10 measure remains the task of the authority; Docuflair provides the technical foundation. A formal G10 certification does not exist.
How does pseudonymization in Docuflair work for internal analysis?
Docuflair Pseudonym replaces identifying attributes (names, addresses, dates of birth, phone numbers) with consistent pseudonyms. The mapping table is kept separately under controlled access by the authority. Analysts can identify relationships and patterns across multiple documents without seeing the real identity — only on a confirmed match is the mapping resolved, with four-eyes approval.
What is the difference between redaction (Redact) and pseudonymization (Pseudonym)?
Redaction (Redact) irreversibly removes personal data from exports — ideal for disclosure to third parties, e.g. for inter-agency requests or GDPR access requests. Pseudonymization (Pseudonym) replaces data with consistent placeholders and preserves the option of reversing the mapping via a separate lookup table — ideal for internal analysis without exposing identities. Both modules can be combined in a single case.
Can Docuflair map BVerfSchG file-management requirements?
Docuflair covers the technical requirements of the Federal Constitution Protection Act (BVerfSchG) for file management: purpose limitation through tenant and case separation, role-based access rights, gap-free logging, automated deletion deadlines, legal hold for ongoing proceedings. The legal assessment of storage, disclosure and deletion remains with the responsible authority.
How secure is operation in isolated security networks?
Docuflair runs entirely on-premises without internet connectivity and without cloud telemetry. Updates are applied manually, the database, application and file servers remain within the isolated network. The architecture is prepared for VS-NfD deployment environments; a formal certification does not exist. Specific security architectures are discussed in an initial call with your IT security team.
Ready for G10-compliant case handling?
15-minute demo — we show you how Docuflair combines pseudonymization, inter-agency redaction and G10 archiving in a single case. No marketing noise, real software on real scenarios.