Review the visible document first
Open the PDF and scan every page before changing file settings. Look for old headers, footers, form fields, annotations, watermarks, stray pages, and scanned content that should not be included.
If the document has sensitive text, use a true redaction workflow. Do not rely on white rectangles, screenshot cropping, or visual cover-ups unless you have verified that the underlying text is gone.
- Check page order, duplicate pages, and accidental blank pages.
- Search for names, emails, account numbers, and internal project names.
- Remove comments, annotations, and draft markings before export.
Clean metadata and permissions
PDF files often contain author, title, creator, producer, creation date, modification date, and application metadata. These fields may be indexed by search systems or displayed by file viewers.
Password protection can help when a PDF is shared through email or a portal, but it is not a replacement for redaction. Protect only the final reviewed copy, and keep the unprotected source in a safe private archive.
Optimize only after review
Compressing a PDF can make uploads easier, but compression should come after privacy review. If you compress first and then redact or reorganize pages, you may end up exporting multiple versions and sharing the wrong one.
A good order is: duplicate the file, review content, redact if needed, remove metadata, protect if needed, compress if needed, then reopen the final export.