# Use sensitive data redaction to protect customer privacy using Contact Lens Use sensitive data redaction To help you protect your customer's privacy, Contact Lens conversational analytics lets you automatically redact sensitive data from conversation transcripts, audio files, and email transcripts. It redacts sensitive data, such as name, address, and credit card information using Natural Language Understanding. When you enable conversational analytics on the **Set recording and analytics behavior** block, you then have the option to enable redaction. For more information, see [Enable redaction of sensitive data](enable-analytics.md#enable-redaction). For voice contacts, sensitive data redaction is applied after a call disconnects. For email contacts, redaction is applied after the email contact ends. **Important** The redaction feature is designed to identify and remove sensitive data. However, due to the predictive nature of machine learning, it may not identify and remove all instances of sensitive data in a transcript generated by Contact Lens. We recommend you review any redacted output to ensure it meets your needs. The redaction feature does not meet the requirements for de-identification under medical privacy laws like the U.S. Health Insurance Portability and Accountability Act of 1996 (HIPAA), so we recommend you continue to treat it as protected health information after redaction. For a list of the languages supported by Contact Lens redaction, see [Languages supported by Amazon Connect features](supported-languages.md). ## About redacted files About redacted files Redacted voice files are stored in your Voice Amazon S3 bucket, for example: connect-*instanceARN*/Analysis. Redacted chat files are stored in your chat Amazon S3 bucket, for example: connect-*instanceARN*/Analysis/Chat Redacted email files are stored in your email Amazon S3 bucket, for example: connect-*instanceARN*/Analysis/Email You can access all files (redacted, unredacted, raw, etc.) through the AWS console, by using the Amazon S3 console. Following is a list of what you can access by using the Amazon Connect admin website (such as on the **Contact details** page), assuming you have the appropriate [security profile permissions](permissions-for-contact-lens.md): + Access redacted voice, chat, and email files. + Download redacted voice recordings. **Note** Currently, you cannot download redacted chat files and voice transcripts. When redaction is enabled, Contact Lens generates the following files: + A redacted file. This file is generated by default when Redaction is enabled. It's the output schema, with sensitive data redacted. For an example file, see [Example redacted file for a call analyzed by Contact Lens conversational analytics](contact-lens-example-output-files.md#example-redacted-file). + An original (raw), analyzed file. This file is generated only when you choose **Get redacted and original transcripts with redacted audio** in the [Set recording and analytics behavior](set-recording-behavior.md) block. For an example file, see [Example original file for a call analyzed by Contact Lens conversational analytics](contact-lens-example-output-files.md#example-original-output-file). **Important** For voice contacts, the original analyzed file is the only place where the complete conversation is stored. If you delete it, there will be no record of the sensitive data that was redacted. + A redacted audio file (wav) for voice contacts. Sensitive data in audio files is redacted as silence. These silent times are not flagged in the Amazon Connect admin website or elsewhere as non-talk time. Use your file retention policies to determine how long to keep these files.