Toolkits · Free

Privacy-First Publishing Checklist (Free)

A practical checklist and rewrite patterns to reduce accidental identification risk (“doxxing-by-detail”). Education only. Not legal advice.

Who this is for (and who it is not for)

This page helps individuals publish responsibly without unintentionally identifying themselves or others. It does not provide case-specific strategy.

Privacy-first Education only No case review No outcomes sold

For

Individuals who want a calm, repeatable pre-publish privacy check.
Writers/creators who need safer wording (de-identification) without losing meaning.
Anyone building a public-interest post while minimizing accidental exposure.

Not for

Legal advice, emergency situations, or time-critical professional decisions.
Document review, “tell me what to file,” or case/outcome strategy.
Publishing raw evidence that contains identifiers (names, addresses, private IDs).

Back to Toolkits Buy Pro PDF ($19) Take Privacy Training ($99)

Do not include identifying details (read first)

If unsure, publish less. Keep the detailed record private and controlled. Do not send sensitive personal data.

Do not publish full names, addresses, phone numbers, emails, usernames, or personal IDs.
Avoid faces, license plates, signatures, unique workplace identifiers, or private threads.
Be cautious with screenshots: headers, footers, filenames, and metadata often reveal identity.
Indirect identifiers matter: time + place + role can triangulate a person even without names.

Redaction vs de-identification (plain English)

These terms are often mixed up. This page uses them in a practical way for publishing safety.

Redaction removes or blocks a specific identifier (for example, a name or address).
De-identification reduces the chance someone can be identified from combined details (time + place + role).
Safer default for public posts: redact direct identifiers and also generalize indirect identifiers.

Privacy checklist (minimum standard)

Run this before publishing. Goal: keep meaning, remove what makes someone easy to identify.

Direct identifiers: names, addresses, phone/email, IDs, account numbers, faces/plates.
Indirect identifiers: exact dates/times, precise locations, niche titles, one-of-one events.
Searchability: paraphrase quotes that can be searched; avoid verbatim message text.
Attachments: crop aggressively; remove headers/footers; rename files to neutral labels.
Publish-safe framing: separate what is known from what is not known; label limits clearly.
Default rule: keep raw evidence private; publish the pattern and defensible claims.

5-minute pre-publish check

Can a stranger identify a person from time + place + role?
Is any detail unnecessary for public understanding?
Are you publishing “proof” that also exposes private identifiers?
Does the post include minors or vulnerable people in identifiable ways?
Did you add a corrections path (how updates will be noted)?

Free vs Pro vs Training

Option	Best for	What you get
Free (this page)	First pass, quick hygiene	Checklist + copy patterns + one worked example
Pro PDF ($19)	Repeat use, printing	Printable worksheets + expanded drills + formatted examples
Training ($99)	Skill-building	Structured drills to build habits (no case handling)

Buy Pro PDF ($19) Privacy Training ($99)

Copy patterns (safe rewrite recipe)

Use these patterns to keep meaning while reducing identification risk. They are not legal guidance.

PRIVACY-FIRST REWRITE PATTERNS (SAFE)

1) GENERALIZE TIME
- Exact date/time → “early 2025” / “mid-2025” / “over several weeks”
- A specific weekday/time → “in the morning” / “later that week”

2) GENERALIZE LOCATION
- Exact address/building → “a Vancouver-area location”
- Unique venue → “a public place” / “a local office”

3) GENERALIZE ROLE
- Rare job title → “a staff member” / “a supervisor”
- Unique department → “an operations team” / “an admin team”

4) REDUCE SEARCHABILITY
- Verbatim quote → paraphrase (keep the meaning)
- Private thread screenshot → “a documented exchange exists” (retain privately)

SAFE SENTENCE FRAMES
- “Details are de-identified to reduce risk; meaning and sequence are preserved.”
- “A documented exchange exists; identifying information is not published.”
- “Where evidence cannot be made public safely, it is retained privately.”

BOUNDARY LINES (COPY/PASTE)
- “Education only. Not legal advice.”
- “Do not send sensitive personal data.”
- “No case review. No guarantees.”
- “Support does not buy coverage or outcomes.”

Read the standards

Pro version expands the checklist and adds printable drills for repeated use.

Worked example (before → after)

Goal: preserve meaning while removing identifying detail-combinations. This is a fictional example for education.

Before (too identifying)

“On March 12, 2025 at 8:40am, I met a manager at a specific building near a major street. They told me to ‘stop complaining’ in front of two staff members. I have an email thread and a screenshot.”

After (de-identified)

“In early 2025, I raised concerns in a workplace setting with a senior staff member present. The response included dismissive language in front of others. Private records exist, but identifying details are not published here.”

Exact time + place removed (reduces triangulation risk).
Rare title generalized (reduces one-person identification).
Evidence referenced as privately retained, not published as raw screenshots.

Limits & safety boundaries

Education only. Not legal advice.
No case review: no document review, no “tell me what to file,” no strategy.
No guarantees: this reduces risk; it cannot eliminate risk in all contexts.
Do not send sensitive personal data: avoid identifiers and private records in messages.
Editorial firewall: support and purchases do not buy coverage, outcomes, or favourable treatment.

FAQ

Is this legal advice?

No. Education only. Not legal advice.

Will WitnessBC review my case or documents?

No. No case review and no outcomes sold.

What counts as “identifying information”?

Direct identifiers (names, addresses, contacts) and indirect identifiers (time + place + role combinations) that enable triangulation.

How do I remove identifying details from text without changing meaning?

Keep the public-interest point and sequence; remove direct identifiers; generalize time/location/role; paraphrase searchable quotes.

Should I publish screenshots as proof?

Screenshots often contain identifiers/metadata. A safer default is to describe that records exist and retain them privately.

What are indirect identifiers, and why do they matter?

Small details that seem harmless alone can identify someone when combined (for example: a precise date + specific place + niche role).

Can I publish a timeline safely?

Often yes, if you generalize dates (“early 2025”), remove unique markers, and avoid naming people or exact locations.

Does buying a toolkit influence coverage?

No. Purchases and support do not buy coverage, outcomes, or favourable treatment.

Browse Toolkits Browse Training Support (Tip)

Next step

If you will use this more than once, upgrade to Pro for printable worksheets. If you want habit-building drills, use the training course.

Buy Pro PDF ($19) Privacy Training ($99) Standards & boundaries