Lawful basis
Performance of contract for service delivery; legitimate interest for security and abuse prevention; consent where required (e.g. optional analytics).
GDPR
GDPR compliance
Data minimisation, purpose limitation and clear data subject rights.
Data minimisation
We process the smallest set of data necessary to operate the service. File contents are not part of that set — we do not have the means to read them.
Data subject rights
Access, rectification, deletion, portability and objection rights are supported. Because contents are encrypted with your keys, exercising these rights does not expose plaintext to us.
International transfers
Documented in the privacy policy. Encrypted storage neutralises most transfer concerns because no plaintext crosses borders on our infrastructure.
Subprocessors
We maintain an up-to-date list of subprocessors. All handle ciphertext only.
Your sensitive files deserve more than a traditional cloud.
Start free with 2 GB. Zero-knowledge encryption from the first upload — no admin override, no AI scanning, no plaintext on the server.