Most of us have been utilizing cloud storage companies for years. We’re all accustomed to companies like Dropbox, Google Drive, and Microsoft OneDrive. And these are just some of the most well-liked ones. These large identify companies have rather a lot to supply. They’re versatile, quick, and versatile, to not point out cheap (typically free).
As soon as you’ve got obtained one among them arrange, you possibly can entry your recordsdata from wherever, and know that if one thing occurs to your pc, you’ll rapidly have the ability to recuperate all of your essential recordsdata.
Editor’s Notice:
Visitor writer Heinrich Lengthy is the editor behind Restore Privateness, a weblog devoted to tell about greatest on-line privateness practices, safe your digital gadgets, unblock restricted content material and defeat censorship.
That is all nice, however once you use these companies, you might be trusting them to maintain your information safe and personal. They encrypt your information, so it’s safe whereas touring throughout the web and in addition safe whereas it’s sitting on their servers. However as a result of they encrypt your information for you, they will decrypt it in the event that they so want. Or if they’re ordered to by the native authorities. Or if some highly effective intelligence company “convinces” them that it’s of their greatest curiosity to take action.
…What the world wants now could be a cloud storage service that’s not topic to uncontrolled entry by intelligence businesses. —Mikko Hypponen
Even when your authorities is not attempting to get entry to information saved within the cloud, hackers are. Hackers are continually assaulting cloud storage techniques of every type, trying to steal, nicely, no matter they will get their arms on.
At Restore Privateness, our aim is that will help you maintain your non-public information safe. Every thing else, comparable to how a lot free cupboard space a service gives, or how nicely it really works with different software program and companies, is secondary. That is why this information focuses on what we name safe, privacy-first cloud storage.
What’s safe cloud storage and why do you want it?
We contemplate safe cloud storage to be a cloud storage system the place you, not anybody else, controls the keys used to encrypt and decrypt your information. In the event you management the encryption keys, the cloud storage service cannot decrypt your information, interval. The federal government can demand it, some intelligence company can insist on it, but it surely will not matter. Solely you possibly can decrypt your information.
Safe cloud storage companies use a wide range of methods to guard your information. From storing your information in safe services with armed guards and biometric locks like one thing out of a spy film, to utilizing the newest and biggest encryption algorithms, they provide enhanced safety over the large names within the cloud cupboard space.
We have been busy reviewing safe cloud storage companies to see which of them do the perfect job or defending your treasured information. That is what we have discovered…
The perfect cloud storage companies
Whereas we have not reviewed each cloud storage service that claims to be safe (there are dozens), now we have carried out deep dives into the main companies. All technical concerns apart, you desire a safe service that has the company backing and assets to be round for some time. So we dominated out many of the extra obscure companies for now.
For 2022, listed below are our advisable safe cloud storage companies that may shield your privateness within the present privacy-hostile setting. You will discover a quick abstract of every service under, together with hyperlinks to extra in-depth evaluations for all of them.
NordLocker
A flexible encryption and cloud storage system
NordLocker | |
---|---|
Based mostly in | Panama |
Free model | Sure |
Value | Value $3.99/mo; 500 GB |
Web site | NordLocker.com |
NordLocker is an encryption service with cloud storage capabilities. If you need the utmost attainable safety to your information, this is a vital distinction. Safe cloud storage companies will encrypt your information at any time when it isn’t at relaxation in your pc. They use zero information encryption in order that nobody, not even them, can decrypt your information.
However what about when the info is in your pc? What if somebody positive factors bodily entry to your pc? The recordsdata in your pc are usually not encrypted. Somebody with entry to your system can have full entry to your recordsdata as nicely.
However NordLocker does issues in another way (see full assessment). You progress the recordsdata and folders you wish to shield right into a particular folder known as a locker. Something you place within the locker is encrypted mechanically, and solely accessible when NordLocker is unlocked. Because of this your recordsdata can stay safely encrypted even when they’re in your pc.
NordLocker gives their very own safe cloud storage for lockers. Their lockers are additionally suitable with every other cloud storage companies. That is large as a result of it means you possibly can retailer lockers in different cloud storage companies, understanding that your information is secure no matter which service you employ.
NordLocker is from the makers of NordVPN, a well-liked VPN service. Additionally they provide NordPass, a safe password supervisor.
Tresorit
Greatest safe cloud storage answer
Tresorit | |
---|---|
Based mostly in | Switzerland |
Free model | Sure |
Value | Value $10.42/mo; 200 GB |
Web site | Tresorit.com |
Tresorit was our choose for the perfect safe cloud storage service in 2021. It makes use of end-to-end (zero information) encryption and gives a full set of options for companies, groups, and people. The corporate shops your information in Eire by default, however enterprise accounts can choose from a number of jurisdictions. A 2019 audit by Ernst & Younger indicated that Tresorit is a reliable service.
Tresorit gives business-oriented plans with instruments for managing customers and their information throughout the group. The service is compliant with HIPAA, GDPR, FedRAMP, and quite a few different information safety rules, making it appropriate for a variety of company functions.
Tresorit is a superb alternative for enterprise customers. Its worth for people is not so clear. The free plan supplied by the corporate could be very restricted, and the paid plans will most likely be overkill, leaving you paying a excessive value for options you do not want.
Sync.com
Zero-knowledge cloud storage based mostly in Canada
Sync.com | |
---|---|
Based mostly in | Canada |
Free model | Sure |
Value | Value $96/yr; 2 TB |
Web site | Sync.com |
Sync.com gives plans for people and enterprise customers, however we expect it’s most likely greatest for particular person customers. Their zero-knowledge infrastructure seems to be as safe as you will get, though they nonetheless have not revealed any third-party check outcomes. In the event you solely want a small quantity of storage (5 GB), and do not want a Linux sync shopper, their free plan may very well be ideally suited for you (see full assessment).
Sync.com has each execs and cons with regards to enterprise use. It gives plans with limitless storage and bandwidth, in addition to a number of team-oriented options and compliance with business requirements comparable to HIPAA, GDPR, and PIPEDA. The most important enterprise downside is the requirement to retailer all of your information in Sync.com’s devoted folder. This might end in incompatibilities with different essential enterprise apps and companies.
Nextcloud
The perfect cloud storage for self-hosting
Nextcloud | |
---|---|
Based mostly in | N/A |
Free model | Sure |
Value | N/A |
Web site | Nextcloud.com |
Nextcloud is completely different than the opposite companies we’re recommending. First, it’s a FOSS (Free and Open Supply Software program) system. Because the identify implies, it’s free to make use of. And the truth that it’s fully open supply means you can be fairly assured that nobody has carried out something nasty within the code that may jeopardize the safety and privateness of this service.
Nextcloud is designed to can help you retailer your information by yourself safe servers, or on third-party servers. By internet hosting by yourself servers, you possibly can maintain all of your information secure inside the company firewall. By syncing to third-party servers, you possibly can stand up and operating rapidly whereas letting another person deal with the upkeep of your information servers.
Nextcloud can be very versatile and expandable. One instance of that is Nextcloud Hub which permits you and your workforce to share and collaborate on paperwork, ship and obtain electronic mail, handle your calendar, and so on. on a totally on-premises answer.
The flexibility to host Nextcloud by yourself {hardware} is essential, since Nextcloud’s end-to-end (E2E) encryption just isn’t totally practical (as of writing). Even so, we see Nextcloud as a strong, versatile, and free cloud storage answer with big potential. Between the core product and the 100+ apps you possibly can add to it, you possibly can create something from fundamental cloud storage to an entire setting for dwelling or enterprise use.
Mega
Client-oriented, zero-knowledge cloud storage
Mega | |
---|---|
Based mostly in | New Zealand |
Free model | Sure |
Value | Value $5.45/mo; 400 GB |
Web site | mega.io |
Mega is a well-liked safe cloud storage service that was on the information rather a lot just a few years in the past. Not like a few of its opponents, it gives desktop and cellular shoppers for each main OS. Mega options zero-knowledge, end-to-end encryption and a free plan that features 15 GB of storage (boostable as much as 50 GB) when you full sure duties.
One potential downside to this service is that it limits day by day information switch that may depart you ready till the subsequent day when you attempt to transfer an excessive amount of information without delay. Nonetheless, it’s a sturdy alternative for particular person customers.
If you’re on the lookout for safe enterprise storage, Mega seems much less interesting. They do provide enterprise plans with limitless storage and switch capability, plus built-in chat, contacts, and file preview capabilities. However different companies, together with Tresorit and pCloud have stronger company choices. As well as, New Zealand legal guidelines end in Mega’s ToS containing some troubling clauses you may wish to research earlier than naming this your safe company cloud storage service.
Safe cloud storage FAQ
When on the lookout for the perfect cloud storage that’s non-public and safe, you might have some questions. So let’s cowl the fundamentals.
Does the nation the place the corporate is situated matter?
Sure, it does matter. Nationwide legal guidelines governing the storage and transmission of on-line information differ significantly. Some nations respect your on-line privateness greater than others. Nations like Switzerland have sturdy information safety legal guidelines in place. Others, like the US and the UK, have a foul file for safeguarding your privateness. Nations that do not respect your privateness may nicely lean in your cloud storage supplier to offer them entry to the info you’ve saved on the service.
That mentioned, the nation a safe cloud storage service is situated in issues lower than it does for an everyday cloud storage service. As mentioned beforehand, a safe cloud storage service cannot decrypt your information. You management the encryption keys. Even when they’re ordered at hand over your information to the authorities, or are hacked by a 3rd social gathering, they will not have the ability to learn your information.
This does not essentially imply that the service is aware of nothing about your information. Relying on how any explicit service works, they might nonetheless have entry to:
- Billing data (identify and the rest you present when registering)
- Metadata like when you go online or off the system, your IP deal with, and different personally identifiable data
- Who you share encrypted recordsdata with
- The names of recordsdata or folders containing your encrypted information
This implies you could think twice concerning the threats you wish to shield your information towards and the way the nation it’s situated in impacts these threats (your risk mannequin) earlier than selecting a service.
Does the nation the place my information is saved matter?
You’ll want to bear in mind that the nation your information is saved in just isn’t all the time the identical because the nation your cloud storage service is situated in. For instance, Sync.com is predicated in Canada. It additionally shops your information there. Mega could retailer your information of their dwelling nation, New Zealand, or in unspecified European nations that “have an satisfactory stage of safety below Article 45 of the GDPR,” with their choice on which location to make use of being based mostly in your bodily location.
As with the nation the service is predicated in, the nation the place your information is saved issues. Native legal guidelines govern the servers your information is saved on. Think about that some hypothetical safe cloud service was headquartered in Switzerland, however they saved your information in China (maybe the least privacy-friendly nation on this planet). China’s horrible privateness legal guidelines would apply to the servers containing your information, regardless of the corporate itself being below the privacy-friendly legal guidelines of Switzerland.
Despite the fact that your information is protected by the encryption you management, all different issues being equal, it is smart to search for a service that’s each based mostly in, and shops your information in, a privateness pleasant jurisdiction.
What’s the greatest strategy to information safety for cloud storage?
There are three states we have to have a look at: your information in transit, your information at relaxation within the cloud, and your information at relaxation in your system. Information in transit is information that’s transferring between you (your pc, smartphone, or internet browser) and the servers the place it’s saved. Information at relaxation is information bodily saved someplace.
Information in transit
Information in transit must be protected towards anybody who manages to intercept it whereas it it touring between you and the cloud servers. Most companies use TLS/SSL encryption to safe information transmitted over the Web. This encryption will get utilized earlier than your information begins to transit the Web and is eliminated when your information arrives at its vacation spot.
Notice that TLS/SSL solely protects your information whereas it’s in transit. As soon as your information arrives at its vacation spot, the TLS/SSL encryption is eliminated. Except the info is encrypted earlier than the TLS/SSL is utilized, the recipient will have the ability to learn the info as quickly as TLS/SSL is eliminated. This type of encryption is strictly for safeguarding information in transit. We’d like another encryption answer for information at relaxation.
Information at relaxation
Information that’s at relaxation is information that’s being saved someplace. Once you retailer your information with a cloud storage service, your information will likely be at relaxation within the service’s servers. For that information to be safe, it have to be protected against unauthorized entry. This safety will be bodily and procedural: the servers are in a safe location, with no unauthorized individuals allowed entry to it. Many cloud storage companies provide one of these safety.
The issue with one of these safety is that you could belief the cloud service to maintain your information safe. If their safety procedures fail, or if somebody breaks into their safe location, your information may very well be uncovered. Even when the service does every part completely, native authorities can drive them to supply entry to your information in defiance of firm coverage.
A safer answer to the info at relaxation scenario is to encrypt the info earlier than storing it on the cloud. That method, the one individuals who can learn the info are those that know the best way to decrypt the info sitting on the server. That is sometimes carried out utilizing AES-256 or some equally highly effective encryption algorithm.
Combining TLS/SSL encryption for information in transit, with AES-256 or comparable encryption of the info at relaxation, and that appears like an entire encryption answer. However is it actually?
Who holds the keys to your information?
Essentially the most handy approach to do issues is to have the cloud storage service deal with the encryption / decryption of your information. The TLS/SSL gives safety to your information whereas in transit, and the encryption they apply as soon as the info arrives protects it whereas on their servers. However you continue to should depend on the service to guard the safety of your information.
Essentially the most safe strategy is so that you can management the encryption keys to your information. You encrypt the info earlier than it leaves your system utilizing encryption keys that by no means depart your system. Then your system encrypts it once more with TLS/SSL earlier than sending it to the server. On the server finish, they strip off the TLS/SSL encryption, and retailer your information, which remains to be protected with the encryption you management.
We additionally want to speak concerning the safety of knowledge saved in your system. Many cloud storage companies retailer you information in unencrypted type in your system. If somebody will get entry to your system, they get entry to your information, too.
One service that particularly addresses that drawback is NordLocker. With NordLocker, your information is saved encrypted even by yourself system. The one approach to decrypt the info is to log into NordLocker. Storing the info encrypted at relaxation in your system gives an additional layer of safety.
Why ought to I pay after I can get a free account?
There are a number of good causes to pay to your safe cloud storage. They embody:
- Practical limitations – Free accounts by no means have all of the capabilities of paid accounts. Often you might be restricted within the quantity of knowledge you possibly can retailer with a free account, the quantity of knowledge you possibly can add and obtain in a month, or you might be restricted within the period of time you should utilize the free account.
- Help limitations – Most free accounts present restricted buyer help. They typically drive you to ask questions or search for assist in dialogue boards the place free customers attempt to assist one another.
- Restricted options – Paid accounts continuously provide extra options that free customers do not have entry to. File model monitoring (or monitoring for longer intervals of time), enhanced safety features like 2FA, and business-oriented options like onboarding and collaboration instruments, are just some of the options that you’re going to solely get with a paid account..
At any time when attainable it’s best to check a service utilizing a free account. No level in spending cash to then discover out the service does not meet your wants. However as soon as you might be certain it does meet your wants and in case your information is essential sufficient to want safe cloud storage, it’s value investing in a paid plan.
Ought to I exploit a VPN with my safe cloud storage service?
Brief reply is sure. Safe cloud storage companies shield your information from outsiders. However that does not imply they will not accumulate some private information on you anyway. Many cloud storage companies log details about your actions on their system. Issues like when you go online, how lengthy you keep logged on, alongside along with your IP deal with.
Gathering your private information and tying it to your IP deal with will be helpful for the service. But it surely gives no advantages for you and even some potential dangers. In the event you use a VPN to hook up with a safe cloud storage service, the service will file the IP deal with of a VPN server as an alternative of your IP deal with. Since every VPN IP deal with is often shared by tens or a whole bunch of customers, it’ll go a great distance towards defending your privateness as you employ the storage service.
—
This concludes our roundup of the perfect cloud storage companies that do nicely with each privateness and safety. They will not be as well-known or straightforward to make use of as Google Drive, or sync with third-party companies the best way OneDrive does. These companies are a lot helpful and serve its function nicely, however the safe cloud storage suppliers we advocate on this information provide enhanced safety the place your information stands out as the most beneficial commodity you personal.