GDPR & Data Protection
Learn about pCloud's commitment to GDPR compliance and data protection practices.
Important: pCloud is a European company headquartered in Switzerland and is fully GDPR compliant.
GDPR Compliance
pCloud is GDPR compliant. More information regarding GDPR can be found on the official pCloud GDPR page: https://www.pcloud.com/gdpr/
Data Processing Agreement (DPA)
With its IaaS (Infrastructure as a Service) business model, pCloud provides storage infrastructure for your files but does not process the information contained in them.
- You may store your data subjects' personal information in pCloud for Business
- pCloud does not index, access, or use this information in its plain form
- Therefore, you don't need a DPA between your organization and pCloud AG
How pCloud Guarantees Security
pCloud ensures the security of your sensitive information through:
- Secure Infrastructure: User data is hosted through professional data centers with enterprise-grade security
- Encryption: All files are encrypted and stored on at least three server locations
- No Third-Party Access: Access to your files is restricted and no data is provided to third parties
- TLS/SSL Protection: All file transfers use secure TLS/SSL channel protection
Content Monitoring
pCloud works with external organizations that report information about specific files that violate Terms of Service:
- A checksum system detects files matching known violations (child pornography, terrorist propaganda)
- This automatic system works without human intervention
- Only file checksums (digital fingerprints) are checked, not file contents