Inloggen

17 september 2025 · privacy · legal

Our position on privacy

Privacy is a fundamental right and we’ve built our services around protecting it. Our mission is simple "provide a secure, sovereign and transparent file sharing service that by design protects your privacy".

This article provides an overview of our privacy principles and how they guide
the way we build and operate our services. It also explains our stance on
encryption, AI, and relevant European regulations.

1. Our core belief: true privacy matters

We believe that privacy is a fundamental human right. Every individual deserves
to communicate, share, and store information without fear of unwarranted
surveillance, profiling, or exploitation.

2. Respect for individual and business data

We do not support any form of mass surveillance or privacy interference by
(semi-)governmental organizations. Collecting data from citizens for generalized
monitoring or social scoring systems is contrary to the principles of a free and
democratic society.

Likewise, we do not engage in, nor do we support, data collection by large
technology companies or third parties for the purpose of targeted advertising,
data monetization, or behavioral profiling.

Your business and personal data remain yours. We will never access, analyze, or
use your files for our own benefit, and we will never use your data for AI
training or model development. This ensures that your intellectual property and
copyrights remain fully protected.

3. European independence & digital sovereignty

We have built our services to operate fully within Europe, ensuring that all
infrastructure, storage, and key management systems are hosted, maintained, and
governed under European jurisdiction.

Our company is completely independent. We have no ownership ties, partnerships,
or contractual obligations to American (big tech) companies or any other
external entities that could influence our data handling or business operations.

By remaining European and independent, we guarantee that your data is not
subject to foreign laws such as the U.S. CLOUD Act, and is protected under the
strong data protection framework of the EU General Data Protection Regulation
(GDPR).

This independence is a cornerstone of our mission to provide trustworthy,
transparent, and sovereign digital services.

4. Our stance on the EU Chat Control Regulation (CSAR)

We recognize and support the fight against child sexual abuse and other serious
crimes. However, we do not support (the current form of) the proposed EU Chat
Control Regulation (CSAR).

While the intention to protect children is important, the methods proposed risk
introducing mass surveillance of private communications, weakening encryption
and creating dangerous precedents for state intrusion into personal privacy.

We believe it is not an “either-or” choice. It is possible to combat illegal
content without undermining the privacy and security of all citizens. The
potential for misuse of such surveillance powers far outweighs the proposed
benefits.

At the moment of writing the initial CSAR text has been revised and excludes
mandatory scanning, not even via a risk mitigation
backdoor.
The EU negotiations will continue in Januari 2026.

5. Cooperation with law enforcement

We fully cooperate with law enforcement authorities in cases of legitimate
suspicion or legal allegations of misuse of our services, as outlined in our
Acceptable Use Policy.
However, this cooperation will always occur within the
framework of applicable European law and without compromising the privacy or
security of our users’ data.

6. How we protect your data

All files and communications on our platform are fully encrypted client-side.
This means that only you and your chosen recipients can access the unencrypted
data and not our company, not third parties and not any external entity. We
simply cannot decrypt your files, by design.

7. Use of AI

Artificial intelligence can be powerful and genuinely helpful when it is used
responsibly and transparently. But in many modern software tools, AI also
introduces hidden trade-offs: privacy risks, profiling, false positives, and
broad access to personal or sensitive content. Because of these risks, we
strongly encourage users to be conscious about which services they use, and to
understand why and how their data is being processed.

In our Databeamer product, we do not use AI in any form to scan or analyse your
data, not to train models, and not to build user profiles. This applies both to
visible features and to any background or invisible processing. Your data stays
under your control.

See more info on our privacy concerns about using AI.

8. Optional client-side virus scanning (future feature)

For users who wish to add an additional security layer, in the nearby future we
may offer optional client-side scanning (CSS) to detect potential malware or
viruses before upload. This feature is completely optional and user-controlled;
Scanning happens locally on your device. Files are not uploaded to external
servers for analysis; The purpose of this scanning is purely to protect users
from harmful software, not to monitor or inspect content; The feature is
available only in certain subscription plans and is always clearly disclosed.

We will not use client-side scanning to detect or flag any type of content
(including CSAM or other materials), as such scanning introduces high risks of
false positives and would undermine the fundamental value of encryption and user
trust.

9. Integrity verification (hash matching)

To ensure data integrity, our system compares encrypted file hashes during
upload and download.

  • If an encrypted file is modified or tampered with, the resulting hash will differ;
  • The recipient will receive a warning that the file may have been altered and can then choose whether to proceed with the download at their own discretion;
  • After download, the temporary file is automatically and immediately deleted from our servers.

This mechanism provides integrity verification without decrypting or exposing any content.

10. Our Promise

We are committed to:

  • protecting the privacy and security of our users;
  • ensuring full European data sovereignty and independence from non-EU entities;
  • opposing any policy that would weaken end-to-end encryption or enable mass surveillance.;
  • designing our services with privacy-by-design and security-by-default principles;
  • being transparent about how we handle and protect your data.

True privacy is not a privilege. It is a right. We will continue to defend it,
responsibly and with integrity.