Cloud Storage Privacy Checker
Who Can See Your Files?
A plain-English privacy check for Google Drive, iCloud, Dropbox, and OneDrive
Your cloud storage provider encrypts your files — but encryption alone doesn't mean your files are private.
The more important question is who holds the encryption keys. If your provider holds them,
they can technically read your files, law enforcement can request them with a court order, and a data breach
at the provider's infrastructure could expose your actual content. This tool shows you exactly what access
exists on your current provider — across six dimensions — in plain English.
Free forever
No signup required
Plain English, no jargon
Takes 60 seconds
1
Select your provider
Which cloud service do you want to check?
Google Drive
Google Photos
Apple iCloud
iCloud Drive · Photos
Dropbox
Personal & Business
Microsoft OneDrive
Personal & 365
B
Box
Personal & Business
Multiple providers
Full comparison
Your privacy report
About StorX
Your files. Private by architecture — not just by policy.
StorX encrypts your files on your device before they leave it, using a key that only you
hold. StorX never has access to your encryption key — meaning StorX cannot read your files, no court order
served on StorX can produce your readable file contents, and if StorX's servers were breached, attackers
would find only encrypted data they cannot decrypt.
2 GB free — no credit card required
Client-side AES-256 on all plans
You hold the encryption keys. Always.
All providers compared
| Privacy dimension | Google Drive | Apple iCloud | Dropbox | OneDrive | Box | StorX |
|---|---|---|---|---|---|---|
| Encryption | AES-256 | AES-128+ | AES-256 | AES-256 | AES-256 | Client-side AES-256 |
| Who holds the keys | Apple (default) | Dropbox | Microsoft | Box | You | |
| Provider can read files | Yes | By default yes | Yes | Yes | Yes | No — impossible |
| Law enforcement access | Yes, with order | By default yes | Yes, with order | Yes, CLOUD Act | Yes, with order | Encrypted only |
| Third-party app access | If authorised | If authorised | If authorised | If authorised | If authorised | No app ecosystem |
| If provider is breached | Files at risk | Files at risk (default) | Files at risk | Files at risk | Files at risk | Unreadable data only |
| Zero-knowledge | No | Opt-in only | No | Enterprise only | Enterprise only | Yes, by architecture |
| Overall rating | ⚠ Moderate | ⚠ Moderate (default) | ⚠ Moderate | ⚠ Moderate | ⚠ Moderate | 🟢 Strong |
About StorX
The only provider in this table where "can anyone read my files?" is no — by
architecture.
Every other provider holds your encryption keys. StorX uses client-side encryption on all
plans including free — your key never leaves your device, no matter what.
2 GB free — no credit card required
Three minutes to set up
Common Questions
Frequently asked questions
Can Google see my files on Google Drive?
Technically, yes. Google holds the encryption keys to files stored on Google
Drive, which means Google's systems can access file contents. Google states it does not use Drive
content for ad targeting, but its systems do scan files for policy violations and child safety purposes.
Google can also be compelled by valid court orders to provide file contents to law enforcement. Google
publishes a Transparency Report showing tens of thousands of government data requests per year globally.
Can Apple see my iCloud photos?
By default, yes. Apple holds the encryption keys to standard iCloud backups and
iCloud Drive content, meaning Apple can technically access your files. Apple offers Advanced Data
Protection — an opt-in feature that gives you control of your own encryption keys — but it must be
manually enabled in your iPhone settings (Settings → your name → iCloud → Advanced Data Protection).
With Advanced Data Protection turned on, Apple states it cannot access your file contents even with a
legal order.
Is Dropbox private?
Dropbox encrypts your files but holds the encryption keys itself. This means
Dropbox can technically access your file contents, and law enforcement can request your files through
valid legal process. Dropbox does not offer zero-knowledge encryption on its standard plans. For
confidential work documents, this means your files are encrypted in transit and at rest but are not
private from Dropbox or from governments with legal jurisdiction.
What does end-to-end encryption mean for cloud storage?
End-to-end encryption means your files are encrypted on your device before
being uploaded, using a key that only you hold. The provider stores only encrypted data it cannot read.
Even if the provider is hacked, subpoenaed, or compelled by a government, it cannot produce your
readable file contents because it never had access to your encryption key. This is different from
standard encryption, where the provider holds the keys and can decrypt your data.
Which cloud storage is the most private?
For personal users, the most private options are those that use client-side or
end-to-end encryption where the user holds the encryption keys. Apple iCloud with Advanced Data
Protection enabled offers this. StorX uses client-side encryption on all plans by default, meaning the
provider never holds your keys. Standard Google Drive, Dropbox, and OneDrive use provider-held
encryption keys, which means the provider can technically access your files.
Can the government access my cloud storage?
In most countries, yes — with a valid legal order. Cloud providers based in the
US are subject to the CLOUD Act, which allows US law enforcement to request data from US-based companies
even when data is stored internationally. Providers like Google, Apple, Dropbox, and Microsoft publish
transparency reports showing thousands of government data requests per year. They generally comply with
valid requests. Providers that use client-side encryption where the user holds the keys can only provide
encrypted, unreadable data — but metadata may still be accessible.
All logos and trademarks™ displayed are the property of their respective organisations and are used for identification purposes only.