GhostVolt Blog

Sign up for the latest articles on data security, cyberthreats, data compliance and privacy.

Trusting Big Tech with your Cloud data.

Are your files and data really secure on Cloud storage such as OneDrive, DropBox and Google Drive?

Steve Beckett By Steve Beckett| Feb 27 2022

Should I trust Big Tech with my data

If you store your files and data on a Cloud backup platform such as OneDrive, Google Drive or DropBox, you may be concerned that your cloud provider can access your data. Your fears are not unfounded. Whilst it is true all Cloud providers encrypt your data on their servers, what they don’t openly tell you is they have the master encryption key to unlock and read your data whenever they choose. A quick search on DuckDuckGo and you’ll quickly find statements such as the following from DropBox:

(3) to enforce our Terms of Service and Acceptable Use Policy. Access to users’ file content is limited to a small number of people. We have strict policy and technical access controls that prohibit access to file content except in these rare circumstances. Link here

Rare circumstances? What does that even mean? I don’t know what constitutes a rare circumstance within DropBox, but what I can tell you is this, DropBox absolutely have the ability to unlock and read all your data.

To quote DropBox again:
Like most major online services, Dropbox personnel will, on rare occasions, need to access users’ file content (1) when legally required to do so.

In other words, when your cloud provider or law agencies require access to your data, they can and will.

What about government agencies?

Right now, there’s increasing pressure from governments and law agencies around the world to force your Cloud provider to hand-over the encryption key to your data if and when required. We’ve seen this recently with Apple and their public refusal to allow the FBI to access personal information on their mobile devices, but behind closed doors, can we be really sure that Apple refused?

To reiterate:
Like most major online services, Dropbox personnel will, on rare occasions, need to access users’ file content (1) when legally required to do so.

In other words, when the government or law enforcement “force” DropBox to reveal your data, they will oblige.

Take the security of your data into your own hands

The best way to prevent Big Tech and the Government from accessing your Cloud data is encryption.

When you encrypt your cloud files and data, it stops your cloud provider from accessing them, even if they are forced by the government, the FBI or aliens. Why? Because your data is encrypted with your key, not theirs. So on those rare occasions when they attempt to access your data, access is denied!

Encryption sounds scary and hard, Is it?

Not at all. There’s plenty Cloud encryption Apps out there which can encrypt your cloud data seamlessly and efficiently. They come in all shapes and sizes so there’s something out there for you.

A word of caution first, The App you choose to encrypt your cloud data must never encrypt or decrypt files within your cloud folder (e.g., your OneDrive folder on your computer), because if it does, your Cloud provider will sync your data before its encrypted, so somewhere on their servers will be a copy of your data, ready to read.

Product plug alert!
GhostVolt performs all encryption and decryption in a location where your Cloud provider has zero access. This means only secure, encrypted files are saved to your cloud folder. No data leaks.