PhotonFile Logo PhotonFile

GDPR Compliance Statement

PhotonFile is committed to protecting the privacy and personal data of all users in accordance with the General Data Protection Regulation (EU) 2016/679 ("GDPR").

These statements are provided for informational purposes and does not constitute legal advice.

Data Hosting and Processing

PhotonFile operates a dedicated EU data center located in Frankfurt, Germany. EU users may create accounts to purchase File Passes, and associated account and billing data is processed and stored within the EU to support GDPR data residency requirements.

File contents themselves are not stored as hosted uploads. File transfers are handled through PhotonFile's relay system using ephemeral, in-memory processing during the transfer session, and are cleared when the session ends.

Data Transit and Relays

PhotonFile's relay system is designed for ephemeral data transfer. Relay nodes forward encrypted traffic in real time and do not provide a hosted storage inbox or browseable library of uploaded files. EU users typically connect to EU-region relays; however, depending on availability and network conditions, traffic may be routed via non-EU relays as a transient network path. In all cases, PhotonFile is designed to minimize processing and avoid retaining file contents after a session ends.

Privacy by Design

  • File contents are handled ephemerally in memory during transfers and are not indexed.
  • PhotonFile is designed to avoid retaining file contents after a transfer ends.
  • Minimal data processing and privacy-by-design are core principles.

Data Protection Commitment

PhotonFile is designed to support GDPR principles such as data minimization, purpose limitation, integrity, and confidentiality. We apply security measures appropriate to risk and continually improve privacy practices as the service evolves.

Contact

To ask questions or exercise your GDPR rights (access, erasure, rectification, or portability), contact our privacy team at [email protected].