Relay
Live transfers are handled through PhotonFile's in-memory Relay path during the active session and are cleared when the session ends.
GDPR at PhotonFile
PhotonFile is designed to support GDPR-aligned privacy practices across both product paths: Relay for ephemeral-by-default live transfer and Photon Vault for persistent encrypted storage by choice.
This page is provided for general informational purposes and does not constitute legal advice.
Photon Vault
Vault is the persistent-storage path. It stores encrypted data at rest for ongoing access by authorized clients.
Data hosting and processing
PhotonFile operates a dedicated EU data center located in Frankfurt, Germany. EU users may create accounts to purchase File Passes, subscriptions, or Vault services, and associated account and billing data is processed and stored within the EU to support GDPR data residency requirements.
Relay file contents are not stored as hosted uploads. Relay transfers are handled through PhotonFile's in-memory system during the active session and are cleared when the session ends. Photon Vault is separate: Vault stores encrypted data at rest for persistent access when users choose encrypted storage.
Relay and Vault data paths
PhotonFile's Relay system is designed for ephemeral data transfer. Relay nodes forward encrypted traffic in real time and do not provide a hosted storage inbox or browseable library of uploaded files. EU users typically connect to EU-region relays; however, depending on availability and network conditions, traffic may be routed via non-EU relays as a transient network path.
Photon Vault is the persistent-storage product in the PhotonFile portfolio. It stores encrypted data for ongoing access rather than live-only delivery, while remaining designed around client-side encryption and authorized client access.
Privacy by design
- Relay file contents are handled ephemerally in memory during live transfers and are not indexed.
- Photon Vault stores encrypted data for persistent access, while plaintext access is intended to remain limited to authorized clients.
- Minimal data processing and privacy-by-design are core principles across both product paths.
Data protection commitment
PhotonFile is designed to support GDPR principles such as data minimization, purpose limitation, integrity, and confidentiality. We apply security measures appropriate to risk and continually improve privacy practices as the service evolves.
PhotonFile uses Google Ads conversion measurement only after consent. Until consent is accepted, we do not load the Google Ads measurement tag or store ad attribution identifiers such as click IDs. You can update that choice here: .
Cloudflare or similar edge providers may process network metadata for CDN delivery, WAF protection, security monitoring, routing, and abuse prevention.
Your rights and contact
To ask questions or exercise your GDPR rights, including access, erasure, rectification, or portability, contact our privacy team at [email protected].