Get your business GDPR ready - with

GDPR compliant thanks to Privacy by Design

Learn how the GDPR affects the storage of your data and how ownCloud Online helps you to fully comply with these regulations.

  • 100% GDPR compliant
  • German server location
  • Maximum security through end-to-end-encryption

By introducing GDPR (General Data Protection Regulation) in 2018, the EU imposed strict business regulations regarding the processing and storage of personal data.

ownCloud Online helps bring your business in line with GDPR utilising Privacy by Design, open-source code, end-to end-encryption and Zero-Knowledge-Technology, all residing on servers located in Germany.

  • German-based company and server location
  • Encrypted data transfer (TLS AES 256)
  • Client-based end-to-end encryption
  • Automatic auditing and logging of all activity
“Well knowing that even people working at ownCloud cannot access the data that I am uploading is a good feeling. Using ownCloud really creates that feeling of security that I wanted.”
Verified 5-star rating on Gartner Peer Insights

Evaluate ownCloud Online now. 100% cost-and-commitment free!

Signup product manager Florian Lenz

„GDPR compliance has top priority for us and our clients!“

Florian Lenz, Product Manager ownCloud Online

The EU’s General Data Protection Regulation (GDPR) is a law aimed at protecting personal data and privacy in Europe. These regulations impact the way we do business, not only at the company level but on a personal level, too.
Non-compliance can result in considerable penalties: Businesses found to be in violation may face a fine of up to 20 million Euro or 4% of the company’s annual gross (worldwide).

We want to support you with this issue. follows a strict, client-orientated policy to ensure security, control and compliance.

“According to a German survey by Reuters, 17 out of 24 government agencies stated that they didn’t have the appropriate funds or competences to implement GDPR compliance”

Douglas Busvine, Julia Fioretti, Mathieu Rosemain, Reuters

When is a cloud solution GDPR compliant?

Both technical and organisational measures are fundamental to fulfil the requirements of GDPR, enables your business to implement provisions of data protection while simultaneously allowing you to work with and share your data. You can control who has access to the personal data; you can implement data activity and internal security protocols for data administration and so much more.

We’d like to take the time to explain the most important issues regarding GDPR and
show you how ownCloud Oonline helps you to be compliant.



“The controller and the processor shall implement appropriate technical and organisational measures to ensure a level of security appropriate to the risk.”

Encrypt your data to prevent loss or theft

Save confidential business reports, manage personnel files, share design drawings with business partners or store patient records securely.
This is why you are GDPR compliant with ownCloud Online:

  • Access control

    All of your data is transferred encrypted – always.
    With active end-to-end encryption, your data will even be protected in the case of unauthorised transmission; the data will be unreadable and therefore GDPR safe.

  • Access control

    Multi-factor authentication and password regulations give effective protection against potential cyber-attacks.

  • Availability and accessibility controls

    Every upload is virus-scanned in real-time and, if there are any security concerns, will be blocked. Auto-backup makes sure your data is always available for you when you need it.

  • Separation requirement

    ownCloud Online is one of the few providers offering single-tenancy architecture. The single-tenancy architecture ensures that every client receives their own allocated storage and memory.

  • Input control

    Data activity is logged, and you can retrace every change via the integrated auditing tool.

„ownCloud comes with good admin controls. It follows strict security mechanisms/practices, as the web attacks are increasing gradually. Till now I didn't find any kind of drawback while using it. Good to go with ownCloud.“
Verified 5-star rating on Gartner Peer Insights

GDPR compliant cloud thanks to Privacy by Design

Thanks to ownCloud Online’s open-source architecture, you have software transparency, and all activities can be reviewed anytime. The open-source code is constantly reviewed and kept up to date security-wise by one of the world’s most active expert communities.

Privacy by Design and Privacy by Default policies have been implemented into the product design of ownCloud Online and are valued worldwide by over 100 million users. This is why clients such as CERN, Airbus, Fujitsu, Pepperl & Fuchs and many more trust their highly sensitive data to ownCloud Online.

All activities in your cloud are logged, and log data is accessible anytime and made transparent via the auditing module.
This is another important criterion required by GDPR.



“The controller shall implement appropriate technical and organisational measures for ensuring to meet, by default, the requirements of this Regulation and protect the rights of data subjects.”



“Personal data shall be processed lawfully, fairly and in a transparent manner in relation to the data subject (‘lawfulness, fairness and transparency’)”

Advanced data protection thanks to certified server centres in secure German locations.

Our mission: Your privacy

Data protection and privacy have always been part of the foundation of ownCloud Online, even before GDPR. ownCloud was founded in 2010, and since the very beginning, we have been dedicated to the belief that privacy and data protection are fundamental human rights. With this as our basic business ideology, we focus on Privacy by Default and Privacy by Design.
GDPR simply strengthens our policies and ideology.

ownCloud Online offers the most secure and convenient cloud solution for SMEs, enterprises, NGO’s, journalists, doctors, lawyers as well as for private clients.

Certified server centres

Our server centres are certified according to ISO 9001, ISO 14001, ISO 18001, ISO 27001, ISO 50001, ISAE 3402 – SOC 1+2 in addition to other classifications. Virus scanners and firewalls check every upload and, if there are any security concerns, will be blocked.
Through our single-tenancy architecture, we create individual workspaces while effectively storing client data separately.

German company and server location

German server centres are subject to German law, ensuring providers have no obligation towards any authority requesting disclosure or access to data (as opposed to US-based providers for example, who are subject to the CLOUD-Act). Even in case of a presumed criminal offence, German authorities only have limited access to your data. However, these conditions only apply to providers with both their company and server location in Germany.
Only ownCloud Online offers you this: where protection of your data is concerned we make no compromises.

“ownCloud is the platform that can guarantee you full data protection and security at all stages of your work with this tool.”

Verified 5-star rating on Gartner Peer Insights

Evaluate 14 days for free!

Please enter a valid email adress

Compare pricing plans. Try it for free.

Pricing starts as low as 15€ per user per month for single users and 13€ per user per month for Teams. Add your private Cloud Office for only 4€!


Try for free

  • Evaluate 14 days for free
  • Full feature set


No automatic subscription


For Single Users

  • 500GB of secure cloud storage for your files
  • Easy-to-use sharing and collaboration tools


/ user / month, yearly subscription, 1-4 users

18€ for monthly billing

Best offer

For Teams

  • from 1000GB secure cloud storage, additional 200GB per user
  • Easy-to-use sharing and collaboration tools
  • Extensive security features and administration options


/ users / month, yearly subscription, 5+ users

16€ for monthly billing

Features that make your business GDPR ready:

  • German-based company and server location
  • Encrypted data transfer (TLS AES 256)
  • Client-based end-to-end encryption
  • Automatic auditing and logging of all activity
  • Management of granular access authorization
  • Redundant storage
  • Single-tenancy architecture
  • Self-managed encryption keys
  • Integrated virus protection

SMEs, enterprises, NGO’s, journalists, lawyers or private clients:

With ownCloud Online, your business is GDPR compliant.

About ownCloud

Since 2010 we have been working on providing a cloud solution implemented with the highest security standards. Patient records, lawyers’ papers, secret contracts or valuable design drawings – no unauthorised third party should have access.

With this ideal in mind, offers a GDPR compliant solution. Our goal is to combine the convenience of a cloud with absolute privacy.

Worldwide over 100 million people are already trusting in and profiting from these solutions. Are you ready to get started?

“Unlike Dropbox and other similar programs, ownCloud differs from them by providing the user with full control over their data.”
Verified 5-Star review on Gartner Peer Insights

Ready to get your company GDPR ready, too?

Test for free now!