Privacy Policy

Last updated: January 08, 2026

1. Introduction

Onlinedrive.io ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our cloud storage service.

By using our Service, you agree to the collection and use of information in accordance with this policy. If you do not agree with our policies and practices, please do not use our Service.

2. Information We Collect

Personal Information

When you register for an account, we collect:

  • Name and email address
  • Password (encrypted)
  • Payment information (processed securely through Stripe)
  • Account preferences and settings

Usage Information

We automatically collect certain information about your use of the Service:

  • File metadata (names, sizes, types, modification dates)
  • Storage usage statistics
  • Access logs (IP addresses, timestamps, actions performed)
  • Device information (browser type, operating system)
  • API usage and requests

File Content

Your files are stored encrypted on our servers. We do not access, view, or scan the content of your files except:

  • As necessary to provide the Service (e.g., delivering files to you)
  • When required by law or legal process
  • To investigate violations of our Terms of Service
  • With your explicit consent

3. How We Use Your Information

We use the collected information to:

  • Provide, maintain, and improve our Service
  • Process transactions and send billing notifications
  • Send important service updates and security alerts
  • Respond to support requests and communications
  • Monitor and analyze usage patterns and trends
  • Detect, prevent, and address technical issues and security threats
  • Enforce our Terms of Service
  • Comply with legal obligations

4. Data Storage and Security

Storage Locations

Your data is stored in the location you select during account creation. We operate locations in:

  • US West (Phoenix, Arizona)
  • US East (Ashburn, Virginia)
  • Canada (Toronto, Ontario)
  • Europe (Amsterdam, Netherlands)
  • UK (London, England)
  • Asia Pacific (Singapore)

Security Measures

We implement industry-standard security measures including:

  • Encryption in transit (TLS/SSL)
  • Encryption at rest (AES-256)
  • Regular security audits and penetration testing
  • Access controls and authentication mechanisms
  • Regular backups and disaster recovery procedures
  • Employee access restrictions and confidentiality agreements

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

5. Information Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your information only in the following circumstances:

Service Providers

We may share information with trusted third-party service providers who assist us in operating our Service:

  • Payment processors (Stripe) for billing
  • Cloud infrastructure providers for hosting
  • Email service providers for communications
  • Analytics providers for service improvement

These providers are contractually obligated to protect your information and use it only for authorized purposes.

Legal Requirements

We may disclose your information if required to do so by law or in response to:

  • Valid legal processes (subpoenas, court orders)
  • Government or regulatory requests
  • Protection of our rights, property, or safety
  • Emergency situations involving public safety

Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity. We will notify you via email and/or prominent notice on our Service of any change in ownership.

6. Data Retention

We retain your information for as long as necessary to provide the Service and fulfill the purposes outlined in this Privacy Policy. Specifically:

  • Account information: Retained while your account is active
  • Files: Retained until you delete them or close your account
  • Deleted files: Recoverable for 30 days, then permanently deleted
  • Closed accounts: Data retained for 30 days, then permanently deleted
  • Access logs: Retained for 90 days
  • Billing records: Retained for 7 years for tax and legal compliance

7. Your Rights and Choices

Access and Control

You have the right to:

  • Access your personal information
  • Correct inaccurate or incomplete information
  • Delete your account and associated data
  • Export your data in a portable format
  • Object to certain processing activities
  • Restrict processing of your data

Communication Preferences

You can control email communications through your account settings. Note that you cannot opt out of essential service communications (e.g., security alerts, billing notices).

Cookies and Tracking

We use cookies and similar technologies for authentication, preferences, and analytics. You can control cookies through your browser settings, though disabling cookies may affect Service functionality.

8. Children's Privacy

Our Service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you become aware that a child has provided us with personal information, please contact us, and we will take steps to delete such information.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws. By using our Service, you consent to such transfers. We take appropriate safeguards to ensure your data is protected in accordance with this Privacy Policy.

10. California Privacy Rights

California residents have additional rights under the California Consumer Privacy Act (CCPA):

  • Right to know what personal information is collected
  • Right to know if personal information is sold or disclosed
  • Right to opt-out of the sale of personal information
  • Right to delete personal information
  • Right to non-discrimination for exercising these rights

We do not sell personal information. To exercise your rights, contact us at privacy@onlinedrive.io.

11. GDPR Compliance

For users in the European Economic Area (EEA), we process your data based on the following legal grounds:

  • Contract performance: To provide the Service you requested
  • Legitimate interests: To improve and secure our Service
  • Consent: For marketing communications (which you can withdraw at any time)
  • Legal obligations: To comply with applicable laws

You have the right to lodge a complaint with your local data protection authority if you believe we have violated your privacy rights.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by:

  • Posting the new Privacy Policy on this page
  • Updating the "Last updated" date
  • Sending an email notification for material changes

Your continued use of the Service after changes become effective constitutes acceptance of the revised Privacy Policy.

13. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Privacy Team
Email: privacy@onlinedrive.io
Support: support@onlinedrive.io

We will respond to your request within 30 days.