We built FileCollect so your clients' sensitive documents never sit on our servers. Here is how we keep data safe at every step.
All data in transit is encrypted via TLS 1.2+ with modern cipher suites. No unencrypted connections are accepted.
Files are delivered directly to your own Google Drive. We never store permanent copies. Temporary files are purged within 24 hours.
FileCollect complies with the EU General Data Protection Regulation. We process only the minimum data required.
Our infrastructure is hosted in the European Union. Data does not leave the EU except when delivered to your Google Drive.
A DPA is included on every plan, including Free. It covers our obligations as a data processor under the GDPR, the types of data we process, and the security measures we apply. Contact us at support@filecollect.io to request a signed copy.
drive.file scope, which limits access to files and folders created by FileCollect. We cannot read or modify anything else in your Drive.If you find a security vulnerability, please report it to security@filecollect.io. We take all reports seriously and will respond within 48 hours.