PhantomFiles.io was built to protect your freedoms. This policy
explains, in plain English, what data we collect, how we use it, and who we share it with.
What We Collect
Your email address (via Sign-in with Google)
Payment information (processed and stored by Stripe)
Files you upload to our services (stored on Cloudflare R2 with zero-access / end-to-end encryption)
File download and upload metrics to prevent abuse (e.g 5 upload actions, 10 download actions)
Account creation date (to the day, in UTC time)
HTTP session data (stored in a cookie on your browser)
Privacy-preserving website usage analytics by Umami (GDPR compliant)
How We Use Your Data
We use your data to:
Provide and improve our file sharing service (Sign-In with Google & Stripe)
Process payments (Stripe)
Manage your account (Email address)
Ensure the security of our service (File download and upload metrics)
Track sales conversions and feature usage to improve the experience of PhantomFiles.io (analytics by Umami)
Data Sharing and Third-Party Services
PhantomFiles.io does not sell your personal data to third
parties. However, we do use some third-party services to provide our service:
Data Storage
The only data we share with a third party is the encrypted file data, which is stored on Cloudflare R2:
Cloudflare R2: We use Cloudflare R2 for secure file storage. The files you upload are encrypted before being
sent to Cloudflare R2, meaning that neither Cloudflare nor anyone else can access the contents of your files
without the encryption key.
Authentication and Payment Processing
Google Sign-In: If you choose to use "Sign in with Google", you interact directly with Google's
authentication service. We only receive the information you allow Google to share with us for the purpose of
creating or accessing your PhantomFiles.io account.
Stripe: For payment processing, you provide your payment information directly to Stripe through their secure
platform. We do not have access to your full payment details.
Analytics and Conversion Tracking
Umami: To improve the overall experience of PhantomFiles.io, we use Umami analytics to track usage of
PhantomFile features and HTTP activity.
Stripe: For payment processing, you provide your payment information directly to Stripe through their secure
platform. We do not have access to your full payment details.
Security and Anti-Abuse Measures
Cloudflare Turnstile: We use Cloudflare Turnstile to protect our website from spam and abuse. This service
sets a cookie in your browser to verify that you are a human user and not a bot.
These services operate under their own privacy policies, and your use of these services is subject to their
respective terms.
Data Security
We use zero-access / end-to-end encryption to protect your files. Currently, we use PBKDF2-HMAC-SHA512 with
600,000 iterations in the PhantomFiles.io frontend website to generate the encryption key; used to encrypt your
files.
Only you and those you share your Secured File Room Name and password
with can decrypt
your encrypted files.
Cookies
We use first-party cookies for the following purposes:
To maintain your session and provide essential functionality of our service
Cloudflare Turnstile cookie for anti-spam and security purposes
You can manage your cookie preferences through your browser settings.
Changes to This Policy
We may update this policy from time to time. We will notify users of any significant changes to how we handle
personal data.
Contact Us
If you have any questions about this privacy policy, please contact @_imdawon on X.