The security and confidentiality of your data is the highest priority for TeamDrive. Before TeamDrive transfers your data, it is encrypted on your computer (AES-256). Only you decide who has access to your data. TeamDrive has been awarded the Data Protection Seal of Privacy of the ULD.
Encryption in TeamDrive Works As Follows
When TeamDrive is installed, a public-private (Diffie-Hellman with TeamDrive 2 and RSA-2048 with TeamDrive 3) key pair is created for each installation. These keys are used for the secure transfer of TeamDrive invitations. The public key is stored on a central server operated by TeamDrive.
TeamDrive encrypts your files on your computer before they are uploaded, using the AES-256 algorithm. A separate symmetric AES-256 key is produced for each folder. As soon as you invite a new group member, the symmetric key of the folder is encrypted with the public key of the group member whom you want to invite and this is then sent to the group member. The access data for the disk space on the TeamDrive server is also sent in an encrypted form. The group member is able to decode the symmetric key using his or her private key and join the folder. This procedure ensures that only authorized group members have access to the data.
Security With No Additional Effort
The setting up and management of all keys and access data is carried out automatically in TeamDrive, without the user having to worry about it. This ensures no unencrypted data leaves your computer and unauthorized individuals do not have access to your data anywhere on the Internet.
TeamDrive has been checked by the experts of the Independent Regional Centre for Data Protection of Schleswig-Holstein (Unabhängiges Landeszentrum für Datenschutz Schleswig-Holstein (ULD)) and awarded its Data Protection Seal of Privacy. The ULD is an office of the regional government of Schleswig-Holstein and is based in Kiel. It carries out state control and advisory functions in the field of data protection and freedom of information.
TeamDrive has undertaken all possible measures, technical and contractual, to protect personal data against unauthorized access. Due to the special legal situation when using the internet and the amazon cloud it cannot be excluded, that the US National Security Agency may theoretically gain access to personal data during the runtime of the system. Yet, this applies at the most to your login data such as user name and email address.
No access to the data transferred from the TeamDrive client is possible. All 256 bit AES keys, in order to gain data access, are stored solely on the client computer. Amazon, other third parties and the US National Security Agency have no possibility to decrypt stored data. Decryption during runtime is also not possible.
The Data Protection Seal of Privacy confirms that TeamDrive is suitable for use in businesses and public offices for the confidential exchange of information.
TeamDrive has the Data Protection Seal of Privacy of the Independent Regional Centre for Data Protection of Schleswig-Holstein (ULD)
(Test certificate number 2-3/2005 valid until Oktober 22, 2015)
(in German language only)