Aller au contenu
Vérifié indépendamment · Ré-audit trimestriel
EU VETTED

Icedrive

VéRIFIé
Partage de fichiers · United Kingdom
Fondé en 2019 · icedrive.net ↗

UK/Gibraltar cloud storage (ID Cloud Services Ltd), opt-in Twofish client-side encryption, lifetime plans; UK/DE/US data centres, no region pinning.

En bref

Icedrive, dans la catégorie Partage de fichiers, propose un hébergement dans l’UE avec United Kingdom comme lieu d’hébergement, mais une maison mère ou un sous-traitant américain laisse une exposition matérielle au CLOUD Act.

Notes d’évaluation

Icedrive is operated by ID Cloud Services Ltd, a UK micro-company (HQ Unit 12 J-Shed, Kings Road, Swansea, Wales; one source also cites a Gibraltar registration) founded in 2019 and effectively a one-person operation led by James Bressington; the product offers genuine client-side Twofish encryption but only on an opt-in dedicated encrypted folder, not the whole account, and runs a distributed storage architecture across data centres in the UK, Germany AND the USA with no customer region selection, meaning EU buyers cannot keep data out of US infrastructure; combined with UK-post-Brexit ownership, material CLOUD Act exposure, no public DPA or sub-processors list, and no certifications, the signal mix is the weakest in this category.

CLOUD ACT
OWNERSHIP
SUB-PROCS
non divulgué
Signaux vérifiés
Juridiction
  • Hébergement UE / adéquation
  • Opérateur UE / adéquation
  • Aucune exposition au CLOUD Act
Transparence
  • DPA public
  • Sous-traitants divulgués
  • Clients open source
  • Certification tierce
JUMP TO
OVERVIEW

À propos de Icedrive

Icedrive is a consumer-and-prosumer cloud storage service operated by ID Cloud Services Ltd, a UK micro-company based in Swansea, Wales (one secondary source additionally cites a Gibraltar company registration; the discrepancy is unresolved and flagged below). Founded in 2019, it is effectively a one-person operation led by CEO James Bressington, which is unusual for a directory of procurement-grade vendors and is itself a risk signal: there is no team depth, no funding disclosed, and no public corporate filings surfaced at audit.

The product's headline differentiator is encryption. Icedrive is the only mainstream cloud storage service to use the Twofish algorithm, and it offers true zero-knowledge client-side encryption: files and even file/folder names are encrypted on the device with a 256-bit key that never reaches Icedrive's servers. The important caveat for buyers: this applies only to files placed in a dedicated encrypted folder, not to the whole account. Anything stored outside that folder is not zero-knowledge.

For an EU-sovereignty audit Icedrive is weak. Storage is distributed across data centres in the UK, Germany and the United States with N+2 redundancy, and customers cannot choose their storage region, so EU data can and does land on US infrastructure, which is material CLOUD Act exposure regardless of the client-side encryption available on the opt-in folder. There is no public DPA, no sub-processors list, and no certifications. The vendor's own site (icedrive.net) returned HTTP 403 to automated fetching at audit, so several fields rely on secondary sources.

Pricing is competitive and lifetime-friendly: a 10 GB free tier, Pro plans from ~$5.99/month for 2 TB, and one-time lifetime plans starting around $389 for 2 TB with $199/1 TB and $449/5 TB add-on "stacks"; the lifetime model is the main reason Icedrive appears on best-of lists. Best fit: privacy-curious individuals who will discipline themselves to use the encrypted folder and who value lifetime pricing over EU data residency. Procurement-grade EU buyers should prefer Koofr (SI/DE), Internxt (ES), Tresorit (CH/HU) or Proton Drive (CH), all covered elsewhere on this directory.

SUB-PROCESSORS

Carte des sous-traitants · non divulgué

L'éditeur ne publie pas de liste de sous-traitants. La conformité Schrems II et l'exposition au CLOUD Act ne peuvent pas être vérifiées indépendamment sans elle.
CERTIFICATIONS

Référentiels & certifications · aucune répertoriée

Nous avons vérifié le site de l'éditeur et les registres des organismes de certification. Aucune certification active trouvée à la date du dernier audit (2026-05-18).
FEATURES

Matrice de fonctionnalités

Stockage gratuit 10 Go
Stockage payant (à partir de) 150 Go
Taille max. de fichier Illimité
Synchro photos Oui
Versionnage des fichiers Oui
Partage par lien Oui
Plateformes iOS macOS Windows Android Linux Web
INTéGRATION & ACCèS
REST API No
SSO (SAML / OIDC) No
CONFORMITé & GOUVERNANCE
Audit log No
Self-host / on-prem option No
PRICING

Tarifs & paliers

FREEMIUM
à partir de €6/mois
Voir la page tarifs ↗
PUBLIC DOCUMENTS

Documents publics

L'éditeur ne publie pas de DPA public. Sans contrat de sous-traitance accessible publiquement, les petits clients européens ne peuvent pas signer eux-mêmes l'accord : cela est consigné comme absence de DPA publique (voir Notre méthode).
L'éditeur ne publie pas de liste de sous-traitants. La conformité Schrems II et l'exposition au CLOUD Act ne peuvent pas être vérifiées indépendamment sans elle.
  • Contrat de sous-traitance (DPA)
    — manquant
    manquant
  • Liste des sous-traitants
    — manquant
    manquant
ALTERNATIVES

Alternatives dans cette catégorie

Proton Drive
Switzerland · Fondé en 2014
SOUVERAIN UE

Swiss zero-knowledge encrypted cloud (Proton AG, non-profit-foundation-controlled), 11,496 owned servers, ISO 27001 + SOC 2, 5 GB free.

DPA public Sous-traitants Open source
FROM
€4/mois
CLOUD ACT
NONE
Tresorit
Switzerland · Fondé en 2011
HéBERGé UE

Swiss-Post-owned (state-anchored) E2E encrypted enterprise cloud storage (Tresorit AG, Zurich), Swiss + EU DC options, ISO 27001.

DPA public Sous-traitants Open source
FROM
€10/mois
CLOUD ACT
MATERIAL
kDrive (Infomaniak)
Switzerland · Fondé en 1994
SOUVERAIN UE

Swiss kDrive cloud (Infomaniak, Geneva, since 1994), own Swiss DCs, ISO 27001 + B Corp 2025, district-heating heat recycling.

DPA public Sous-traitants Open source
FROM
€4/mois
CLOUD ACT
NONE