Ways to securely store and share files

From TCU Wiki

There are so many different ways that human rights defenders have found to securely store and share files with others. There are some groups of defenders who choose to avoid storing or sharing files via the internet, because of their threat model. But for others, who have a different threat model, that is just too inconvenient.

Recipes for storing and sharing files

If you work with a team of people, and need a way to store and share files within this team, here are a few options:

Google

As long as the Google company is not your adversary, their platform provides a lot of great tools for individuals and team. Their platform also includes many important security features, such as two factor authentication. There are at least three different ways to use the Google platform for file sharing: Google Drive (which is mostly for individuals), Google for Nonprofits (which is basically Google Workspace, but free if you are an eligible nonprofit organization), and Google Workshop for businesses.

Google Drive (for individuals)

"Store, share, and collaborate on files and folders from your mobile device, tablet, or computer." Link: https://www.google.com/drive/

Google for Nonprofits

Google for Nonprofits provides free tools to nonprofit organizations that allow them to work more quickly and efficiently reach a wider audience, spur more supporters to take action, and tell their story in a more compelling way. This offer is available to our community directly through Google, and it is made possible in part by TechSoup Validation Services. Learn more about how TechSoup works with leading companies to bring offers like this one to the nonprofit sector.

Google for Nonprofits Eligibility Guidelines (including the countries that your organization must be registered in)

Google Workspace (for businesses)

For those organization in countries that are not eligible for Google for Nonprofits, you can consider purchasing Google Workspace for Businesses. Pricing is around 12 USD per month per user. Link: https://workspace.google.com/

For each of these Google file sharing options, you will want to make sure to:

  • have all contributors use strong, unique passwords,
  • have all contributors use two factor authentication, and
  • create some policies around permissions and access levels to certain kinds of information, and policies around how to add and remove people from access.

Proton

Proton Drive

"Proton Drive is an end-to-end encrypted Swiss vault for your files that protects your data. Proton Drive's strong encryption goes beyond other secure cloud solutions. End-to-end encryption ensures that no one, not even us, can access your files. Files, file names, folder names, and more, are all fully encrypted at rest and in transit to the secure cloud. Proton Drive's end-to-end encryption also works when sharing files and folders. Optional features like password protected files and expiring file sharing links enhance security even further. Best of all, there are no file size limits." Link: https://proton.me/drive

Guide: https://proton.me/support/drive-web-guide

Proton for Business

Secure business email, calendar, VPN, and much more, built on the principle of your data, your rules. Pricing: about 11 USD per month per person. Link: https://proton.me/business

Stackspin (hosted by Greenhost)

Stackspin is an online office suite in which you control your data. It includes everything a small organisation needs to get themselves organised. as of May 2023, the suite includes:

  • NextCloud for file sharing
  • Only Office for document collaboration
  • Zulip for team chat
  • Wordpress for website creation
  • NextCloud for password management
  • Wekan for task management

The Stackspin dashboard is a single place for installing and managing apps, adding and managing users, and customizing your Stackspin instance.

The project is aimed at CSOs and individual activists that require online solutions and are weary of the corporate offering (or are keen to move away from them). They want these services hosted on a system that they can rely on, but do not need to maintain.

NextCloud

Open source, will need to be self-hosted. Link: https://nextcloud.com/

Secure hosting companies for human rights defenders

See Trusted hosting companies in the human rights community >>

Sharing sensitive files

🧅 OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. https://onionshare.org

Retrieved from "https://wiki.digitalrights.community/index.php?title=Ways_to_securely_store_and_share_files&oldid=50300"