Security & Data centers
Is Filecamp reliable, secure, and confidential? Is our data safe? Where is the data hosted?
Bank Level Security
All communications between you and Filecamp is encrypted using the Secure Socket Layer (SSL) and HTTPS protocol. This is the same functionality used by banks and other high-profile e-commerce sites. Files and folders are only publicly viewable when they are accessed through a Share Link.
Backup
Even though our hosting partner, Microsoft Azure, provides data redundancy on all disks, we are performing daily backups of all system data. These backups are retained for 30 days and can be restored (for a fee) if you accidentally have deleted files from your account (and emptied your trash).
Trust & Security
Take advantage of the same secure-by-design infrastructure, built-in protection, and global network that Microsoft Azure uses to protect your information, identities, applications, and devices.
Data confidentiality
Microsoft Azure Data centers maintain secure external perimeter protections. All data centers employ electronic card key access control system that are linked to a system alarm. Access to perimeter doors, shipping and receiving, and other critical areas is logged, including unauthorized activity.
Trust & Security
Microsoft Azure's security model, global infrastructure, and innovative capabilities ensure your organization remains secure and compliant, bolstering your digital operations with confidence and reliability.
Anti-DDoS protection
Microsoft Azure has mechanisms in place to protect its cloud infrastructure and its production services. These mechanisms are designed to ensure that no single service can overwhelm the shared infrastructure and to provide isolation among customers using the shared infrastructure.
Network security
Microsoft Azure provides a multi-layered security model that includes dedicated teams monitoring the platform around the clock. Azure’s network protection includes DDoS mitigation, traffic filtering, segmentation, and continuous threat detection. These controls are built into the platform and applied across all Azure data centres.
Encryption at rest
Microsoft Azure encrypts all storage by default using 256-bit AES. Data at rest can only be accessed by authorised services, and all key usage is logged and audited. Encryption is applied across all Azure regions and storage types, ensuring consistent protection throughout the platform. Read more.
Carbon neutral
At Filecamp we take responsibility for reducing our environmental impact. Microsoft Azure operates with a strong sustainability programme and has committed to becoming carbon negative by 2030, supported by highly efficient data-centre designs and renewable-energy initiatives. Read more.
VIDEO
Why Microsoft Azure
This short presentation provides an inside look at how Microsoft Azure designs and operates its global data-centres. It outlines the core principles behind Azure’s security, resilience and energy-efficient infrastructure, and shows why Filecamp relies on Azure to host customer data.
VIDEO
Security and Data Protection in a Microsoft Azure Data Centre
This video tour of a Microsoft Azure data centre highlights the security and data-protection measures built into Azure’s infrastructure.
General Compliance & Certifications
Filecamp's data center uses independent third-party examination and audit reports across a wide range of specific compliance requirements.Cloud Security Alliance
Cloud Security Alliance (CSA) standards provide a robust framework of best practices for securing IaaS, PaaS and SaaS offerings. Microsoft Azure supports CSA-STAR attestation and self-assessment, demonstrating its alignment with the CSA Cloud Controls Matrix (CCM) and related security controls.
ISO/IEC 27001 certification
Microsoft Azure is certified under ISO/IEC 27001, covering its information-security management system, infrastructure, services and operational processes across all Azure data-centre regions.
SOC 1, 2 and 3 certifications
Microsoft Azure holds SOC 1, SOC 2 and SOC 3 attestation reports, which affirm that its controls covering security, availability, processing integrity, confidentiality and privacy meet independent third-party audit standards.
PCI DSS Certification
Microsoft Azure maintains PCI DSS compliance, ensuring that the platform meets the security requirements for storing, processing and transmitting payment-card data. This certification provides assurance that Azure’s infrastructure supports compliant handling of cardholder information.
HIPAA Compliance
Microsoft Azure supports HIPAA compliance by providing the controls and safeguards required for the secure processing and storage of protected health information. Azure’s compliant infrastructure allows customers to handle health data securely while managing their own application-level responsibilities.
International data transfers
Azure supports international data transfers through the EU Standard Contractual Clauses (SCCs), which remain a valid and regulator-approved mechanism for protecting personal data transferred outside the EEA. Azure provides the contractual and technical safeguards required to ensure compliant cross-border data processing.
Guaranteed uptime
Filecamp has hosted customer data since 2010, with a strong focus on safety, security and continuity. To support this, we rely on Microsoft Azure, which provides a highly resilient global infrastructure designed for long-term stability and performance.
Microsoft Azure offers a monthly uptime SLA of at least 99.99% for most core services. If you want, I can tune this to match the exact SLA tier you plan to reference.
Global Data Centers
Your data is stored on Microsoft Azure. We use 3 different regions for the storing of your data, chosen based on the location of your signup.Filecamp is hosted on Microsoft Azure, giving customers access to one of the largest and most resilient cloud networks in the world. Azure provides data-centre regions across North America, Europe, Asia and Australia, allowing customers to select where their data is stored based on performance, regulatory or organisational needs.
This global footprint helps support data-residency and privacy requirements such as the European General Data Protection Regulation (GDPR). Filecamp can also assist customers who have specific regional compliance mandates or internal governance policies that require data to remain within defined geographic boundaries.
To learn more about Filecamp data center locations, send an email with your query to datacenter@filecamp.com, or contact your customer success manager.