> ## Documentation Index > Fetch the complete documentation index at: https://help.raindrop.io/llms.txt > Use this file to discover all available pages before exploring further. # Security & privacy > How your data is stored, protected, and kept private Your bookmarks, files, and personal data are private by default. Raindrop.io runs on a paid subscription model — no ads, no tracking, no selling your data. This page explains what's happening behind the scenes to keep everything safe. ## Data storage All data is stored in the cloud on **Amazon Web Services (AWS)** servers in **Frankfurt, Germany**. Three copies of your data are kept across distributed data centers in Germany at all times. AWS provides industry-leading infrastructure security including a dedicated firewall, key-based SSH authentication, and continuous monitoring. The hosting environment is regularly updated and actively checked for potential intrusions. ## Encryption Every connection to Raindrop.io is encrypted over **HTTPS** with RSA 2048-bit keys. The security configuration supports modern standards including Perfect Forward Secrecy (PFS) and SHA-256 digests, earning a **Qualys SSL rating of "A"**. ## Backups & data recovery Your data is continuously backed up. In the event of a failure, it can be restored to any point in time within the past year. On top of that, you can create your own backups at any time — see [Export & backup](/export) for details. ## Access control * Your collections are **private by default** — no one can see them unless you explicitly [make them public](/public-page) or [share with collaborators](/collaboration) * Uploaded files require authentication to access. Even if someone gets a direct link, it is temporary and expires after 10 minutes * [Two-factor authentication](/authentication#two-factor-authentication-2fa) is available for an extra layer of login security ## Privacy & business model Raindrop.io is an independent, bootstrapped product with over 13 years on the market — no investors, no corporate parent. Revenue comes entirely from [Pro subscriptions](/premium-features). There is no advertising, no data mining, and no selling of user data — your information is used only to run the service. Every app — web, desktop, mobile, browser extension — is [open source on GitHub](https://github.com/raindropio). You can inspect exactly what data each app collects and where it goes. No black boxes. For full legal details, see the [Privacy Policy](/privacy) and [Terms of Service](/terms). ## FAQ On Amazon Web Services (AWS) servers in Frankfurt, Germany. Three copies are maintained across distributed data centers. All connections between you and Raindrop.io are encrypted over HTTPS with RSA 2048-bit keys, Perfect Forward Secrecy, and SHA-256 digests. No. File access requires authentication, and direct links are temporary — they expire after 10 minutes. Collections are private unless you explicitly share them. No. Revenue comes from Pro subscriptions. There is no advertising or data selling. All apps are open source — you can verify this yourself by reviewing the code on [GitHub](https://github.com/raindropio). Data is backed up continuously and can be restored to any point within the past year. Three copies are always maintained across multiple data centers. You can [delete your account](/transfer) at any time. You can also email [info@raindrop.io](mailto:info@raindrop.io) to request data deletion. ## Related Manage sign-in methods, passwords, and 2FA Download your data or set up automatic backups Move data between accounts or remove your account