Security & privacy

Your bookmarks, files, and personal data are private by default. Raindrop.io runs on a paid subscription model — no ads, no tracking, no selling your data. This page explains what’s happening behind the scenes to keep everything safe.

​

Data storage

All data is stored in the cloud on Amazon Web Services (AWS) servers in Frankfurt, Germany. Three copies of your data are kept across distributed data centers in Germany at all times. AWS provides industry-leading infrastructure security including a dedicated firewall, key-based SSH authentication, and continuous monitoring. The hosting environment is regularly updated and actively checked for potential intrusions.

​

Encryption

Every connection to Raindrop.io is encrypted over HTTPS with RSA 2048-bit keys. The security configuration supports modern standards including Perfect Forward Secrecy (PFS) and SHA-256 digests, earning a Qualys SSL rating of “A”.

​

Backups & data recovery

Your data is continuously backed up. In the event of a failure, it can be restored to any point in time within the past year. On top of that, you can create your own backups at any time — see Export & backup for details.

​

Access control

• Your collections are private by default — no one can see them unless you explicitly make them public or share with collaborators
• Uploaded files require authentication to access. Even if someone gets a direct link, it is temporary and expires after 10 minutes
• Two-factor authentication is available for an extra layer of login security

​

Privacy & business model

Raindrop.io is an independent, bootstrapped product with over 13 years on the market — no investors, no corporate parent. Revenue comes entirely from Pro subscriptions. There is no advertising, no data mining, and no selling of user data — your information is used only to run the service. For full legal details, see the Privacy Policy and Terms of Service.

​

FAQ

​

Related