First up we have iCloud, the Apple solution to store user content on the cloud. Scrolling down to the appropriate section, we find this:
Access to Your Account and Content
Apple reserves the right to take steps Apple believes are reasonably necessary or appropriate to enforce and/or verify compliance with any part of this Agreement. You acknowledge and agree that Apple may, without liability to you, access, use, preserve and/or disclose your Account information and Content to law enforcement authorities, government officials, and/or a third party, as Apple believes is reasonably necessary or appropriate, if legally required to do so or if we have a good faith belief that such access, use, disclosure, or preservation is reasonably necessary to: (a) comply with legal process or request; (b) enforce this Agreement, including investigation of any potential violation thereof; (c) detect, prevent or otherwise address security, fraud or technical issues; or (d) protect the rights, property or safety of Apple, its users, a third party, or the public as required or permitted by law. [1]
Apple hereby states that it is allowed to take unknown “steps” if there is any suspicion about content from a user that violates its Terms of Service, if it is required by law, or if security or technical issues arise from it.
If we take a look at Dropbox’s Terms of Service, we will reach this point:
Your Stuff & Your Permissions
We need your permission to do things like hosting Your Stuff, backing it up, and sharing it when you ask us to. Our Services also provide you with features like photo thumbnails, document previews, email organization, easy sorting, editing, sharing and searching. These and other features may require our systems to access, store and scan Your Stuff. You give us permission to do those things, and this permission extends to trusted third parties we work with. [2]
Similar to its iCloud competitor, Drobpox needs to access and scan your uploaded files and asserts the right to share its data with third parties. However, it does not state when your files need to be accessed.
The most unsettling statement can be found on Google Drive’s Terms of Service:
Your Content in our Services
Some of our Services allow you to upload, submit, store, send or receive content. You retain ownership of any intellectual property rights that you hold in that content. In short, what belongs to you stays yours.
When you upload, submit, store, send or receive content to or through our Services, you give Google (and those we work with) a worldwide license to use, host, store, reproduce, modify, create derivative works (such as those resulting from translations, adaptations or other changes we make so that your content works better with our Services), communicate, publish, publicly perform, publicly display and distribute such content. The rights you grant in this license are for the limited purpose of operating, promoting, and improving our Services, and to develop new ones. This license continues even if you stop using our Services (for example, for a business listing you have added to Google Maps). [3]
This section gives them the right to basically do anything with your information and files and share them with undisclosed third parties and the law, even after you stop using their services.
After reviewing how these centralized companies can make use of anyone’s uploaded files on their systems, it becomes clear that many individuals and entities can have access to your data. It is possible that your files can be misused and/or stolen under certain circumstances.
