When a cloud service says your files are "encrypted," the crucial question is who can decrypt them. With most mainstream services, the answer is: the provider can. Client-side encryption flips that — your files are scrambled on your own device before they ever leave it, so the company stores data it genuinely cannot read. This guide explains how it works, how it differs from ordinary server-side encryption, its honest trade-offs, and which services actually do it.
What client-side encryption is
Client-side encryption means the encryption happens on the client — your phone or computer — before your data is uploaded. The key that locks and unlocks your files is derived from your password and stays on your device. The server never receives it.
The result: when you upload a file, the provider only ever holds ciphertext — a scrambled blob it cannot open, scan, index, or hand over in readable form. This is the technical mechanism behind the "zero-knowledge" and "end-to-end encrypted" labels you see on privacy-focused storage.
How it works, step by step
- You type your password into the app. From it, the app derives an encryption key — locally.
- Before any upload, the app encrypts the file on your device with that key.
- Only the ciphertext is sent to the server (still over TLS, so it's encrypted in transit too).
- When you open the file, the ciphertext comes back and is decrypted on your device with your key.
At no point does the readable file — or the key — exist on the provider's servers. That's the whole point: the service is a courier for sealed envelopes it can't unseal.
Client-side vs server-side encryption
This is where most "is it private?" confusion lives:
- Server-side encryption — your file is uploaded, then the provider encrypts it on its servers with keys it controls. Good against outside hackers and stolen disks, but the provider can still read, scan, or disclose your data. This is the default for Google Drive, Dropbox and iCloud.
- Client-side encryption — your file is encrypted on your device first, and only you hold the key. The provider stores ciphertext it cannot read. Good against hackers and the provider itself (and the legal demands it can be served).
The single difference that matters is who holds the key. For the storage-model version of this distinction, see end-to-end vs zero-knowledge cloud storage.
What it protects — and what it doesn't
Protects: the contents of your files from the provider, its staff, anyone who breaches its servers, and anyone who legally compels it. They all see only ciphertext.
Doesn't, generally:
- Some metadata — depending on the service, file sizes, timestamps, or folder structure may still be visible to the provider even when contents aren't.
- A compromised device — if malware or someone with access uses your unlocked device, encryption is bypassed at the point where files are decrypted: the endpoint.
- A lost password — because only you hold the key, there's usually no recovery if you lose your password and recovery key (see the FAQ). True privacy and "the provider can reset it for me" are mutually exclusive.
Client-side encryption is powerful, not total — it secures your data at rest and in transit, not the devices that hold the keys.
Which services actually do it
Some build it in by design; with others you add it yourself:
- Built in — Proton Drive and Tresorit encrypt on the device by default; pCloud offers it via the optional Crypto add-on; MEGA applies it across the account.
- Add it yourself — tools like Cryptomator or VeraCrypt create an encrypted vault on top of any cloud, so files are client-side encrypted before they sync. See our Cryptomator vs VeraCrypt comparison.
Mainstream Google Drive, Dropbox and iCloud are generally server-side by default. If privacy from the provider matters, look specifically for client-side, end-to-end or zero-knowledge. Compare options in our best free encrypted cloud storage guide.
Client-side encrypted storage → pCloud + Crypto
Swiss jurisdiction · Files encrypted on your device with the Crypto add-on (zero-knowledge) · Lifetime plans
How to check a service really does it
Marketing language is slippery. A few honest checks:
- Does it say "client-side", "end-to-end" or "zero-knowledge" — not just "encrypted" or "secure"?
- Does it warn that a lost password means lost data? That warning is a good sign — it means they can't reset it, so they can't read it either.
- Is the encryption on by default, or an add-on (like pCloud Crypto) you must enable?
- Is the client open source or independently audited? Verifiable code beats a promise.
If a provider can show you your files after a simple "forgot password" email, your data was never client-side encrypted.
The bottom line
Client-side encryption is the mechanism that makes "private" cloud storage actually private: your files are locked on your own device, and only you hold the key, so the provider stores ciphertext it can't read. It beats ordinary server-side encryption because it protects against the provider itself — at the cost of real responsibility for your password. For genuinely private storage, look for client-side / zero-knowledge by design, or add it yourself with a vault tool. To understand the broader picture first, start with what cloud storage is.
Editorial guide based on how client-side encryption works (on-device keys, ciphertext-only storage) and its documented trade-offs (metadata, endpoint security, no password recovery). The commercial link carries the rel="sponsored nofollow" attribute; an affiliate commission may apply at no extra cost to you.
Store your files privately → pCloud
Swiss privacy · 10 GB free · optional zero-knowledge Crypto
