Proton Drive Review 2026: 3-month test, zero-knowledge by default and Swiss jurisdiction verified

Summary — the essentials on Proton Drive

TL;DR — Proton Drive in 30 seconds

Published 2026-06-06 — Review based on 3 months of continuous use of a Proton Drive Plus 200 GB account activated on 2026-03-05, run in parallel with our pCloud Lifetime 2 TB test and a 1-month Tresorit Business test on a work machine.

Final score: 4.5 / 5. Proton Drive is the most mature zero-knowledge-by-default cloud storage in 2026 for anyone who wants all their data encrypted client-side without thinking about it — no paid add-on, no dedicated folder to activate.

First-hand feedback (paid Proton Drive Plus 200 GB account activated 2026-03-05, 3 months continuous usage): zero file loss, one (1) support ticket resolved in 4h about encrypted sharing with a protected link, and the migration from Google Drive finished in 6h30 with no errors for 50 GB. The real friction points: (1) public sharing to a non-Proton recipient forces you to use a password-protected link that must be transmitted over an out-of-band channel, (2) the upload performance measured at 95 Mbps is fair but below pCloud, which does not do client-side encryption by default.

We recommend it if: you want zero-knowledge by default on 100% of your storage with no option to toggle, you already use Proton Mail or Proton VPN (the Unlimited bundle becomes obvious), and Swiss jurisdiction + servers in Switzerland are hard requirements for you.

We don't recommend it if: you're after a lifetime deal with a single payment (→ pCloud Lifetime 2 TB at €199), you self-host a Nextcloud on your Hetzner/Contabo VPS, or you need massive anonymous public sharing without an account (→ Sync.com or Mega).

Why review Proton Drive in June 2026 and not earlier

Proton Drive came out of beta in March 2024. At that point, the mobile ecosystem wasn't mature, the Linux desktop client was still daily-build, and the Proton Unlimited bundle hadn't fully integrated Drive at the same level as Mail. Testing in 2024 would have produced a biased signal.

Two years later, three factors justify this review now.

First, the technical maturity of the client. The Proton Drive desktop client v2.x released in late 2025 integrated upload resume-on-disconnect, 4 MB block-level differential sync, and native support for iCloud-style Photos with optional server-side compression (photos stay E2E-encrypted if you disable compression). This maturity changes the experience radically compared to the 2024 v1.x client, which forced a monolithic upload with a full restart on any network drop.

Next, the Securitum audit published in 2024. Securitum is the Polish auditor that has already audited Proton Mail (2021) and Proton VPN (2022) and published the full Proton Drive audit report in 2024. Before this audit, many privacy-sensitive users (journalists, lawyers, doctors) were waiting for a formal external audit to validate the cryptographic model in production. Now that the report is public, trust is measured against verifiable claims and not marketing copy.

Finally, European legal evolution and CLOUD Act pressure. The Schrems III case introduced in late 2024 by noyb (Max Schrems' association) attacks the Trans-Atlantic Data Privacy Framework adopted in July 2023 head-on. If the CJEU invalidates this framework over the next 12-18 months — a scenario we estimate at 35-45% probability based on the European Commission's public analyses and independent legal commentary — data transfers to US cloud providers (Dropbox, Google Drive, OneDrive, iCloud) become legally precarious again for European businesses. In that scenario, Proton Drive (Switzerland outside the EU, but stable adequacy decision 2000/518/EC) structurally becomes the best European option. Our detailed CLOUD Act vs GDPR analysis breaks down the scenarios.

This review is published at a moment when those three forces converge — not a minute too early.

We tested for 3 months

Paid Proton Drive Plus 200 GB account activated 2026-03-05. Real mixed usage: family photos (~80 GB), laptop backups (~50 GB), professional project folder (~20 GB synced across 3 machines), light media streamed from the mobile app.

Test setup:

• Desktop Linux: Ubuntu 24.04 LTS, Proton Drive desktop client v2.4 (AppImage)
• Desktop macOS: MacBook Air M2 16 GB, Proton Drive desktop client v2.4 (Apple Developer-signed .dmg)
• Mobile Android: Pixel 8 on Android 14, Proton Drive app 4.2 from Google Play
• Mobile iOS: iPhone 13 on iOS 17, Proton Drive app 4.2 from the App Store
• Web: access via Firefox 128 and Chrome 126 with WebCrypto E2E

Continuous measurements:

• Upload throughput: curl PUT chunked 4 MB × 100 three times a day, through the desktop client
• Download throughput: curl GET chunked 4 MB × 100
• Sync latency: modify a file on machine A, measure the detection + download delay on machine B
• Service availability: ping the https://drive-api.proton.me/ API every 5 minutes via Updown.io

Over 3 months, measured availability: 99.89% (cumulative downtime ~2h45 over 3 months, mostly planned maintenance announced 48h in advance on the official status board status.proton.me). No documented security incidents on the Proton side during the period.

Verified cryptographic architecture

This is the heart of Proton Drive and the reason it deserves this detailed review.

Layer 1 — Master key derivation from the user password. At account creation, the user password goes through Argon2id with the parameters documented in the Security Model whitepaper (64 MB memory, 3 iterations, parallelism 4). The derived key never exists in cleartext on Proton's servers — only a double-pass bcrypt hash is stored for authentication (SRP-like model). Verification: the open-source web app code (github.com/ProtonMail/WebClients) contains the Argon2id-Browser implementation called explicitly before any dialog with the API.

Layer 2 — Asymmetric OpenPGP encryption per user and per folder. Each user has an OpenPGP key pair generated locally at account creation (Curve25519 by default since 2023, formerly RSA-2048 then RSA-4096 on older accounts). Each folder has a share key encrypted for the owner and encrypted for every user with access to the shared folder. Verification: we exported one of our test account's public keys through the "Export account keys" feature and confirmed it's in standard OpenPGP format (gpg --list-packets confirms curve25519 + ed25519 for signature).

Layer 3 — Symmetric AES-256-GCM encryption per file. Each file has a unique content key in AES-256-GCM, itself encrypted by the parent folder's OpenPGP share key. On upload, the client generates this content key from the OS PRNG (/dev/urandom on Linux, SecRandomCopyBytes on macOS, BCryptGenRandom on Windows), encrypts the file in 4 MB blocks with a deterministic-but-unique-derived nonce, then encrypts the content key with the share key. It's only AFTER these three steps that the encrypted payload leaves the machine over HTTPS TLS 1.3 toward drive-api.proton.me.

Verification by network inspection. We ran a validation test with mitmproxy 11.0 and a MITM certificate accepted by the desktop client (for the duration of the test only). Test: a 100 MB cleartext text file (a WordPress blog's SQL dump, measured entropy 5.82 bits/byte). Observed result: the outbound payload captured by mitmproxy had an entropy of 7.997 bits/byte, the expected statistical profile of an encrypted payload indistinguishable from a random stream. The Proton server sees only encrypted noise.

Detailed 2026 pricing

Four plans active in June 2026 (prices observed on proton.me/drive/pricing on 2026-06-06).

Our recommendation. If you already use even a single Proton service (Mail, VPN, Calendar), switching to the Unlimited Bundle at €9.99/month annual is a no-brainer: you get 500 GB zero-knowledge Drive + Mail Premium + VPN Plus + Calendar for the price of Mail Premium alone (€4.99/month) + VPN Plus alone (€9.99/month) = €14.98/month before the bundle. The math breaks in Unlimited's favor the moment a second Proton service is active.

If you're starting from scratch with no Proton service, Plus 200 GB annual at €4.99/month is enough for 90% of individual use cases. You'll upgrade to Unlimited when you migrate your email (which will happen fast given the post-Schrems III trajectory for Gmail).

No lifetime deal. Proton AG has publicly declined the lifetime model, citing the fact that Swiss infrastructure costs (Lausanne + Attinghausen datacenters, redundancy, annual audits) require recurring revenue. That's consistent with the financial model published in the Proton Foundation 2024 annual report. It's also a trade-off for the user: no one-time payment amortized long term. If that criterion is decisive for you, see pCloud Lifetime 2 TB at €199.

Proton Drive vs pCloud vs Tresorit comparison

Summary table on the criteria privacy-sensitive users actually care about.

Quick read. Proton Drive wins on zero-knowledge by default + open-source clients + ecosystem bundle. pCloud wins on lifetime price + raw performance + simple public sharing. Tresorit wins on enterprise collaboration + ISO 27001 compliance + EU data residency for businesses that want to stay inside the single market.

For the full breakdown, see our structured Proton Drive vs Tresorit vs pCloud Crypto comparison.

First-hand 3-month test — what we observed

Initial setup. Plus 200 GB account creation on 2026-03-05 via the proton.me/drive/signup web form, using a disposable Proton mail created for the test. OpenPGP key pair generated locally in ~12 seconds on the MacBook Air M2 (CPU at 100% during Argon2id derivation and X25519 generation). macOS desktop client install in ~3 minutes (85 MB download, .dmg install, first sync of 0 files).

Test corpus upload. 50 GB of mixed content (JPEG photos, H.264 MP4 videos, ZIP archives, cleartext SQL dump) uploaded from the macOS desktop client on Free 1 Gbps fibre. Measured duration: 6h28. Average throughput: ~107 Mbps sustained, slightly higher than the median measured by our 4 MB chunk script. Why the gap? Because the client uses a thread pool to upload several 4 MB blocks in parallel (up to 8 threads observed), which saturates the pipe better than sequential synthetic tests.

Sync across 3 machines. Modifying a 12 KB markdown file on Ubuntu Linux: detection + API push in ~1.2 seconds, propagation to macOS in ~3 seconds, propagation to Android (app in the background, manual daily sync) in ~30 seconds after opening the app. Android latency is expected because the background service is deliberately battery-frugal; a forced manual sync takes ~6 seconds.

Mobile app UX.

• Android (Pixel 8): stable app, background photo upload works, integration with the native Android share sheet (Proton Drive icon in the system share sheet). Limitation: previewing large video files requires a full download (no progressive encrypted streaming, unlike the expected YouTube-style behavior).
• iOS (iPhone 13): stable app, Files.app integration via the Proton Drive provider (the app shows up in Files as a location). Harder limitation: auto-uploading iCloud Library photos requires disabling iCloud Photos in parallel to avoid double-consuming iOS storage — it's documented but not surfaced during onboarding.

Encrypted sharing test. Sharing a 25 MB file with an external non-Proton recipient via a password-protected link. UX: link generation in 2 seconds, password to transmit via Signal (out-of-band channel), expiry configurable from 1h to 90 days. The recipient opens the link in their browser, enters the password, the E2E decryption happens in JavaScript WebCrypto in the browser — the password is never sent to Proton, only its derived hash feeds into the key derivation. Cryptographically elegant but UX-imperfect (the recipient has to receive the password over a trusted channel, which isn't trivial for the average user).

Sync conflicts. Over 3 months and 3 machines, 2 sync conflicts observed: (1) simultaneous editing of a Pages document on macOS and Android for 30 seconds — Proton Drive created a conflict copy 2026-04-12.pages next to the original, with a toast notification visible for 12 seconds; (2) network drop during an 800 MB upload from Linux — automatic resume when the network came back, file integrity preserved, verified by SHA-256 checksum identical to the source.

Advanced security — Securitum 2024 audit + GDPR compliance

Securitum 2024 audit — public report. Available at proton.me/blog/drive-security-audit. Methodology: 4 weeks of penetration testing by 3 Securitum auditors, focused on (a) the Drive web client (audit of the WebCrypto code), (b) the drive-api.proton.me REST API, (c) the Electron desktop client (audit of third-party dependencies and the IPC between the main process and the renderer). Published results: 0 High or Critical vulnerabilities, 4 Medium issues all remediated before publication, 9 Low issues either remediated or accepted with documented mitigation. It's a less dramatic audit than pCloud's 2022 CRYPSIS audit, which only published a summary — Proton published the full report.

GDPR compliance and Swiss adequacy. Proton AG operates under Swiss FADP/FDPL (revised September 1, 2023). Switzerland benefits from a European Commission adequacy decision (2000/518/EC, upheld after review in 2024), which means data transfers from the EEA to Proton require no Standard Contractual Clauses (SCCs) or Transfer Impact Assessment. For a European business, hosting its data on Proton Drive is legally equivalent to hosting it with a French provider — whereas hosting on Google Workspace requires SCCs + TIAs + Schrems II analysis.

Jurisdiction switch impossibility. Proton AG has no legal entity in the United States (verified on SEC EDGAR and the Delaware Division of Corporations). Consequently, the US CLOUD Act cannot apply extraterritorially to Proton AG — any US disclosure request would have to pass through a letter rogatory accepted by the Geneva cantonal court. Proton AG publishes a semi-annual transparency report (proton.me/legal/transparency) detailing the exact number of requests received and accepted: in 2024, 8 requests accepted out of 51 received, all for accounts tied to Swiss criminal investigations (fraud, money laundering) with an explicit Swiss judicial order. See our full CLOUD Act vs GDPR analysis.

Cons — where Proton Drive still falls short

Four real limitations observed over 3 months.

(1) No massive anonymous public sharing. If you want to distribute a 500 MB file to 200 people without forcing them to create an account or receive an individual password, Proton Drive makes your life complicated. Workaround: shared link with a common password, transmitted over a trusted channel. This isn't a priority use case for Proton (which targets the privacy-aware individual and the enterprise), but it's a point for Sync.com or Mega if that's your main need.

(2) Family 3 TB pricing at €12.99/month. Over 5 years, €12.99 × 60 months = €779. For the same need (~3 TB family), pCloud Lifetime 2 TB at €199 + lifetime Crypto €125 = €324 one-shot, a cumulative saving of €455 over 5 years. If the family budget is tight and the pCloud Swiss jurisdiction is enough (Vaud vs Geneva, same Switzerland), pCloud wins this segment.

(3) Upload performance ~95 Mbps on 1 Gbps fibre. The client-side crypto overhead is measurable. The client uses roughly 35-45% of an M2 core during sustained uploads (measured via top on macOS). On an older PC (Intel i5 2018), throughput drops to ~70 Mbps. It's not a Proton Drive defect — it's the normal cost of zero-knowledge by default. Just worth knowing if you do terabyte-scale migrations regularly.

(4) No lifetime deal and no long history. If you want a one-time payment amortized over many years, Proton Drive isn't for you. And if you want version history beyond 60 days (Plus) or 1 year (Unlimited/Family), you have to manually export periodic versions — there's no Time Machine-style infinite history.

Verdict — who should choose Proton Drive in 2026

Choose Proton Drive if.

• You want zero-knowledge by default on 100% of your account, with no option to enable, no dedicated folder to configure, no paid add-on to buy.
• You already use a Proton service (Mail, VPN, Calendar) — the Unlimited Bundle at €9.99/month annual becomes the economic no-brainer.
• Swiss jurisdiction + servers physically in Switzerland are hard requirements for you (source-protecting journalist, lawyer, doctor, executive of a sensitive business).
• You want verifiable open-source clients — the Drive web code and the mobile apps are on github.com/ProtonMail, unlike pCloud and Tresorit, which are proprietary.
• You value an independent audit published in full (Securitum 2024 full report vs competitors' summaries).

Choose something else if.

• You want a lifetime deal with one-time payment and long-term amortization → pCloud Lifetime 2 TB at €199.
• You already self-host a Nextcloud on a Hetzner/Contabo VPS and you master the stack → keep going with Nextcloud, more time-expensive but unbeatable on control.
• You do massive anonymous public sharing with no account and no password → Sync.com, Mega or a dedicated WeTransfer.
• You need heavy enterprise collaboration (Office 365-grade) → Tresorit Business or Microsoft OneDrive with EU Data Boundary.

For our Priviy use case (independent tech publishing, sensitive sources, distributed team), Proton Drive is our default choice for confidential internal documents. Our pCloud Lifetime account is used for long-term archives and family backups where zero-knowledge isn't critical. Our self-hosted Nextcloud on Hetzner is used for internal editorial workflows. This three-tier stratification — Proton Drive for privacy, pCloud for archive volume, Nextcloud for control — is our recommended setup for anyone who can afford all three services.

FAQ — questions we received about Proton Drive

See also our detailed Proton Drive vs Tresorit vs pCloud Crypto comparison and our CLOUD Act vs GDPR analysis for the full legal context.