U
USENDIT.IOSimple & secure file transfer
Digital sovereignty

Your data stays
yours. Always.

USENDIT.IO is built on multi‑region S3 object storage hosted exclusively in Europe. Your files never leave the European Union — not in transit, not in backup.

Send a fileSee infrastructure
🇪🇺 Hébergement UE✓ RGPD natif⚡ Sans Cloud Act🔒 AES‑256 · TLS 1.3

Definition

What is digital sovereignty?

Digital sovereignty is the ability of an organisation to control its data: where it is stored, who can access it, under which laws. Since the US Cloud Act of 2018, any data hosted with a US provider — even on European soil — can be seized by American authorities without prior notice. For European professionals, choosing sovereign hosting is no longer optional.

The Cloud Act risk explained

Extraterritorial reach

The Cloud Act applies to all subsidiaries and servers of US companies worldwide, including in Europe.

Access without notice

US authorities can demand access to your data without informing the user or the local jurisdiction.

GDPR incompatible

The EU Court of Justice invalidated the Privacy Shield in 2020. Transferring data outside the EU without an adequate mechanism is illegal.

Regulated professions

Lawyers, doctors, accountants: professional secrecy is directly threatened by non-sovereign hosting.

Infrastructure

How our storage works

USENDIT.IO uses Cloudflare R2, an S3‑compatible object storage with strict European localisation. Unlike AWS S3 or Google Cloud Storage, Cloudflare R2 has no egress fees — your data flows freely between European regions at no extra cost.

USENDIT.IO Storage

Western Europe

Paris · Amsterdam

Active

Central Europe

Frankfurt · Warsaw

Active

Northern Europe

Stockholm · Helsinki

Active
100 % EU · RGPD · Pas de Cloud Act

S3‑compatible

100% Amazon S3‑compatible API. Full portability — you are never locked into a single provider.

Zero egress fees

No surcharge when your files are downloaded. Cloudflare R2 does not charge for data egress.

Active multi‑region

Your files are distributed across multiple European nodes for availability and resilience.

Encryption at rest

All data is encrypted at rest (AES‑256) and in transit (TLS 1.3). Zero unauthorised access.

Multi‑provider strategy

We do not lock ourselves into a single ecosystem. The standard S3 interface allows us to switch or replicate to other sovereign European providers — Scaleway, OVHcloud, Hetzner — without rewriting a single line of code. Your resilience is our priority.

API S3 standard — portabilité totale

Cloudflare R2

EU‑hosted

Primary

Scaleway Object Storage

France 🇫🇷

Alternative

OVHcloud Object Storage

France 🇫🇷

Alternative

Hetzner Object Storage

Germany 🇩🇪

Alternative

No data ever leaves the European Union

Automatic file expiry — minimal retention

No resale or sharing of personal data

Processing register available on request

Right to erasure respected (GDPR Art. 17)

Breach notification within 72 h (GDPR Art. 33)

Compliance

GDPR‑native, not a marketing label

USENDIT.IO vs US providers

US providersUSENDIT.IO
Data outside EUPossibleNever
Subject to Cloud ActYesNo
Native GDPRPartialFull
Egress feesYes (AWS, GCP)No
Sovereign hostingNoYes
Professional secrecy compatibleRiskySecure

Frequently asked questions

Cloudflare is a US company — is that a problem?
Cloudflare R2 physically stores data in Europe, in European data centres. Cloudflare's Data Processing Agreement (DPA) includes the Standard Contractual Clauses (SCCs) approved by the European Commission. Physical hosting in Europe is the determining factor for GDPR compliance.
Are my files replicated outside Europe?
No. Cloudflare R2 in European configuration guarantees that data does not leave the EU region, even for caching or backup replication.
What does S3 compatibility mean in practice?
The S3 API is the de‑facto standard for object storage. It allows us to switch provider without changing application code, audit our data flows independently, and offer you full data portability.
How are files deleted?
When a transfer expires, files are permanently deleted from all storage nodes. No backup copy is retained beyond the configured retention period.
Can I get GDPR documentation for my DPO?
Yes. Contact us at fincke.a@gmail.com to receive our processing register, DPA and SCCs. We respond within 48 working hours.

Trust is proven, not claimed.

European hosting, native GDPR, sovereign infrastructure. Start for free.

Send a file for free