Tresorit
Tresorit is a Swiss-based end-to-end encrypted cloud storage service founded in 2011 by Hungarian computer science students. Acquired by Swiss Post in 2021, it offers zero-knowledge encryption for file storage, sharing, and collaboration. Subject to Swiss privacy law and GDPR, Tresorit positions itself as a privacy-focused alternative to mainstream cloud storage providers.
Score generated by AI agents based on publicly cited evidence and reviewed by the project maintainer. Not independently validated.
Score History
Timeline events are AI-curated from public reporting. Score trajectory is derived from documented events.
Tresorit was founded by three CrySyS Lab researchers at Budapest University of Technology and Economics with a pure mission to build encrypted cloud storage. As a pre-product university spin-off funded by a $1.68M seed round from Euroventures, the company had minimal enshittification surface. No business model pressures, no enterprise lock-in, and founder-controlled governance. The only friction points were the nascent product's limited features and the inherent lock-in of any proprietary encryption system.
Tresorit exited beta and launched publicly with desktop sync clients, raising an additional $3M in Series A. The hacking contest (700 participants, no breaches) validated the encryption design. The product was consumer-focused with straightforward pricing, though as a paid-first service the free tier was always minimal. Proprietary encryption created some inherent switching friction, but standard file formats remained portable. Early governance was clean: founder-led, small team, Budapest-based R&D.
Tresorit launched business plans with DRM-protected folders, team management, and admin controls, pivoting toward enterprise customers while maintaining consumer products. The NGO initiative offered free encrypted storage to non-profits. A Linux client completed cross-platform coverage. The enterprise push introduced the 3-user minimum for business plans and DRM-based lock-in, but the company's overall approach remained straightforward. Pre-GDPR, the regulatory posture was still developing, relying primarily on Swiss jurisdiction.
The EUR 11.5M Series B from 3TS Capital and PortfoLion funded global expansion and team scaling. Tresorit obtained ISO 27001 certification, published its first transparency report (one law enforcement request in four years, zero data handed over), and introduced data residency options. The ZeroKit developer SDK launched but was later discontinued. GDPR took effect, strengthening the regulatory framework Tresorit operated under. The company reached 100 employees by 2019 and was growing revenue ~3x annually.
Swiss Post, the state-owned postal service of the Swiss Confederation, acquired a majority stake in Tresorit. Early VC investors exited cleanly while founders retained minority ownership and leadership roles. The acquisition brought structural resistance to enshittification through state ownership aligned with public-service values. Product expansion accelerated: Content Shield for enterprise external collaboration, email encryption plugin for Outlook, and eSign digital signatures. Each new product deepened the ecosystem lock-in modestly while adding genuine user value. The Swiss Digital Trust Label and Gartner recognition validated the platform's maturity.
Tresorit has matured into a comprehensive encrypted collaboration platform under Swiss Post ownership, with cloud storage, email encryption, eSign, and Engage data rooms. The ETH Zurich study validated its encryption as superior to competitors, and Common Criteria EAL4+ certification set an industry first. Mild friction points remain: the minimal 3 GB free tier, premium pricing, limited search, the 8-day refund window, and enterprise lock-in from the growing product ecosystem. Overall, the product remains healthy with strong structural resistance to enshittification.
Alternatives
End-to-end encrypted cloud storage from Proton, the makers of ProtonMail. Swiss-based with strong privacy credentials. Free tier includes 5 GB (vs Tresorit's 3 GB). Paid plans start at $3.99/month for 200 GB as part of the Proton ecosystem. Easy switch -- import files manually. Growing feature set but less mature than Tresorit for business use.
Canadian zero-knowledge encrypted cloud storage with competitive pricing. 5 GB free tier. Personal plans start at $8/month for 2 TB -- significantly cheaper than Tresorit for comparable encrypted storage. Easy switch with standard file sync. Fewer enterprise features but strong for personal and small team use.
Dimensional Breakdown
Summaries below were written by AI agents based on the cited evidence. They are editorial interpretations, not independent research findings.
Dimension History
Timeline (37 events)
Tresorit founded by CrySyS Lab researchers in Budapest
Istvan Lam, Szilveszter Szebeni, and Gyorgy Szilagyi, researchers affiliated with the CrySyS Laboratory at Budapest University of Technology and Economics, founded Tresorit to build end-to-end encrypted cloud storage. Their vision was based on a university research project on security of distributed storage systems.
Tresorit raises $1.68M Series A from Euroventures
Tresorit closed its first funding round of $1.68M led by Euroventures, a Budapest-based venture capital firm. The founders secured the investment on the same day they graduated from university, enabling them to build out the development team and encryption infrastructure.
First public beta version launched
Tresorit released its first public beta featuring client-side encryption for files and folders. The launch generated significant buzz through Lifehacker coverage and caused their servers to struggle under the load from early adopters.
Tresorit launches $10,000 hacking contest
Tresorit offered $10,000 to anyone who could break their encryption, later increasing the bounty to $25,000 and then $50,000. Over 468 days, 700 hackers from 49 countries including MIT, Stanford, and Princeton attempted the challenge. No one broke the encryption, validating the cryptographic design.
Tresorit exits beta with public launch
Tresorit officially launched its client-side encrypted cloud storage service after emerging from its stealth beta version. The product offered desktop sync clients for Windows and Mac, with patented sharable encryption technology allowing secure collaboration between users.
Second Series A round raises $3M for market expansion
Tresorit raised an additional $3M in Series A funding led by Euroventures, with participation from entrepreneurs Andreas Kemi (early LogMeIn investor) and Marton Szoke. Total capital raised reached $4.7M, used to expand into U.S. and European markets and scale the development team.
Tresorit for Business launched with DRM and team management
Tresorit launched its business product line featuring digital rights management (DRM) powered by Microsoft Windows RMS, which prevented saving, printing, copying, or screenshotting of protected files. The business plans introduced team management, admin controls, and organization-level security policies.
Tresorit launches NGO initiative for non-profit digital security
Tresorit launched a program offering free or heavily discounted encrypted storage to non-governmental organizations, providing 1,000 GB per user for qualifying non-profits with charitable missions. Over 500 teams including human rights defenders and environmental activists eventually joined the program.
Linux desktop client released to complement cross-platform support
Tresorit launched a Linux desktop client after a beta period involving nearly 100 community testers. This completed Tresorit's cross-platform coverage alongside Windows, Mac, iOS, Android, and web access, though the Linux client initially lacked some features available on other platforms.
ZeroKit encryption SDK launched for third-party developers
Tresorit released ZeroKit, an open-source SDK making their core end-to-end encryption technology available to all developers. The SDK supported Web, iOS, Android, and Node.js platforms, enabling developers to add breach-proof authentication and E2EE to their own applications. LogMeIn co-founder Marton Anka joined the board to support the launch.
Prevaat encrypted social network crowdfunding campaign launched
Following the Cambridge Analytica scandal, Tresorit launched a $1M Indiegogo crowdfunding campaign to build Prevaat, an end-to-end encrypted social network with no central news feed algorithm and no ads. The project was ultimately never realized, and the company refocused on its core cloud storage business.
Tresorit obtains ISO 27001 certification from TUV Rheinland
Tresorit received ISO 27001 certification for its information security management system, audited and certified by TUV Rheinland. The certification covers sales, development, maintenance, and support of end-to-end encrypted cloud services, requiring continuous risk assessment and annual surveillance audits.
EUR 11.5M Series B funding secured from 3TS Capital and PortfoLion
Tresorit closed EUR 11.5M in Series B financing led by 3TS Capital Partners and PortfoLion, with participation from Andreas Kemi and LogMeIn co-founder Marton Anka. Part of the funding was used for acquisition of existing shares. The company planned to broaden its management team and scale up marketing and sales globally.
First transparency report published covering 2013-2017
Tresorit published its first transparency report covering government data requests from September 2013 to November 2017. During the entire period, the company received only one informal request from a Swiss police authority to retain user data, but no official decision was made and no data was handed over. Zero requests from foreign authorities.
Data residency options launched for business customers
Tresorit introduced data residency options allowing business and enterprise customers to choose specific data center locations for their stored data, including Germany, Switzerland, France, Ireland, UK, Netherlands, USA, Canada, and Singapore. The feature addressed GDPR and sector-specific compliance requirements for data sovereignty.
Governance features added: email verification and detailed user reports
Tresorit improved its enterprise governance feature set with email verification for domain ownership and detailed user activity reports. These admin tools gave business customers greater visibility into file sharing and collaboration patterns within their organizations.
Named FT1000 fifth fastest-growing cybersecurity company in Europe
The Financial Times ranked Tresorit as the fifth fastest-growing cybersecurity company in Europe on its FT1000 list, recognizing a growth rate of 96.4%. The ranking placed Tresorit among the top European high-growth companies across all industries.
Free licenses offered to healthcare and education during COVID-19
Tresorit offered pro bono licenses to public healthcare and educational institutions during the COVID-19 pandemic to support the transition to remote work. Healthcare professionals received HIPAA-compliant encrypted storage for medical records, while educators gained secure tools for online classroom collaboration.
Named Gartner Peer Insights Customers' Choice for collaboration tools
Tresorit became the first end-to-end encrypted service to receive the Gartner Peer Insights Customers' Choice distinction for Content Collaboration Tools. The recognition was based on verified end-user professional reviews, requiring 50+ published reviews with above-average ratings during the year.
Secure File Sharing Report reveals enterprise security gaps
Tresorit published a survey of 750 enterprise IT security executives in Germany, UK, and France, finding that the majority of companies still did not use end-to-end encrypted solutions for external file sharing. 47% of respondents expressed concerns about loss of data control. The report positioned Tresorit as the solution to these documented gaps.
Swiss Post acquires majority stake in Tresorit
Swiss Post Communications Services, a subsidiary of the state-owned Swiss Post, acquired a majority stake in Tresorit. The undisclosed-price acquisition saw early investors (Euroventures, 3TS Capital, PortfoLion) exit while founders retained minority ownership and management roles. Tresorit continued operating independently, keeping its brand, team, and Budapest R&D center.
Tresorit Content Shield launched for enterprise external collaboration
Tresorit launched Content Shield, an enterprise feature set providing granular control over external collaboration. It included dynamic watermarking, extensive link tracking, Microsoft Office 365 and Gmail integration, and single sign-on. 90% of enterprise clients relied on Tresorit for sharing data with external parties.
Updated transparency report: one data request in three years
Tresorit published its updated transparency report covering January 2019 to November 2021, revealing only one data request during the entire period. Due to end-to-end encryption, Tresorit cannot provide file contents in readable form even when legally compelled, as encryption keys are never stored on their servers.
Tresorit among first companies to earn Swiss Digital Trust Label
Tresorit and its parent company Swiss Post were among the first 14 organizations to earn the Swiss Digital Trust Label, launched at the World Economic Forum in Davos. The label requires audit on 35 criteria across security, data protection, reliability, and fair user interaction.
Email encryption plugin launched for Outlook
Tresorit launched an end-to-end encrypted email plugin for Microsoft Outlook, allowing users to encrypt emails and attachments up to 5 GB with one click. Recipients did not need a Tresorit account to decrypt messages. The add-on cost EUR 5-6.25/user/month on top of the base subscription.
eSign digital signature feature added to platform
Tresorit expanded its product portfolio with eSignature capabilities, supplementing its secure workspace and email encryption plugins. The eSign tool featured customizable templates, email inbox integrations, and built-in signature requests, all protected by end-to-end encryption. It initially targeted the US market alongside European enterprise customers.
CEO transition: Istvan Hartung replaces founder Istvan Lam
Tresorit appointed Istvan Hartung as CEO, replacing founder Istvan Lam who transitioned to Director of Corporate Development and remained on the Board. Hartung had previously served as CTO and VP of Engineering. The orderly transition maintained continuity in the company's technical leadership and privacy-first mission.
Video watermarking and preview controls introduced
Tresorit added video security features including watermarking for shared videos to prevent unauthorized re-sharing, browser-based video preview, and the ability to disable downloads. Enabling watermarks on videos automatically prevented recipients from downloading the file.
Next-gen folders become default for new users
Tresorit made next-gen folders (supporting subfolder sharing) the default for all new folders. While the upgrade improved collaboration flexibility, migrating from classic folders broke previously created shared links, file request links, and eSign requests, requiring users to revoke all access and recreate links after migration.
ISO 27001:2022 recertification audit passed successfully
Tresorit passed its ISO 27001:2022 recertification audit conducted by TUV Rheinland, confirming ongoing compliance with the updated international standard for information security management. The three-year certification cycle requires annual surveillance audits to maintain.
Tresorit achieves Common Criteria EAL4+ certification
Tresorit became the first cloud storage encryption company to achieve Common Criteria EAL4+ certification, evaluated by CCLab and certified by OCSI. The rigorous assessment validated that only the customer has access to their data, substantiating Tresorit's zero-knowledge encryption claims through independent evaluation.
Data residency expanded with automatic billing-based assignment
Tresorit updated its data residency feature so that users' default data center location is automatically based on their billing address country. Admins retained the ability to manually assign users to specific data centers for compliance purposes, expanding the available locations.
eSign expanded with EU eIDAS Qualified Electronic Signatures
Tresorit expanded its eSign offering to include EU eIDAS-compliant Qualified Electronic Signatures (QES) through a partnership with Qualified Trust Service Provider Evrotrust. QES requires face-to-face identity verification and provides the highest legal weight within Europe. Individual QES signatures cost EUR 2.50 each.
Cooperative links launched for two-way encrypted collaboration
Tresorit launched cooperative links enabling two-way file collaboration with external partners through a single secure link, with no Tresorit registration required for recipients. The feature merged shared link and file request functionality, supporting files up to 5 GB with zero-knowledge end-to-end encryption.
ETH Zurich study validates Tresorit as most secure E2EE cloud storage
ETH Zurich researchers published 'End-to-End Encrypted Cloud Storage in the Wild: A Broken Ecosystem' at ACM CCS 2024, analyzing five major E2EE cloud storage providers serving 22+ million users. Tresorit had the fewest vulnerabilities of any provider tested; competitors Sync, pCloud, Icedrive, and Seafile all had severe cryptographic flaws allowing file injection, data tampering, or direct content access by a malicious server.
2025 penetration test confirms no critical or high-severity findings
An independent firm conducted a comprehensive penetration test on Tresorit's SecureCloud and Engage products, finding no critical or high-severity issues. A medium-severity server-side race condition was detected that did not affect encrypted data security. Tresorit committed to commissioning independent audits and penetration tests annually from 2025 onward.
Tresorit Engage secure data rooms launched
Tresorit launched Engage, a secure data room product built on its zero-knowledge E2EE platform, targeting regulated industries including finance, legal, healthcare, and IT. Unlike traditional data rooms with complex pricing, Engage offered unlimited rooms and tasks with transparent pricing. The product included a built-in task manager, eSignature collection, and real-time activity tracking.
Evidence (36 citations)
D1: User Value Erosion
D2: Business Customer Exploitation
D3: Shareholder Extraction
D4: Lock-in & Switching Costs
D5: Twiddling & Algorithmic Opacity
D6: Dark Patterns
D7: Advertising & Monetization Pressure
D8: Competitive Conduct
D9: Labor & Governance
D10: Regulatory & Legal Posture
Scoring Log (4 entries)
Stripped for Phase 2 re-enrichment