Ente’s Audacious Bet: Building a Privacy-First Photo Storage Empire, One Open-Source Brick at a Time

Ente, the end-to-end encrypted photo storage startup, has launched Ensu — a foundation designed to protect users' data even if the company ceases to exist. The move challenges Big Tech's dominance in cloud photo storage with radical transparency and open-source architecture.
Ente’s Audacious Bet: Building a Privacy-First Photo Storage Empire, One Open-Source Brick at a Time
Written by Emma Rogers

A small, privacy-obsessed startup just declared war on one of the most entrenched habits in consumer technology — the automatic, unthinking upload of every photo you take to Google or Apple’s servers. And it’s doing so with an unusual weapon: radical transparency.

Ente, the end-to-end encrypted photo storage company, announced this week the formation of Ensu, a new foundation designed to guarantee the long-term survival of its users’ data regardless of what happens to the company itself. The move addresses one of the most persistent anxieties surrounding any cloud storage provider, especially smaller ones: What happens to my files if you go under?

It’s a fair question. The graveyard of defunct startups is littered with services that once promised to safeguard users’ most personal data. Ente’s answer is to create a legal entity — Ensu — that holds the company’s source code, encryption protocols, and operational knowledge in escrow. If Ente ever ceases operations, Ensu would ensure that users can still retrieve and decrypt their photos. The foundation isn’t a marketing gimmick bolted onto an existing product. It’s baked into the company’s corporate structure.

Vishal Mohanty, Ente’s founder, described the reasoning in stark terms on the company’s blog: the promise of encryption means nothing if the service disappears and users lose access to the keys that make their data readable. Ensu is designed to be the failsafe. A dead man’s switch for your memories.

The technical architecture matters here. Ente uses end-to-end encryption, meaning the company itself cannot view users’ photos. Every image is encrypted on the user’s device before it leaves for the cloud. The encryption keys never touch Ente’s servers in unencrypted form. This is the same general approach used by Signal for messaging, but applied to photo storage — a domain where Google Photos and Apple’s iCloud have near-total dominance.

That dominance is worth quantifying. Google Photos surpassed 1 billion users years ago. Apple doesn’t break out iCloud Photos numbers separately, but with over 2 billion active Apple devices worldwide and iCloud deeply integrated into every one of them, the user base is enormous. Against these incumbents, Ente is a minnow. But it’s a minnow with conviction.

The company’s entire codebase is open source, hosted publicly on GitHub. This is not common among cloud storage providers. Google Photos is a black box. Apple’s iCloud encryption improvements, announced in late 2022 with Advanced Data Protection, moved the needle on privacy but kept the underlying code proprietary. Ente’s openness means that any security researcher, cryptographer, or curious developer can audit exactly how the encryption works, how keys are managed, and whether the company’s privacy claims hold up under scrutiny.

And they have been scrutinized. Ente has undergone independent security audits, the results of which are published openly. The most recent audit was conducted by Cure53, a well-regarded Berlin-based firm that has also audited Signal, Mozilla, and Mullvad VPN. The audit found no critical vulnerabilities in Ente’s encryption implementation — a strong result for a company of its size.

So why does Ensu matter beyond the obvious insurance policy?

Because it signals something about the maturation of privacy-focused consumer software. For years, the knock against encrypted alternatives to mainstream services was that they were unreliable, underfunded, or likely to vanish. Lavabit, the encrypted email provider Edward Snowden reportedly used, shut down in 2013 rather than comply with government surveillance orders. The closure was principled but left users stranded. Ensu is an explicit attempt to prevent that scenario — to make the promise of privacy durable rather than contingent on one company’s financial health or one founder’s willingness to keep going.

The foundation model isn’t entirely new. The Linux Foundation, the Mozilla Foundation, and the Signal Foundation all serve as institutional backstops for critical open-source projects. But applying this model to consumer photo storage is unusual. Photos are among the most emotionally valuable data people possess. Losing a cloud storage provider that held your corporate spreadsheets is annoying. Losing one that held twenty years of family photos is devastating.

Ente seems to understand this asymmetry viscerally. The company’s pricing reflects a bet that enough people care about privacy to pay for it. Ente offers plans starting at roughly $1.50 per month for 50 GB, scaling up to higher tiers. There’s no free tier subsidized by advertising or data mining — a deliberate contrast with Google Photos, which offers 15 GB free as part of a broader strategy to keep users inside Google’s advertising infrastructure.

The business model raises obvious questions about scale. Can a paid-only, privacy-first photo service attract enough subscribers to sustain itself? The broader market suggests there’s appetite, if not yet a stampede. Proton, the Swiss company behind ProtonMail, has grown to over 100 million accounts by offering encrypted email, VPN, calendar, and drive services on a freemium model. Proton’s trajectory shows that privacy can be a viable commercial proposition, though Proton benefits from a much wider product portfolio than Ente currently offers.

Ente’s product lineup is tight. Two apps: Ente Photos for cloud photo storage, and Ente Auth, a two-factor authentication app that also uses end-to-end encryption. Auth has gained a loyal following among security-conscious users frustrated with the limitations of Google Authenticator, which for years didn’t support encrypted cloud backups of 2FA codes. Google eventually added this feature, but the delay created an opening that Ente exploited effectively.

The competitive dynamics are shifting in ways that could benefit Ente. Regulatory pressure on Big Tech’s data practices continues to intensify, particularly in the European Union. The EU’s Digital Markets Act and evolving interpretations of GDPR are forcing large platforms to be more transparent about how they handle user data. Meanwhile, consumer awareness of privacy issues — fueled by high-profile data breaches, the Cambridge Analytica scandal’s long tail, and growing discomfort with AI training on personal photos — has created a receptive audience for alternatives.

That last point deserves emphasis. The explosion of generative AI has introduced a new vector of concern for photo storage users. Google has been explicit about using data to train its AI models, though it says Google Photos content is not used for advertising purposes. Apple has taken a more privacy-forward stance with its on-device AI processing approach. But for users who want an ironclad guarantee that their photos will never be used to train any AI model, ever, end-to-end encryption is the only technical solution that removes the question entirely. If the provider can’t see your photos, it can’t feed them into a training pipeline. Period.

Ente’s Indian roots add another dimension. The company was founded in Bangalore, though it operates with a distributed team and stores encrypted data on servers in the EU. India’s own data protection framework, the Digital Personal Data Protection Act passed in 2023, is still being implemented, and its ultimate impact on companies like Ente remains uncertain. But the company’s choice to store data in EU jurisdictions — subject to GDPR — rather than in India suggests a deliberate strategy to align with the strictest available privacy regulations.

The formation of Ensu also reflects a growing recognition in the tech industry that institutional longevity requires institutional structures. Startups die all the time. Founders burn out. Funding dries up. Acquirers strip products for parts. By creating a foundation with an independent mandate to preserve user access to data, Ente is attempting to decouple the fate of its users from the fate of its balance sheet. Whether Ensu’s legal structure is robust enough to survive a messy corporate collapse — involving creditors, lawsuits, and competing claims on assets — remains untested. The intention, though, is clear.

There are skeptics. Some security researchers have noted that while Ente’s encryption architecture is sound, the practical challenge of key recovery in a post-company scenario is nontrivial. If Ente disappears and a user has lost their recovery key, Ensu can preserve the encrypted data but cannot magically decrypt it. The foundation can keep the lights on, but it can’t override the laws of cryptography. Users still bear responsibility for their own key management — a friction point that mainstream services have spent billions of dollars engineering away.

This is the fundamental tension at the heart of every encrypted service. Convenience and security pull in opposite directions. Google Photos works because it’s effortless. You take a photo, it appears in the cloud, searchable by face, location, date, and now by natural language queries powered by AI. Ente offers none of that AI-powered magic because it can’t see your photos. The search functionality is limited to metadata. The organizational tools are simpler. For many users, that’s a dealbreaker. For others, it’s the entire point.

Ente’s bet is that the second group is growing faster than the first group is shrinking. The formation of Ensu is designed to remove one more objection from the list of reasons not to switch. “We might not be around forever” is an honest admission that most startups would never make publicly. Ente has turned it into a selling point.

The broader implications extend beyond photo storage. If the Ensu model proves workable, it could become a template for other privacy-focused services wrestling with the same trust deficit. Encrypted note-taking apps, health data platforms, financial tools — any service where users entrust sensitive personal information to a third party faces the same existential question. A foundation model that preserves user access to data after a company’s death could become standard practice. Or it could remain a niche curiosity, admired in principle but rarely replicated.

For now, Ente remains small, ambitious, and unusually forthright about its own mortality. In an industry addicted to projecting invincibility, that’s worth paying attention to.

Subscribe for Updates

GenAIPro Newsletter

News, updates and trends in generative AI for the Tech and AI leaders and architects.

By signing up for our newsletter you agree to receive content related to ientry.com / webpronews.com and our affiliate partners. For additional information refer to our terms of service.

Notice an error?

Help us improve our content by reporting any issues you find.

Get the WebProNews newsletter delivered to your inbox

Get the free daily newsletter read by decision makers

Subscribe
Advertise with Us

Ready to get started?

Get our media kit

Advertise with Us