When handling files anonymously, checking only the file itself is not enough.
Personal clouds, workplace clouds, collaborative editing tools, shared links, edit history, owner display. This kind of cloud information can show the source of a file or the environment where it was created.
For example, even if you remove PDF metadata, anonymity breaks if the real-name account's owner name is displayed to the person who opens the shared link. Also, the creator, people involved, or organization name may remain in cloud edit history or comments.
This article organizes how cloud history and file creation environments relate to anonymity.
The cloud is not only a storage place, but also a place for history
Cloud storage is not only a place to save files.
Many cloud services handle owners, people who update files, sharing recipients, viewing history, edit history, comments, and version history. These are convenient features, but when sharing files anonymously, they become clues.
Information
Possible visibility
Caution for anonymity
Owner name
May be visible to recipients
A real name or email appears
Updater
May be visible in collaborative editing
People involved become known
Sharing history
Remains inside the service
Who it was shared with remains
Viewing history
Administrators or owners may be able to see it
Who opened it becomes known
Comments
Remain in the document
Internal conversations or decisions are visible
Version history
Past contents remain
Deleted information may come back
In the cloud, you need to check the file body and the service display separately.
Risks of using a personal cloud
The personal cloud you normally use is connected to your real name, profile image, email address, payment information, device sync, and photo history.
If you put a file for anonymous use in a personal cloud, it may connect to the real-name side through owner display or shared links. Also, cloud sync may save the file for anonymous use on your everyday device or another device.
Action
Risk
Save in a personal cloud
It remains in the real-name account's history
Create a shared link
Owner name or email is visible
Sync with a smartphone
It mixes with notifications or photo history
Collaboratively edit
Updaters or comments remain
Open on a real-name device
It remains in device history or recent files
When anonymity matters, handle files for publication separately from your real-name cloud account.
Workplace and school clouds require even more caution
Workplace and school clouds have administrators.
Histories of file saving, viewing, sharing, downloading, deletion, and external sharing may remain as administrative logs. This is extremely important in whistleblowing and source protection.
Even if you download materials from a workplace cloud and send them anonymously, candidates can be narrowed if the people who could access the materials, or the people who opened them at a certain time, are limited.
Record
What it can show
Access history
Who opened it and when
Download history
Who obtained it
Sharing history
Who it was given to
Permission changes
Who changed the sharing scope
Deletion history
What was deleted
When handling high-risk materials, do not judge from the article alone. Because there are legal risks and organization-log issues, consider a trusted person or organization to consult.
How shared links appear
Shared links are convenient, but they require caution for anonymity.
The link recipient may see the owner name, email address, profile image, folder name, file path, or edit permission.
Even if it looks safe on your own screen, a real name may be displayed on the recipient's screen.
Check item
Reason
Owner display
Check whether a real name or email is visible
Folder name
See whether a project name or organization name appears
Permission
Check whether it is view-only or editable
Link scope
Check whether anyone can view it or access is limited
Viewer display
See whether the recipient's access is recorded
If possible, check how it looks to the recipient from another account or another environment.
Create a copy for publication locally
When anonymity matters, it is often easier to reduce risk by creating a copy for publication instead of directly sharing the original cloud file.
Create a copy for publication in a local environment, check the filename, metadata, and contents, and then pass it by the necessary method.
However, if the local environment is also a real-name device, history remains there too. For high-risk cases, also consider a dedicated environment, anonymous-use OS, or separate device.
Stage
What to check
1
Do not directly share the cloud original
2
Create a copy for publication
3
Check the filename and metadata
4
Remove comments and edit history
5
Check owner information visible to the recipient
6
Think about what remains after sending
"Just sending a link from the cloud" is easy, but it may be dangerous for anonymity.
Check the recipient's screen
In cloud sharing, your screen and the recipient's screen may differ.
Even if only the file is visible on your screen, the recipient may see the owner name, email address, profile image, shared folder name, updater, or comment section. If you share without checking this, the file body may be clean, but the service display connects it to a real-name environment.
If possible, check how the shared link appears when opened from another account or another browser that does not affect anonymity.
What to view on the recipient's side
Reason to check
Owner name
Whether a real name or everyday email appears
Profile image
Whether a face or personal account is visible
Shared folder name
Whether an organization name or project name appears
Edit permission
Whether the recipient can change it
Comment section
Whether internal conversations or names of people involved remain
In cloud sharing, check not only the file contents but also surrounding information on the screen.
History may remain even after deletion
Even if you delete a file on the cloud, not all traces necessarily disappear immediately.
Trash, version history, administrative logs, notification emails, the recipient's downloaded file, and screenshots may remain. In workplace and school clouds, operation history may also remain in administrator-side audit logs.
When you notice a problem, do not feel safe just because you deleted it. Check what was shared, who saw it, and where it remains.
Summary
Cloud history and file creation environments are strongly related to anonymity.
Even if you remove metadata from the file body, the cloud owner name, sharing history, edit history, viewing history, comments, and version history may remain.
In a personal cloud, they connect to a real-name account. In a workplace or school cloud, administrative logs and access history may narrow the candidates.
If you handle files anonymously, do not directly share the cloud original. Create a copy for publication, and check both the file body and the sharing route. For high-risk materials, do not act only on your own judgment; consider a trusted person or organization to consult.
Related tools
Anonymous communication
Tor Project
An external resource related to this article. Open it only when it fits your situation and threat model.
Why it is listed: It can help with the article topic, but it is outside Anonymity Sense and should be checked before use.