Collaboration Platforms

Collaboration platforms provide file storage, synchronisation, document editing, and team productivity tools that enable distributed teams to work on shared content. These platforms combine cloud storage with real-time co-authoring capabilities, ranging from lightweight file sharing to comprehensive office suites with calendaring, email, and communication features.

This page covers integrated collaboration suites that combine file management with document creation and editing. Adjacent categories include Communication and Telephony for video conferencing and messaging, and Website and CMS for public-facing content management.

Requirements taxonomy

This taxonomy defines evaluation criteria for collaboration platforms. Requirements are organised by functional area and weighted by typical priority for mission-driven organisations. Adjust weights based on specific operational context.

Functional requirements

Core capabilities that define what the platform must do.

File storage and synchronisation

Document editing

Organisation and search

Team collaboration

Technical requirements

Infrastructure, architecture, and deployment considerations.

Deployment and hosting

Scalability and performance

Integration architecture

Security requirements

Security controls and data protection capabilities.

Authentication and access control

Data protection

Compliance and audit

Operational requirements

Administration, monitoring, and support considerations.

Administration

Monitoring and reporting

Backup and recovery

Data management requirements

Data import, export, and lifecycle considerations.

Data portability

Data lifecycle

Accessibility requirements

Comparison matrices

Rating scale: ● Full support | ◐ Partial support | ○ Minimal support | ✗ Not supported | -Not applicable

Notation: $ Paid tier only | β Beta feature | E Enterprise only | P Plugin required

Functional capability matrix

File storage and synchronisation

Assessment notes:

• Collabora Online and ONLYOFFICE Docs are document editing components, not file storage platforms; they integrate with storage platforms like Nextcloud
• CryptPad desktop sync is limited; primary access is via web browser
• CryptPad file size limits are lower due to encryption overhead (25MB default per file)
• Google Workspace large file limit is 5TB per file; uploads over 5GB require stable connection

Document editing

Assessment notes:

• Nextcloud requires Collabora Online, ONLYOFFICE, or built-in Text app for document editing (marked P)
• CryptPad presentations are whiteboard-based, not traditional slide format
• CryptPad prioritises privacy over format compatibility; export to Office formats has limitations
• Collabora Online and ONLYOFFICE both achieve high Office format fidelity through independent testing

Technical capability matrix

Deployment options

Assessment notes:

• Nextcloud provides official Docker images and AIO (All-in-One) container deployment
• Collabora Online provides Kubernetes deployment via COOL Controller
• CryptPad Docker deployment is documented but Helm charts are community-maintained
• Microsoft 365 and Google Workspace are SaaS-only; no self-hosted options exist

Self-hosted infrastructure requirements

Integration architecture

Assessment notes:

• CryptPad API is limited due to end-to-end encryption design; server cannot access content
• Nextcloud webhooks require the Webhooks app (marked P)
• Microsoft 365 CalDAV support is deprecated; Exchange protocols preferred
• Google Workspace supports CalDAV but recommends Google Calendar API

Security capability matrix

Authentication methods

Assessment notes:

• ¹ Collabora Online inherits authentication from the integrating platform (Nextcloud, ownCloud, etc.)
• ² Microsoft 365 and Google Workspace LDAP sync requires directory synchronisation tools
• CryptPad SSO plugin available for enterprise customers
• ONLYOFFICE Docs Enterprise required for SSO features

Data protection

Assessment notes:

• Nextcloud E2EE is available but limited to specific apps; not all features support E2EE
• CryptPad provides true zero-knowledge encryption; server operators cannot access content
• Microsoft 365 Customer Key and Google Workspace CSEK require enterprise tiers
• ¹ Document editing components inherit storage encryption from integrating platform

Compliance certifications

Assessment notes:

• ¹ Nextcloud certifications apply to Nextcloud Enterprise via hosting partners
• Self-hosted deployments inherit certifications from hosting infrastructure
• CryptPad’s zero-knowledge architecture provides privacy guarantees independent of certifications

Commercial comparison matrix

Pricing models

Assessment notes:

• Prices verified from official documentation as of January 2026; nonprofit pricing varies
• Microsoft 365 and Google Workspace offer significant nonprofit discounts via TechSoup
• All FOSS platforms can be self-hosted without licensing costs (infrastructure costs apply)

Nonprofit programmes

Accessibility matrix

Assessment notes:

• Microsoft and Google provide detailed VPATs for all products
• CryptPad accessibility is improving but less mature than commercial alternatives
• Collabora Online accessibility benefits from LibreOffice core accessibility work

Tool assessments

Nextcloud

Type

Self-hosted collaboration platform with integrated office suite options

Licence

AGPL-3.0 (server), GPL-2.0+ (desktop client)

Current version

32.0.3 (Hub 25 Autumn) as of January 2026

Deployment options

Self-hosted, managed hosting partners, Nextcloud Enterprise Cloud

Source repository

https://github.com/nextcloud/server

Documentation

https://docs.nextcloud.com/

Nextcloud provides file synchronisation and sharing as a core platform, extensible through an app ecosystem that includes calendar, contacts, mail, video conferencing, and office document editing. The platform originated as a fork of ownCloud in 2016 and has become the most widely deployed self-hosted collaboration suite, with over 500,000 servers reported worldwide.

The architecture separates core file management from productivity applications. Document editing requires integration with Collabora Online, ONLYOFFICE Docs, or the built-in Text app for Markdown editing. This modular approach allows organisations to select their preferred office suite while maintaining consistent file storage and user management.

Nextcloud Hub releases follow a four-month cadence, with each major version supported for 12 months. The current release track (Hub 25) emphasises improved search, mobile experience, and AI-assisted features through the Nextcloud Assistant integration.

Key strengths:

• Complete data sovereignty with self-hosted deployment
• Extensive app ecosystem covering collaboration, productivity, and communication
• Active development with regular feature releases and security updates
• Strong federation capability for inter-organisation collaboration
• No vendor lock-in; standard protocols (WebDAV, CalDAV, CardDAV) enable client flexibility

Key limitations:

• Document editing quality depends on chosen office integration
• Performance at scale requires careful tuning and adequate infrastructure
• Feature consistency varies across apps due to community development model
• Enterprise features (audit logging, compliance tools) require paid subscription

Deployment and operations:

Self-hosted Nextcloud requires Linux server infrastructure with PHP 8.0+, a supported database (MariaDB, MySQL, or PostgreSQL), and a web server (Apache or Nginx). The All-in-One Docker container simplifies deployment for smaller installations, providing automatic updates and integrated backup.

Production deployments at scale (1,000+ users) benefit from:

• Dedicated database servers with replication
• Object storage backend (S3-compatible) for files
• Redis for caching and session handling
• Separate web server and application tiers

Integration capabilities:

Security assessment:

Nextcloud implements security scanning through HackerOne with an active bug bounty programme. Security advisories are published with CVE identifiers, and critical fixes are backported to supported versions. Server-side encryption encrypts files before writing to storage, while end-to-end encryption (available via app) provides client-side encryption for selected folders.

Authentication supports SAML 2.0, OIDC, and LDAP integration, with TOTP and WebAuthn for multi-factor authentication. Brute-force protection is built-in, with configurable account lockout policies.

Cost analysis:

Organisational fit:

Nextcloud is well-suited for organisations that:

• Prioritise data sovereignty and control over data location
• Have Linux server administration capacity or access to managed hosting
• Need file sync and collaboration without ongoing per-user licensing
• Operate in jurisdictions with data residency requirements

Nextcloud is less suitable for organisations that:

• Lack technical capacity for server administration
• Require advanced enterprise features (eDiscovery, legal hold) immediately
• Need guaranteed uptime SLAs without additional infrastructure investment

Collabora Online

Type

Web-based office suite for integration with file sync platforms

Licence

MPL-2.0 (Collabora Online), LGPL (LibreOffice core)

Current version

24.04.14 (Enterprise), CODE 25.04 (Development Edition)

Deployment options

Self-hosted, Kubernetes, Docker, vendor cloud

Source repository

https://github.com/CollaboraOnline/online

Documentation

https://sdk.collaboraonline.com/

Collabora Online provides web-based document editing built on LibreOffice technology, designed for integration with file sync platforms via the WOPI protocol. As the primary commercial backer of LibreOffice development, Collabora contributes significantly to the underlying codebase and maintains close alignment with desktop LibreOffice capabilities.

The architecture runs LibreOffice as a rendering engine within a containerised environment, delivering document views to web browsers via tile-based rendering. Real-time collaboration occurs through operational transformation, enabling multiple users to edit simultaneously with cursor presence and change synchronisation.

In November 2025, Collabora released Collabora Office Desktop, bringing the same interface to Windows, macOS, and Linux desktop applications. This provides interface consistency between web and desktop editing experiences.

Key strengths:

• Highest Office format fidelity among open-source options (shared codebase with LibreOffice)
• Active LibreOffice core contributions ensure ongoing format compatibility
• Comprehensive API for customisation and integration
• Enterprise-grade scalability with COOL Controller for Kubernetes
• Strong European presence with GDPR-focused development

Key limitations:

• Requires separate file storage platform (not standalone)
• Resource-intensive; each document session consumes significant memory
• Performance on complex documents can lag behind native applications
• Limited offline capability (requires server connection)

Deployment and operations:

Collabora Online deployments fall into two categories:

CODE (Collabora Online Development Edition): Free for development and small-scale production (up to 20 simultaneous connections). Suitable for evaluation and small teams but lacks enterprise support and SLA guarantees.

Collabora Online (Enterprise): Licensed per user with support, SLA, and access to stable release branches. Recommended for production deployments requiring reliability guarantees.

Deployment options include:

• Docker container with built-in CODE server (for Nextcloud)
• Standalone Docker/Podman deployment
• Kubernetes via COOL Controller with auto-scaling
• Native package installation on supported Linux distributions

Integration capabilities:

Collabora Online integrates with Nextcloud, ownCloud, Seafile, EGroupware, Alfresco, Mattermost, and Drupal through documented integrations.

Security assessment:

Collabora Online implements process isolation per document to contain potential vulnerabilities. Security updates follow LibreOffice security advisories, with additional hardening for the web rendering layer. The server component processes documents in sandboxed containers with restricted capabilities.

Transport security requires TLS 1.2+; deployment documentation recommends TLS 1.3 where supported. Document content remains within the integrating platform’s storage; Collabora Online accesses files via WOPI requests.

Cost analysis:

Organisational fit:

Collabora Online is well-suited for organisations that:

• Already use or plan to deploy Nextcloud, ownCloud, or similar platforms
• Require high-fidelity Office format compatibility
• Value European-developed software for GDPR considerations
• Have containerisation expertise for deployment

Collabora Online is less suitable as:

• Standalone document editing platform (requires file storage integration)
• Solution for organisations without server administration capacity

ONLYOFFICE Docs

Type

Web-based office suite for integration or standalone deployment

Licence

AGPL-3.0 (Community), Proprietary (Enterprise/Developer)

Current version

9.2.1 (December 2025)

Deployment options

Self-hosted (Docker, native), cloud integrations

Source repository

https://github.com/ONLYOFFICE/DocumentServer

Documentation

https://api.onlyoffice.com/

ONLYOFFICE Docs provides document, spreadsheet, and presentation editing optimised for Microsoft Office format compatibility. The platform emphasises OOXML as the native format rather than ODF, resulting in strong compatibility with Microsoft Office workflows while maintaining full open-source availability.

The architecture uses JavaScript-based rendering, delivering document editing through web browsers without server-side document processing for display. Real-time collaboration synchronises changes between connected users with operational transformation.

Version 9.0 (June 2025) introduced significant interface redesign, AI-powered features for spreadsheets and macros, and expanded format support including Markdown import/export. Version 9.2 (December 2025) added AI grammar checking and macro recording.

Key strengths:

• Excellent Microsoft Office format compatibility (OOXML native)
• Modern, responsive interface with customisable themes
• Comprehensive JavaScript API for integration and automation
• PDF editing and form-filling capabilities
• Lower memory footprint than LibreOffice-based alternatives

Key limitations:

• Community edition limited to 20 simultaneous connections
• SSO and audit features require Enterprise edition
• ODF format support less mature than OOXML
• Company headquartered in Latvia; smaller than commercial competitors

Deployment and operations:

ONLYOFFICE Docs Community Edition: Free, open-source, limited to 20 simultaneous editing connections. Suitable for small teams and development environments.

ONLYOFFICE Docs Enterprise: Licensed per user with removed connection limits, SSO support, audit logging, and vendor support.

Deployment requires:

• Docker (recommended) or native installation on Debian/Ubuntu/CentOS
• PostgreSQL or MySQL database
• RabbitMQ for document editing service coordination
• Minimum 2GB RAM (4GB+ recommended)

Integration with Nextcloud is available via the ONLYOFFICE connector app, providing an alternative to Collabora Online.

Integration capabilities:

Pre-built integrations exist for Nextcloud, ownCloud, Seafile, Alfresco, Confluence, SharePoint, and Moodle.

Security assessment:

ONLYOFFICE implements JWT token authentication for document server requests, preventing unauthorised access to editing sessions. Document Server processes run in isolated containers with restricted network access.

Enterprise edition adds audit logging for compliance requirements and LDAP/SSO integration for centralised authentication. Version 9.1 introduced PDF redaction features for handling sensitive documents.

Cost analysis:

Enterprise pricing starts at approximately €15/user/year; volume discounts apply.

Organisational fit:

ONLYOFFICE Docs is well-suited for organisations that:

• Work primarily with Microsoft Office formats
• Need document editing integration with Nextcloud or similar platforms
• Prefer modern interface design
• Require PDF editing capabilities

ONLYOFFICE Docs is less suitable for organisations that:

• Require unlimited connections without licensing (Community edition limited)
• Prioritise ODF format over OOXML
• Need enterprise features without per-user licensing

CryptPad

Type

End-to-end encrypted collaboration suite

Licence

AGPL-3.0

Current version

2025.9.0 (Autumn 2025)

Deployment options

Self-hosted, cryptpad.fr (hosted)

Source repository

https://github.com/cryptpad/cryptpad

Documentation

https://docs.cryptpad.org/

CryptPad provides end-to-end encrypted collaboration where the server has zero knowledge of document contents. All encryption and decryption occurs in the browser; server operators cannot access user data even with full database access. This architecture makes CryptPad unique among collaboration platforms.

The suite includes rich text documents, spreadsheets, presentations, kanban boards, whiteboards, forms, and code editing. Version 2025.3.1 integrated ONLYOFFICE 8 applications for Document, Spreadsheet, and Presentation editing while maintaining end-to-end encryption.

CryptPad is developed by XWiki SAS with funding from NLnet, NGI, and user subscriptions. The public instance at cryptpad.fr serves as reference implementation and funding source.

Key strengths:

• True end-to-end encryption with zero-knowledge architecture
• No account required for collaboration (link-based sharing)
• Privacy-focused design suitable for sensitive contexts
• Self-hostable with complete data sovereignty
• Active development funded by privacy-focused grants

Key limitations:

• Limited Office format compatibility (export only, with fidelity loss)
• No desktop sync client; web-based access only
• File size limits (25MB default) due to encryption overhead
• Search cannot index encrypted content (by design)
• Smaller feature set than traditional office suites

Deployment and operations:

CryptPad is self-hostable on Linux servers with Node.js. The application stores encrypted data in the filesystem without requiring a traditional database, simplifying backup and migration.

System requirements:

• Node.js 18+ (LTS recommended)
• 2GB+ RAM (4GB+ for production)
• Local filesystem storage (object storage not supported)
• nginx for reverse proxy with WebSocket support

Docker deployment is supported with official images. Configuration primarily occurs through config.js and environment variables.

Integration capabilities:

CryptPad’s encryption model inherently limits integration capabilities. The server cannot access document content, preventing server-side APIs for content manipulation.

Security assessment:

CryptPad’s security model centres on client-side encryption:

• Documents encrypted with per-document keys
• Keys shared via URL fragments (not transmitted to server)
• Server stores encrypted blobs only
• Compromise of server does not expose document contents

Authentication supports local accounts with optional TOTP MFA. Enterprise SSO plugin enables SAML/OIDC integration. The architecture has undergone independent security audits.

Cost analysis:

Hosted pricing at cryptpad.fr ranges from free (limited storage) to €15/month for 20GB storage.

Organisational fit:

CryptPad is well-suited for organisations that:

• Handle highly sensitive data requiring zero-knowledge encryption
• Need collaboration tools for journalists, activists, or human rights work
• Want to minimise data exposure even from their own IT administrators
• Prefer anonymous collaboration without mandatory accounts

CryptPad is less suitable for organisations that:

• Require high-fidelity Office format exchange
• Need desktop file synchronisation
• Require server-side search and content processing
• Have workflows dependent on document content APIs

Microsoft 365

Type

Cloud-based productivity suite

Licence

Proprietary (Subscription)

Deployment options

Cloud only (SaaS)

Documentation

https://learn.microsoft.com/en-us/microsoft-365/

Microsoft 365 provides cloud-based productivity tools including Exchange Online (email), SharePoint Online (file storage), OneDrive for Business (personal storage), Microsoft Teams (communication), and Microsoft 365 Apps (Word, Excel, PowerPoint, etc.). The platform serves over 430 million users across commercial, education, and consumer markets.

The suite integrates deeply with Windows and offers desktop applications alongside web access. Recent development focuses on Copilot AI integration across all applications.

Key strengths:

• Industry-standard Office applications with full feature parity
• Comprehensive security and compliance tooling
• Extensive third-party integration ecosystem
• Desktop, web, and mobile applications with consistent experience
• Strong enterprise identity integration (Entra ID/Active Directory)

Key limitations:

• No self-hosted option; SaaS only
• US-headquartered; CLOUD Act jurisdiction applies
• Complex licensing with feature availability varying by tier
• Vendor lock-in through proprietary formats and integrations
• Cost scales linearly with user count

Deployment and operations:

Microsoft 365 is administered through the Microsoft 365 admin center. Configuration includes:

• User provisioning (manual, CSV import, or directory sync)
• Licence assignment (per-user licensing)
• Security policies (Conditional Access, MFA, DLP)
• Compliance configuration (retention, eDiscovery, legal hold)

Integration with on-premises Active Directory uses Microsoft Entra Connect (formerly Azure AD Connect) for hybrid identity scenarios.

Integration capabilities:

Security assessment:

Microsoft 365 holds SOC 2 Type II, ISO 27001, ISO 27018, FedRAMP High, and HIPAA certifications. Security features include:

• Multi-factor authentication with Authenticator app, FIDO2, SMS
• Conditional Access policies for context-aware authentication
• Microsoft Defender for Office 365 (threat protection)
• Microsoft Purview (data loss prevention, information protection)
• Sensitivity labels for document classification

Data residency options include EU Data Boundary and country-specific data centres, though metadata and some processing may occur outside selected regions.

Jurisdictional considerations:

Microsoft is a US-headquartered company subject to the CLOUD Act, which allows US government access to data held by US companies regardless of data location. Organisations handling sensitive data (protection, safeguarding, human rights) should evaluate this exposure.

Cost analysis:

Nonprofit pricing (via Microsoft for Nonprofits): Up to 300 free Business Premium licences for eligible organisations; additional licences at significant discount.

Organisational fit:

Microsoft 365 is well-suited for organisations that:

• Need comprehensive productivity suite with email, files, and communication
• Require advanced security and compliance features
• Have Windows-centric desktop environments
• Can accept US jurisdiction for data

Microsoft 365 is less suitable for organisations that:

• Require data sovereignty outside US jurisdiction
• Need to minimise ongoing subscription costs
• Prefer open-source solutions or vendor independence
• Operate in contexts where US government data access is a concern

Google Workspace

Type

Cloud-based productivity suite

Licence

Proprietary (Subscription)

Deployment options

Cloud only (SaaS)

Documentation

https://support.google.com/a/, https://developers.google.com/workspace

Google Workspace provides cloud-native productivity tools including Gmail, Google Drive, Google Docs/Sheets/Slides, Google Meet, Google Chat, and Google Calendar. The platform emphasises web-first design with real-time collaboration as a core feature rather than an addition.

January 2025 saw Gemini AI integration included in Business and Enterprise plans, adding AI-assisted writing, analysis, and summarisation across Workspace applications.

Key strengths:

• Web-native design with excellent real-time collaboration
• Strong mobile experience (Android and iOS)
• Simple administration compared to Microsoft 365
• AI features (Gemini) included in standard plans
• Competitive pricing with generous nonprofit programme

Key limitations:

• No self-hosted option; SaaS only
• US-headquartered; CLOUD Act jurisdiction applies
• Desktop applications limited (Drive sync only, no offline Docs/Sheets)
• Less feature-rich than Microsoft Office for complex documents
• Vendor lock-in through proprietary formats

Deployment and operations:

Google Workspace is administered through the Google Admin console. Configuration includes:

• User provisioning (manual, CSV, or directory sync via Google Cloud Directory Sync)
• Organisational unit structure for policy application
• Security settings (2-Step Verification, Context-Aware Access)
• Data protection (Vault for retention and eDiscovery)

Integration capabilities:

Google Workspace supports Apps Script for automation and integration, enabling custom workflows without external development infrastructure.

Security assessment:

Google Workspace holds SOC 2, ISO 27001, ISO 27017, ISO 27018, FedRAMP High, and HIPAA certifications. Security features include:

• 2-Step Verification with Security Keys, TOTP, push notification
• Context-Aware Access for conditional authentication
• Data Loss Prevention (DLP) policies
• Google Vault for retention and legal hold
• Client-side encryption (CSEK) for additional protection

Data regions can be configured for primary data storage in EU, US, or other regions; some processing metadata may occur outside selected regions.

Jurisdictional considerations:

Google is US-headquartered and subject to the CLOUD Act. Data stored by Google can be subject to US government access requests regardless of storage location. Organisations handling sensitive data should evaluate this exposure.

Cost analysis:

Nonprofit pricing (via Google for Nonprofits): Free Business Starter tier for eligible organisations.

Organisational fit:

Google Workspace is well-suited for organisations that:

• Prioritise web-based collaboration and mobility
• Want simple administration with less complexity than Microsoft 365
• Can leverage generous nonprofit programme
• Have Chromebook deployments or Chrome-centric environments

Google Workspace is less suitable for organisations that:

• Require complex spreadsheet or document features (pivot tables, macros)
• Need robust desktop applications for offline work
• Require data sovereignty outside US jurisdiction
• Operate in contexts where US government data access is a concern

Selection guidance

Decision framework

                               +------------------+
                               | Start            |
                               +--------+---------+
                                        |
                               +--------v---------+
                               | Data sovereignty |
                               | required?        |
                               +--------+---------+
                                        |
                  +---------------------+-------------------+
                  |                                         |
                  | Yes                                     | No
                  v                                         v
         +--------+---------+                      +--------+---------+
         | Self-hosted      |                      | Cloud acceptable |
         | required         |                      |                  |
         +--------+---------+                      +--------+---------+
                  |                                         |
       +----------+----------+                     +--------+---------+
       |                     |                     |                  |
       v                     v                     v                  v
+------+------+       +------+------+        +-----+------+    +------+------+
| E2EE        |       | Office      |        | Microsoft  |    | Google      |
| required?   |       | editing?    |        | ecosystem? |    | preferred?  |
+------+------+       +------+------+        +-----+------+    +------+------+
       |                     |                     |                  |
   +---+---+          +------+------+              |                  |
   |       |          |             |              v                  v
   v       |          v             v        +-----+-----+      +-----+----+
CryptPad   |      Nextcloud      Nextcloud   | Microsoft |      | Google   |
           |      + Collabora    Files only  | 365       |      | Workspace|
           v      or ONLYOFFICE              +-----------+      +----------+
      Nextcloud
      + E2EE app

Recommendations by context

Organisations with minimal IT capacity

Primary recommendation: Google Workspace (via Google for Nonprofits)

Google Workspace requires no infrastructure management and provides the simplest administration interface among enterprise options. The free Business Starter tier for eligible nonprofits reduces cost barriers. Implementation requires only domain verification and user account creation.

Alternative: Microsoft 365 Business Basic

Microsoft for Nonprofits provides up to 300 free licences. Choose Microsoft 365 if the organisation already uses Windows desktop applications extensively or requires Outlook for email.

Avoid: Self-hosted platforms without IT support capacity

Nextcloud, CryptPad, and similar platforms require ongoing server administration. Without dedicated IT capacity or managed hosting arrangements, maintenance burden risks service degradation.

Organisations with established IT capacity

Primary recommendation: Nextcloud with Collabora Online or ONLYOFFICE Docs

Self-hosted deployment provides complete data control and eliminates per-user licensing for file storage. Document editing integration (Collabora or ONLYOFFICE) adds office suite capability. This combination supports thousands of users with appropriate infrastructure.

Evaluate Collabora Online for organisations prioritising:

• LibreOffice format compatibility
• European vendor preference
• Long-term ODF format support

Evaluate ONLYOFFICE Docs for organisations prioritising:

• Microsoft Office format exchange
• Modern interface design
• Lower memory footprint

Alternative: Microsoft 365 or Google Workspace

Commercial platforms reduce operational burden at the cost of per-user licensing and data sovereignty. Consider when IT capacity should focus on other priorities.

Organisations with data sovereignty requirements

Primary recommendation: Nextcloud (self-hosted or EU-hosted provider)

Self-hosted Nextcloud on organisation-controlled infrastructure provides complete data sovereignty. Alternatively, EU-based managed hosting partners provide Nextcloud with GDPR-appropriate data residency.

Integrate Collabora Online for document editing. Both Nextcloud and Collabora are European-developed with GDPR-focused design.

Alternative: CryptPad for highest-sensitivity data

CryptPad’s zero-knowledge encryption prevents even server operators from accessing content. Use for documents requiring protection from all parties except collaborators.

Organisations handling sensitive protection data

Primary recommendation: CryptPad for document collaboration

End-to-end encryption protects content from server compromise, hosting provider access, and jurisdictional requests. No account requirement enables anonymous collaboration when appropriate.

Supplement with: Self-hosted Nextcloud for file storage

CryptPad lacks traditional file sync. Nextcloud with server-side encryption (or E2EE app for selected folders) provides file storage with stronger protection than commercial alternatives.

Avoid: US-headquartered cloud platforms for sensitive data

Microsoft 365 and Google Workspace are subject to CLOUD Act jurisdiction. Data access requests from US authorities cannot be contested by users and may not be disclosed. Evaluate this risk for protection, safeguarding, and human rights data.

Migration paths

Resources and references

Official documentation

FOSS platforms

Commercial platforms

Relevant standards

See also

• Collaboration Platform Strategy
• Document Management
• Collaboration Platform Migration
• Communication and Telephony
• Data Classification
• Cloud Strategy and Platform Selection