I don't want whoever's running it to have access to my files
Run an encrypted file store of some sort, keep the keys only in the memory of the process that serves the files, type it in to start the process, keep it completely off the server. That's not bulletproof (there's nothing you can do to completely prevent the server operator from having access to what's going on on the server) but in practice it'll probably be good enough.