Unless encryption is advertised as a feature, it’s a safe assumption that vendors that host your data will have access to it, the cloud being someone else’s computer and all that.