Hi,
I am fully aware of what is required & can provide such implementation for you as per specification.
Files will be generated to download on the fly to prevent direct access to files, in order for that to be possible, files will/should be stored below the public root folder to prevent web access. On each download request, file will be read and output at that point by PHP. Please message me if you would like for further discussion, thanks.
Best regards