All RDP users' profiles are created within C: drive hence they will have read access to any data stored on C: drive. However, users cannot have access of other users' profiles folders.
We strongly suggest that, you should not grant RDP access to other persons/users, if you have stored sensitive information on your VPS.
