DATA-10

Can the institution extract a full or partial backup of data?

Explanation

This question is asking whether your organization (the vendor) provides capabilities for the institution (the customer) to extract their own data from your system in the form of backups. This is important for several reasons: 1. Data ownership: Institutions need to know they can access and retrieve their own data at any time, regardless of the vendor's status or relationship. 2. Business continuity: If the institution needs to migrate to another solution or if your service experiences an outage, they need to be able to recover their data. 3. Compliance requirements: Many regulations require organizations to maintain control over their data, including the ability to retrieve it. 4. Risk management: Institutions need to mitigate the risk of vendor lock-in or data loss if your company goes out of business or experiences a catastrophic failure. The question specifically asks about both full backups (complete data extraction) and partial backups (selective data extraction), indicating the assessor wants to understand the flexibility of your backup options. When answering, you should be clear about what backup capabilities exist, how they can be accessed (self-service portal, API, request to support), what formats are available, and any limitations or costs associated with these backups.

Example Responses

Example Response 1

Yes, the institution has full control over their data and can extract both full and partial backups at any time Full backups can be initiated through our administrative portal and include all data, configurations, and metadata in industry-standard formats (CSV, JSON, or SQL dump) Partial backups can be configured to extract specific data sets based on date ranges, departments, or data types These backups can be downloaded directly or automatically transferred to the institution's secure storage location via SFTP There are no additional fees for standard backup operations, though very large data extractions may incur bandwidth charges as outlined in our service agreement.

Example Response 2

Yes, the institution can extract their data through multiple methods For full backups, customers can use our 'Data Export' feature in the admin console, which packages all data into encrypted ZIP files containing CSV and JSON files with complete schema documentation For partial backups, we provide both a self-service UI for selecting specific data categories and an API that allows programmatic extraction of targeted data sets All backup processes are logged for audit purposes, and we maintain data availability for extraction for 30 days after service termination We recommend scheduling regular automated backups, which can be configured to run daily, weekly, or monthly according to the institution's data governance policies.

Example Response 3

No, our system does not currently provide self-service backup capabilities for institutions Data extraction requests must be submitted to our support team, who will process the request within our standard SLA of 5 business days We can provide full data exports in CSV format upon request, but partial or selective backups are not supported at this time This limitation exists because our database architecture is optimized for performance rather than extraction, and we're working to develop a self-service backup solution for a future release In the meantime, we recommend institutions that require frequent data access to use our API for real-time data retrieval of current records, though this does not constitute a true backup solution.

Context

Tab: Product
Category: Data