PR.DS-11.237

Does your organization enforce geographic separation and geolocation restrictions for data backup storage?

Explanation

Geographic separation of data backups helps ensure that a disaster affecting one location doesn't compromise all copies of critical data. This practice involves storing backup data in physically distant locations from the primary data, with restrictions on where backup data can be stored based on compliance requirements, data sovereignty laws, or risk management policies. Evidence of fulfillment could include documentation of backup storage locations (with geographic coordinates or regions), contracts with geographically dispersed backup service providers, configuration settings for cloud backup services showing geolocation restrictions, or data backup policies that explicitly define geographic separation requirements.

Implementation Example

Enforce geographic separation and geolocation restrictions for data backup storage

ID: PR.DS-11.237

Context

Function
PR: PROTECT
Category
PR.DS: Data Security
Sub-Category
Backups of data are created, protected, maintained, and tested

ResponseHub is the product I wish I had when I was a CTO

Previously I was co-founder and CTO of Progression, a VC backed HR-tech startup used by some of the biggest names in tech.

As our sales grew, security questionnaires quickly became one of my biggest pain-points. They were confusing, hard to delegate and arrived like London busses - 3 at a time!

I'm building ResponseHub so that other teams don't have to go through this. Leave the security questionnaires to us so you can get back to closing deals, shipping product and building your team.

Signature
Neil Cameron
Founder, ResponseHub
Neil Cameron