Office 365 backup and retention policies can only protect you from data loss in a limited way and are not intended to be a complete backup solution. You must also meet legal and compliance demands for data retention. This means that Microsoft ensures data privacy, regulatory controls and industry certifications are covered in the solution, but you are responsible for meeting your organization’s own corporate and industry regulations. ![]() In regard to regulatory responsibilities, Microsoft‘s role is the data processor, while your role is the data owner. And more rampant than ever before are external threats like ransomware, malware and hackers. The internal vulnerabilities you need to protect your data against including accidental deletion, malicious insiders, employee retaliation and evidence tampering. As an Office 365 customer, your responsibility exists at the data level. They handle security at the infrastructure-level, which includes physical, logical and app-level security as well as user and admin controls. Security-wise, Microsoft is responsible for making sure that its service can be delivered. You are also responsible for both short-term and long-term data retention to fill all of Microsoft’s retention gaps, which is why you can’t rely on the Recycle Bin. This is because through Microsoft’s replications, data loss or ransomware that is introduced can be replicated across data centers instead of being mitigated. You’re responsible for an Office 365 backup solution that stores the backup copies in a different location than where Microsoft is replicating the data. Microsoft also has the Recycle Bin, which supplies limited protection against short-term data loss. Microsoft replicates data across data centers for geo-redundancy. There are supporting technologies that help deliver for Microsoft’s responsibility and your responsibility.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |