Q: How frequently are backups performed?
A: Automated backups run daily for databases and virtual machines, with transaction log backups at shorter intervals where applicable. Configuration and infrastructure-as-code repositories are continuously version-controlled.
Related Articles
Q: We understand the system is hosted on Microsoft Azure and Amazon S3, with encrypted SSL communication and daily redundant backups. Could you confirm if this setup is still current and whether any changes are planned?
A: The system is now primarily hosted on Microsoft Azure. Azure Storage is used as the main backup and file repository. SSL/TLS (minimum TLS 1.2) is enforced for all communications. Daily redundant backups remain in place, and no major infrastructure ...
Q: Where are they stored (physical location or cloud)?
A: Backups are stored in Azure Storage accounts with geo-redundant storage (GRS), ensuring replication to a paired Azure region within the EU.
Q: Are they encrypted and replicated across different locations?
A: Yes. All backups are encrypted at rest with Azure Storage Service Encryption (AES-256) and replicated across geographically separated data centers within the EU. Data in transit is always encrypted via TLS/SSL.
Q: Is there a documented Disaster Recovery Plan?
A: Yes. A documented and tested Disaster Recovery Plan (DRP) exists, aligned with Azure Site Recovery (ASR) best practices. The DRP defines escalation paths, responsibilities, and technical procedures for service restoration.
Q: What controls are in place to prevent unauthorised access?
A: Controls include conditional access (IP whitelisting, device compliance policies), Just-In-Time (JIT) access for virtual machines, continuous threat detection with Microsoft Defender for Cloud, and regular access reviews.