Contracting & Compliance
      Back to home
      1. Help Center
      2. Veonics® Portal Users Manual
      3. Contracting & Compliance

      Data & Photos Backup, Storage, and Recovery Process

      eXpress badging® ensures that all customer data and badge photos (“Scoped Systems and Data”) are securely backed up, stored, and recoverable in the event of a system failure or disaster.

      💾 Our program leverages AWS-native resiliency for the Veonics® Portal and a Datto business continuity platform for on-premises systems.

      🔁 Backup Program Overview

      ✅ AWS-Hosted Veonics® Portal

      • Front-End Application: AWS performs infrastructure-level backups, snapshots, and availability zone redundancy.

      • Database & Photos: All Veonics® Portal data and badge photos are replicated and backed up within the AWS environment.

      • Security: Data is encrypted at rest and in transit. Backups inherit AWS’s SOC 2, ISO 27001, and NIST-aligned controls.

      ✅ Datto Business Continuity Platform

      • On-Premises Backup: Local hard drive appliance stores daily encrypted snapshots of eXpress badging® internal systems.

      • Off-Premises Cloud Backup: Encrypted replicas are transmitted to Datto’s secure cloud.

      • Recovery Assurance: Datto provides rapid restore testing and verification via its platform.

      📜 Backup Policy & Processes

      • System Backups Performed: Yes, AWS-native and Datto backups cover production systems, customer data, and badge photos.

      • Policy for Production Data: Yes, documented procedures ensure consistent backups and tested restoration.

      • Disaster Protection: Yes, backups are replicated offsite in secure AWS and Datto cloud environments to ensure continuity in the event of a site-level disaster.

      • Backup Media Stored Offsite: Yes, via encrypted Datto cloud and AWS infrastructure; no physical transport is required.

      • Secure Transport: All data is encrypted in transit (TLS) and at rest (AES-256).

      • Verification of Receipt: Yes, Datto and AWS systems generate automated logs and confirmations for backup and restore activities.

      🛠️ Recovery & Restoration

      • Tested Restores: Backups are restored during periodic reviews as part of our vulnerability management and business continuity testing.

      • Recovery Point Objective (RPO): Measured in hours, ensuring minimal data loss.

      • Recovery Time Objective (RTO): Restoration of critical systems typically within 24 hours, depending on incident severity.

      • Accountability: Technical Operations is responsible for initiating and validating recovery processes, reviewed by management under EOS governance.

      📊 Alignment with NIST CSF 2.0

      NIST Function Backup & Recovery Practices
      🆔 Identify Scoped systems and data defined (Portal DB, badge photos, local network).
      🛡️ Protect Encrypted backups (AWS & Datto) prevent unauthorized access.
      🔎 Detect Automated monitoring confirms backup success/failure.
      🚨 Respond Documented restoration procedures executed upon incident.
      🔄 Recover Rapid recovery via Datto cloud restores and AWS redundancy.
      ⚖️ Govern Policy reviewed by leadership; ownership assigned to Technical Operations Lead.

      ✅ Key Takeaways

      • Yes — system backups are performed using both AWS and Datto.

      • Yes — we have a documented backup & recovery policy for production systems.

      • Yes — backups are securely stored offsite, encrypted, and verified.

      • No manual transport required; modern secure cloud replication eliminates old risks.

      • Recovery processes are tested quarterly, ensuring readiness.

      📖 Related Documentation

      Last Updated: 08/30/2025