December 21, 2020
Backupify ProductsCloud-to-Cloud BackupCybersecurity

Explore the Measures Backupify Takes to Protect Your Data

Your data is only as safe as its backup. This is why IT professionals across multiple sectors place a special emphasis on evaluating third-party backup solutions that are sophisticated, safe, and more comprehensive than the native capabilities of their existing SaaS technologies.

Solutions like Backupify work to ensure your business-critical data is protected so that even in the face of external threats, user error, or service failure, you can restore and recover your information to any point-in-time, quickly.

Putting Backupify Security to the Test

Every organization — no matter how big or small, or in which industry it operates — collects sensitive data.

When the sensitive data gets exposed, lost, stolen, or disclosed, a business’s productivity, profit, and reputation are all at risk. To ward off the risks of improperly stored and managed data, consider some of the features of Backupify that help create a secure platform.

256-Bit Encryption

For every new Microsoft 365 or Google Workspace account that’s created at your organization, Backupify generates a unique AES 256-bit encryption key.

AES 256-bit encryption helps protect data while it’s in transit and as it lives in the Datto Cloud. This ensures that all data written for an account is encrypted with its unique key prior to storage. And, all authenticated user interactions and data transmissions with Microsoft 365 or Google Workspace occur over TLS 1.2 encrypted tunnels.

OAuth-Based Authentication

Backupify also uses OAuth-based authentication, which is an open standard for authorization that allows applications to access data in other applications without sharing user passwords.

That means your credentials are kept to you and you only.

OAuth tokens allow Backupify to securely authenticate our customers’ accounts without actually having access to your account, and Backupify never stores your credentials. If for some reason Backupify needs access to your account, a representative will reach out with a specific request.

SOC 2 Type II Compliance

Security and compliance have been prioritized at Backupify since its inception. Backupify undergoes a SOC 2 Type II compliance audit each year, passing our most recent audit in 2019. The SOC 2 Type II audit analyzes the internal controls that ensures the security of the data you entrust us with.

Throughout the SOC 2 Type II audit, an independent audit firm rigorously reviews a company’s backup and recovery systems and includes a full assessment of a company’s:

  • Infrastructure
  • Software
  • People
  • Procedures
  • Security controls
  • Data

As enterprise organizations continue to operate under more stringent data security standards, reliable vendors that are SOC 2 Type II compliant, are a lifeline.

HIPAA Compliance

Maintaining HIPAA compliance is a top priority for healthcare organizations because the threat of cybercrime is constantly looming. In fact, 89% of healthcare organizations have experienced a data breach in the past two years.

Backupify has been HIPAA compliant since at least 2014 and we are happy to sign Backupify’s Business Associate Agreement upon request.

Backupify is powered through the Datto Cloud, an exabyte-scale private cloud that stores all backups and provides easy data retrieval for businesses. Inside this cloud, Backupify data is stored in co-location facilities compliant with HIPAA.

Using a HIPAA-compliant backup system can help improve overall communications for your organization, safeguard sensitive information in disaster situations, and securely store your data offsite.

Vulnerability Management

Backupify routinely reviews and tests our own security, too. Vulnerability management includes regular external penetration testing and frequent internal scanning to ensure the security of Backupify. Following penetration tests, we review the results and analyze any vulnerabilities and remediations we’ve made with our engineering team. This helps us continually improve our system, security, and keep in line with industry standards.

Looking for a secure vendor to protect your business-critical cloud data? Learn more about Backupify with a free demo today.


SaaS Data Under Siege: Ransomware’s Rising Threat

Your cloud data could be just as vulnerable to the next wave of cyberattacks as data hosted on-premises

Office 365 logo

Secure Office 365 data protection. Backupify delivers fast recovery of Exchange, OneDrive, SharePoint Online, Calendar, Contacts and Microsoft Teams data.


Office 365 logo

Google Vault alone does not ensure your G Suite data is recoverable. Quickly restore lost data from Gmail, Calendars & Contacts, Drive and Shared Drives with Backupify.


See Why Backupify Wins SaaS Backup