Funeral Zone Limited trading as Arranger (“We”, “our” or “us”) enforce this backup policy which sets out the objectives and requirements for the backup and restoration of data stored electronically.
Purpose and scope
This policy covers all data which is stored on our Arranger platform and will:
outline the Arranger backup and recovery standard;
summarise the processes and infrastructure we have in place in order to secure the backup and security of data; and
ensure that all data is stored on approved systems and is fully recoverable in the event of accidental loss or damage.
This policy applies to all data stored on our systems where such storage is electronic and similarly sets the standard for all parties who may have access to such data, including employees, service providers and any other third parties whom we may deal with in the course of business.
All data stored electronically on our Arranger platform will be routinely backed up on a regular basis.
Backups must be carried out in accordance with this policy.
Such backups must also be provided with all appropriate technological and organisational safeguards as required to protect data under the General Data Protection Regulations (GDPR).
Backups must be recorded and stored with the backup date.
Changes to code will be recorded to Bitbucket with the type of backup, reason for backup, who completed the backup.
A secondary backup is made via the Amazon Web Services S3.
Access to all backups is restricted to leads within the Technical Team.
Backups can be retrieved by written request and only where approved by an individual listed in paragraph 3.8.
We have in place a system for backing up configuration files with version control in accordance with this policy.
We have in place a system for backing up the data on the Arranger platform with a daily snapshot, 35 days storage and each transaction or change logged.
RECOVERY AND RESTORATION
Recovery and restoration of the most recent backup will be tested every month.
Records of all recovery, restoration and regrassion tests must be maintained, to include the following information:
date of backup restored;
outcome of the test; and
the name of individual that carried it out.
RETENTION OF BACKUPS
All data stored electronically is retained for 35 days.