About MyLocalCloud®

MyLocalCloud® – The Best Backup and Disaster Recovery solution in the NY Metro Area

Rather than provide examples of businesses did not have an efficient BDR solution in place when, out of nowhere, disaster struck, please imagine not have access to any of the essential data you rely on to run your business for an extended period or worse, permanently.

Backup Software Can Fail

Prometheus Computers has found that commercially available backup is not sufficient for most of our customers. In several instances when we were engaged to aid in recovery from commercial backup some or all the essential data was missing. Besides the fact recovery from the commercial backup products is painfully slow the onus is on the customer to ensure the backup is configured properly. And users are expected to perform the QC that is required to ensure the backup contains all the data and is working properly.

MyLocalCloud® provides Backup with Recovery in Mind

Data needs to be backed up as if you will one day need to get it back.

Backup is only the beginning of disaster recovery

Recovering data at an offsite location requires the right recovery systems connected to your data your need the right:

  • servers
  • storage
  • hypervisors
  • operating systems

in your recovery environment. You will also require the right people, processes, and tools for recovery.

Backup and Disaster Recovery need to work hand in glove

BDR is essential for long-term business resiliency. You must have the right recovery mindset, which means

  • Backing up data according to your recovery strategy;
  • Connecting the right recovery systems to the properly backed-up data; and
  • Creating a programmatic approach to recovery by arming yourself with the right people, right processes, and right tools, and making sure they’re all available at the right time.

Protecting physical and virtual systems

Many businesses use both physical and virtual machines. MyLocalCloud® handles both environments with simple management, unified backup and replication, deduplication and the ability to recover data from any location.

Streamlining backups

MyLocalCloud® extends beyond physical workstations and servers. It includes streamlined backups of multiple virtual machines across several servers to the cloud, a local vault, or both.

Reducing downtime and lowering costs

MyLocalCloud® can restore virtual machines in an isolated environment on production equipment. This reduces downtime and overhead expenses associated with systems restorations and true disaster recovery testing.

Redundancy not Duplication

While all MyLocalCloud® solutions provide redundancy. MyLocalCloud® also deduplicates the data in VM backups at the block level to mitigate data redundancy and ensure only block changes are uploaded during the backup process, speeding backup times and maximizing storage efficiency.

Ease of Management

From a BDR management perspective, all backups of physical and virtual assets should be accessible through a single, easy-to-use dashboard that can provide real-time client assessments for speedy review and problem resolution.

MyLocalCloud® for businesses including professional practices: accounting legal and medical

MyLocalCloud® provides enterprise class secure data protection for all your business computers, servers, Exchange, SQL, NAS and mobile devices.

We also take steps to protect against anticipated threats or hazards to the security or integrity of such information, and protect against unauthorized access to or use of such information. We protect the interests of our customers and business by operating a holistic program focused on the confidentiality, availability and integrity of data.

Within our Security Management System, we incorporate a combination of technical, administrative, and physical controls to safeguard personal information consistent with the industry standards and laws that are applicable to our customers. The principles behind each of these standards are for the data owner to retain control of sensitive data and ensure that only authorized parties can view that data.

Encryption key

We require you set up a corporate encryption key (c-key) or personal encryption key, which is known only by you.

Encryption of data during backup

During the backup process, all files are first secured with a personal 256-bit AES encryption key and then transferred to our data center via a secure SSL connection.

Encryption of stored data

Your backed-up data remains encrypted while stored in our data center.

Password requirements

Length and complexity: Passwords must be comprised of a minimum number of alphanumeric and special characters. Additionally, password validation is time and logic-sensitive and requires manual updates.

Lockout

Failed login attempts will automatically trigger account lockouts on an IP and user level.

Offsite backup

Our service can provide an automated remote or offsite backup and is a key component in any disaster recovery plan as protection against hardware failure, theft, virus attack, deletion, and natural disaster.

Physical security

  • Our data center is protected by onsite personnel 10AM-7PM Monday thru Friday and 11AM-6PM Saturdays
  • Strategically placed security cameras inside and outside the data center monitor security 24/7
  • US data center only: We send and store all data at our US data center only

Logical access

Backed up data may be accessed via the password-protected, web-based administrative console by supplying a valid encryption key.

Written contingency plan

MyLocalCloud® service includes a detailed plan concerning the data backup and recovery process in the event of a disaster.

Compliance

MyLocalCloud® can assist businesses within the medical, accounting and legal professions to comply with these new standards to avoid the penalties now being levied against violators of HIPAA, SOX, GLBA, SEC/NASD.

MyLocalCloud® for Healthcare

As a Healthcare provider, your patients are always your primary for you. An important aspect to your commitment to your patients is keeping their information confidential including

  • Medical history
  • Insurance
  • Financial information

The use of Electronic medical records as well as digital insurance and financial records has created a treasure trove of opportunities for cyber criminals. The healthcare providers effected have experienced significant financial losses. Ransomware can lock providers out of important patient data.

Backing up daily and securing your data is no longer sufficient:

  • You can forget or a daily backup can fail
  • By backing up daily you can potentially lose all the data for a full day

There are other considerations:

  • Backup files need to be validated
    o If the files are not validated your backups could turn out to be useless
  • On-site backup is not sufficient
    o There are too many vulnerabilities

Backing up raw data is insufficient. You need to backup all your application and server configuration files otherwise even with your data it can take several days to restore normalcy. You would have to rebuild your servers, operating systems, applications, etc.

Unless you have recently re-assessed your backup and disaster recovery procedures you should consider having Prometheus perform a free audit to insure you are conforming to industry best practices.

There is a lot to backing up your data so that if disaster strikes, man-made or natural you are prepared. If you do not have the IT resources internally to ensure you and your patients are protected Call us. Prometheus can prepare you for almost any eventuality.

Learn more about MyLocalCloud® security for Medical Practices (HIPAA Compliance)

More about MyLocalCloud® for Healthcare

MyLocalCloud® provides enterprise class secure data protection for all the computers, servers, Exchange, SQL, NAS and mobile devices utilized by your Medical Practice.

We also take steps to protect against anticipated threats or hazards to the security or integrity of such information, and protect against unauthorized access to or use of such information. We protect the interests of our customers and business by operating a holistic program focused on the confidentiality, availability and integrity of data.

Within our Security Management System, we incorporate a combination of technical, administrative, and physical controls to safeguard personal information consistent with the industry standards and laws that are applicable to our customers. The principles behind each of these standards are for the data owner to retain control of sensitive data and ensure that only authorized parties can view that data.

Our software and services ensure that the appropriate safeguards are in place so that the protected health information you work with and store remains confidential and secure, as required by HIPAA . With MyLocalCloud® the HIPAA Security settings ensure that the requirements in the HIPAA Security Rule—including those for encryption, password restrictions, and data storage—are in place.

Encryption Key

We require you set up a corporate encryption key (c-key) or personal encryption key, which is known only by you.

Encryption of data during backup

During the backup process, all files are first secured with a personal 256-bit AES encryption key and then transferred to our data center via a secure SSL connection.
Encryption of stored data: As required by HIPAA, your backed-up data remains encrypted while stored in our data center.

Password requirements

Length and complexity: Passwords must be comprised of a minimum number of alphanumeric and special characters. Additionally, password validation is time and logic-sensitive and requires manual updates.

Lockout

Failed login attempts will automatically trigger account lockouts on an IP and user level.

Remote/offsite backup

Our service provides an automated remote or offsite backup and is a key component in any disaster recovery plan as protection against hardware failure, theft, virus attack, deletion, and natural disaster.

Physical security

Our data center is protected by:

  • • Onsite personnel 10AM-7PM Monday thru Friday and 11AM-6PM Saturdays
  • • Strategically placed security cameras inside and outside the data center monitor security 24/7

US data center only

As required by HIPAA, we send and store all data from a HIPAA-compliant account to our US data center only

Logical access

Backed-up data may be accessed via the password-protected, web-based administrative console by supplying a valid encryption key.

Written contingency plan

The HIPAA Security Rule requires that covered entities have a written contingency plan for responding to system emergencies, including a detailed plan concerning the data backup and recovery process in the event of a disaster.

MyLocalCloud® can assist businesses within the medical, accounting and legal professions to comply with these new standards to avoid the penalties now being levied against violators of HIPAA, SOX, GLBA, SEC/NASD.

Health Insurance Portability and Accountability Act Compliance

The Health Insurance Portability and Accountability Act of 1996 (HIPAA) is the result of efforts by the federal government to ensure healthcare data practices allow patients to easily move jobs, insurance, and/or healthcare providers.

The goals and objectives of this legislation are to streamline industry inefficiencies, reduce paperwork, make it easier to detect and prosecute fraud and abuse, while enabling workers of all professions to change jobs easily even if they (or family members) had pre-existing medical conditions.

HIPAA requires the ability to establish and maintain reasonable and appropriate administrative, technical, and physical safeguards to ensure integrity, confidentiality, and availability of information. Healthcare organizations are required to individually assess their security and privacy requirements and take suitable measures to implement electronic data protection (both in transit and in storage). As proposed, a HIPAA-compliant information system must include a combination of administrative procedures, physical safeguards, and technical measures to protect patient information while it is stored and transmitted across communications networks. MyLocalCloud® provides critical data security protection without compromising patient privacy and can help customers achieve HIPAA compliance.

MyLocalCloud® assists healthcare providers to be HIPAA compliant in the following ways:

  • Unauthorized access to individually identifiable health records is strictly forbidden; data is encrypted and transmitted securely to a vault that resides at a world-class data center that provides SOC approved data protection service.
  • Access to the vaults and the data center is strictly controlled through administrative procedures, physical safeguards, and technical security measures to prevent unauthorized use or disclosure of customer data.
  • Data remains on the MyLocalCloud® servers for as long as you wish to retain it.

Sarbanes-Oxley (SOX) Act Compliance

The Sarbanes-Oxley (SOX) Act of 2002 legislates how long and the way companies store their financial records. Created largely in response to the Enron and WorldCom scandals, the SOX act is designed to safeguard against accounting errors and other illegal financial activities. In placing a more rigorous requirement on financial reports the storing of the records becomes vitally important because the trail of transactions must be secure.
The act specifically states that electronic records must be saved for at least five years to ensure that the auditors and other regulators can easily obtain requested documents.
The regulated companies in choosing a storage method will therefore look to a format that will insure it can satisfy the legal requirements of the SOX, i.e. the increased use of online remote data storage facilities / programs.

As an online data storage facility, MyLocalCloud® is not privy to the contents of the information stored for a client. The customer must maintain responsibility for ensuring that it complies as to what information is being kept and who in the organization (including independent auditors) has access. MyLocalCloud® is only responsible for the availability and security of the information being stored and has put safe guards in place to ensure appropriate quality control standards.

MyLocalCloud® assists with SOX compliance in the following ways:

  • • The data files backed up are encrypted on transfer and stored using AES 256-bit encryption and automatically decrypted during restores. The encryption is based on the private encryption key so that the data stored on MyLocalCloud® servers cannot be decrypted by anybody other than you or a designate
  • • Your files are logged with a date and time stamp each time they are accessed
  • • All backups are immediately available from the web
  • • Data remains on the MyLocalCloud® servers for as long as you want to retain it

Gramm-Leach-Bliley Compliance

All customers of financial institutions who maintain a relationship or obtain products or services such as those listed here are protected under GLBA.
GLBA affects a wide range of financial institutions such as banks, thrifts, credit unions and insurance firms as well as any firm engaged in activities including:

  • Mortgage Lending
  • Credit Card Activities
  • Securities Brokerage Activities (Including Dealers and Advisors)
  • Insurance Sales (Underwriters and Agents)
  • Tax Planning and Preparation Services
  • Investment Advice
  • A wide range of non-public personal information and personally identifiable financial information is subject to the privacy controls of GLBA.
  • MyLocalCloud® answers security concerns in the following manner:
  • The data is encrypted before transmission, always maintained in encrypted state and immediately available if required
  • Data access is restricted by password authentication and is date and time-stamped by user
  • Client access is only through authorized personnel with the encryption password, which is known only to the user
  • Detailed reporting gives regulators a clear idea of the chain of custody of the stored information, and rapid access, should it be required

Data will remain housed in the MyLocalCloud® customer storage areas for as long as the client retains it. MyLocalCloud® does not have access to the contents of the data files stored, so it is up to the client to maintain the data in a manner that is compliant with GLBA.

Securities and Exchange Commission (SEC) / National Association of Securities Dealers (NASD) Compliance

The Securities and Exchange Commission (SEC) and the National Association of Securities Dealers (NASD) have instituted regulations that demand compliance surrounding the storage of financial records and electronic communications.

MyLocalCloud® assists IT departments with SEC/NASD regulations in the following ways:

  • The data is automatically verified each time a backup takes place
  • The data is available for online restores 24 x 7. All backups are stored with the catalogs (indexes) and are always accessible to authorized users
  • The data resides on RAID-protected industry leading NAS/SAN storage devices with multiple levels of redundancy. In addition, a regular data backup guarantees its availability when required.

MLCH the Hybrid Cloud Solution

The most reliable and efficient way for users to back up their data securely

MLCH is the combination of both cloud backup and onsite backup. Local backup can be a USB drive, a network shared drive or a NAS device. MLCH is a hybrid backup solution integrates these forms of backup in an automatic, user-friendly utility running transparently in the background. Local backup will protect the data and other information on a computer system but without cloud backup local backup is insufficient in a disaster event.

MLCJH cloud data recovery backs up each production server as a virtual machine (VM) image, either by making a copy of the current VM or by converting physical servers to VM images (a process referred to as physical to virtual, or P2V) as part of the backup process. The local appliance stores these images just like it does regular file backups but also provides a platform on which they can be restarted in case the primary server goes down.

In this way, a single appliance can act as a local standby server for multiple primary servers and VMs. MLCH recovery services can provide what’s essentially high availability (HA) to the production server environments as part of our backup infrastructure.

The final step is to move these VM images to the MLCH data center, which has enough compute resources to restart any of them in the event of a disaster at the client’s site.

MLCH file system offers many benefits

  • Metadata mirroring and increased data availability
  • In any storage system, keeping metadata intact is critical as it includes important information, such as folder structures, filenames, access permissions, and the location of each file. The MLCH B-tree file system (Btrfs) stores two copies of metadata on a volume, allowing for data recovery if the hard drive is damaged or suffers from bad sectors.
  • File self-healing – Traditional storage systems might experience errors that go completely unnoticed which result in corrupt data being provided to applications with no warning or error messages. To avoid these types of errors, The file system utilized by MyLocalCloud® provides checksums for data and metadata, generates two copies of metadata, and then verifies the checksums during each read process. Once discovering a mismatch (silent data corruption), the file system is able to auto-detect corrupted files (silent data corruption) with mirrored metadata, and recover broken data using the supported RAID volumes, including RAID 1, RAID 5, RAID 6, RAID 10, F1, and SHR.
  • Snapshots and data protection
  • The MyLocalCloud® file system introduces a powerful snapshot feature allowing you to create a point-in-time copy of an entire shared folder. This facilitates quick restoration of data back to a point in time prior to a data loss or corruption caused by human error.
  • Low impact, big benefit
  • Taking a snapshot consumes only a small amount of additional storage space, while exerting little impact on system performance thanks to Btrfs’s copy-on-write architecture.
  • Frequent, scheduled backup
  • Automatically create point-in-time copies of data up to every 5 minutes without affecting performance, guaranteeing granular data backup and recovery
  • Customizable retention policy
  • Retain up to 256 hourly, daily, or weekly recovery points according to your individual needs. Smart retention options automatically delete unneeded versions
  • Self-service recovery
  • Employees can view earlier versions of files and restore them to a previous state by themselves using File Station or Windows File Explorer.
  • Frequent, scheduled backup
  • Automatically create point-in-time copies of data up to every 5 minutes without affecting performance, guaranteeing granular data backup and recovery.
  • Instantaneous snapshots
  • Capture snapshots instantly and backup data without worrying about files being modified or deleted during the backup process.
  • Instant SMB/AFP server-side copy
  • Compared with the traditional server-side copy, which requires processing time, MyLocalCloud fast-clone technology allows instant file copy to be achieved on File Station, SMB and AFP protocols if the source and destination are both on the same MyLocalCloud® volume
  • Efficient Cloud Station storage
  • Compared to ext4 volumes, MyLocalCloud® does not require double the storage space for Cloud Station’s file versioning and history data. You can retain historical versions of files when using MyLocalCloud® without worrying about consuming too much storage space.
  • Data consistency of backups
  • Traditional backup methods require time to copy data from one place to another, potentially leading to inconsistent data if files are modified during the backup process. MyLocalCloud® solves this issue by taking a snapshot before the backup process starts and then copying the snapshot data to the backup destination with no need to worry about files being modified, moved, or deleted.
  • Quotas for shared folders
  • Specify a storage limit for individuals shared folders, so your storage space will not be consumed by a shared folder. This is helpful for controlling available storage space when multiple teams or departments store files on the same MyLocalCloud® appliance
  • Clone entire shared folders
  • With MyLocalCloud®, you can simply select a shared folder and make a clone of all the contents nearly instantaneously. This is useful when testing updates to websites or databases and you need a quick clone.

MyLocalCloud® delivers the most advanced and complete BDR appliances and DraaS solutions available!

 

Glossary of Terms Backup/MyLocalCloud®