Data protection is central to Retrospect, as a product and as a company. Below are our policies on how we store and protect your data as well as technical details about it.
The Retrospect Management Console runs on Salesforce’s Heroku platform. Data sent between Retrospect Backup and the Management Console and between the Management Console and your browser are protected by HTTPS/SSL encryption. Data is stored in Heroku with at-rest database encryption.
When configured, Retrospect Backup communicates with the Retrospect Management Console at most every minute (if activities are running) and at least every hour (if the system is idle).
When you give us any personal information (for example, your e-mail address), we will not pass this information to any entity outside our staff and partner network. Our partner network is certified for their knowledge of Retrospect Backup, and we only share contact details when we think they can help businesses protect their digital assets.
When configured, Retrospect Backup will send backup information to the Retrospect Management Console for your organization. This data includes but is not limited to licenses, server names, source names, backup set names, and activities.
If your managed service provider sets up an organization for your business, they will be able to see your organization, its users, and its data. You can see if your organization has this configuration under "Organization > Managed By".
Retrospect employees will need your consent before accessing your organization’s Retrospect Backup data.
Retrospect Backup communicates with the Management Console using HTTPS, so the port is 443. As it’s the same as HTTPS web traffic (like Gmail and Amazon), it’s not generally blocked. If the firewall white-lists domains, "console.retrospect.com" will need to be added.
All organization users have administrative access to their organization and managed organizations. Users of managed organizations do not have any access to a parent organization or other managed organizations.