Security and Disaster Recovery

Insites is built on infrastructure that has been designed for security, reliability, and disaster recovery from the ground up. This guide provides a high-level overview of the measures in place to protect your applications and data.

Security Infrastructure

The infrastructure powering Insites has invested heavily in its Information Security Management System (ISMS) with comprehensive security policies and processes:

• Multiple network abstraction layers for isolation
• Geographically distributed data centers
• Regular third-party penetration testing
• Virus and malware scanning

You can choose to deploy your applications on Amazon Web Services (AWS) or Google Cloud hosting. Both providers offer enterprise-grade security:

• AWS Cloud Security - Data centers and network architecture built to protect information, identities, applications, and devices. Meets core security and compliance requirements including data locality, protection, and confidentiality.
• Google Cloud Security - Secure-by-design infrastructure with built-in protection across the global network.

Your code runs securely with redundancy and backups, even when contractual obligations require hosting on a specific provider.

Data Backups

Your applications and databases are automatically backed up using multiple layers:

• Real-time read replicas - Database replicas across multiple availability zones provide physical disaster recovery within a data center.
• Incremental transaction logs - Captured continuously for point-in-time recovery.
• Daily and weekly backups - Automated snapshots of your data.
• Monthly backups - Retained for 60 days.

For developers building SaaS solutions on Insites, additional options are available for taking off-site backups and managing data removal. See Data Import/Export for tools you can use to export and back up your application data.

Related resources:

• GDPR Compliance - How the Insites infrastructure approaches GDPR and ensures your project can comply with privacy regulations.

Load Balancing and Redundancy

Insites uses application load balancers operating at the request level (Layer 7) to distribute traffic across clusters of application and database servers. This architecture supports both shared hosting and dedicated server configurations.

• Shared clusters - The default hosting model where your application runs alongside others on optimized infrastructure.
• Dedicated servers - Available for clients who need single-tenant hosting or additional capacity for high-traffic applications.

Behind the load balancers, both pooled and dedicated application and database servers ensure redundancy and availability.

Disaster Recovery

A comprehensive disaster recovery plan (DRP) is in place that covers:

• Guidelines for determining when to activate the plan
• Technical response flow and recovery strategy
• Recovery procedures and checklists
• Rollback procedures to return to normal operations
• References to business resumption plans and technical dependencies

Recovery Strategy

Recovery Phases

• Response phase - Immediate actions after a significant event. On-call personnel are paged, recovery strategies are decided, and the full recovery team is assembled.
• Resumption phase - Recovery procedures are implemented and coordination across teams is executed.
• Restoration phase - Rollback procedures bring services back to previous levels and normal operations are restored.