DR -If your office burned down what about your physical information

I have one for you, you have created a brilliant disaster recovery (DR) and business continuity (BC) plan, it has been tested and everything is working great.   The data that is part of the plan is recoverable and the business will continue to work when the lights go out.

But what about the physical information.   In most businesses 90% of today’s work is done electronically, but previous to that, even 2 years ago it was only about 50%.    So here is the hypothetical.

How much information would your business loose if there was a fire and all of your physical records were destroyed?

If you have some type of document management system then most of it would be ok because the data would be stored electronically and be part of the DR plan.   What if you don’t?

I recently did some work for a client who is closing down their business and is retiring.   His records go back 15 – 20 years with a compliance requirement to keep the last 7 years for tax and business purposes.   These records alone are hundreds of thousands of documents, they actually fill one of those storage containers.   Because of their importance they have to be stored correctly, but what would happen if they got wet or there was a fire?

He is not going to invest in $$$ to store this information electronically but what are the alternatives.    This is not a sales pitch for a document management system, although it would be a good one.   Just looking for comment on what can be done.

Roger Smith, is an educator. Teaching students at ADFA (UNSW) and showing them how vulnerable they are to cybercrime.

He is also CEO at R & I ICT Consulting Services Pty Ltd, an Amazon #1 author on Cybercrime and founder of the SME Security Framework. He is a Consultant who specialises in inexpensive and highly effective security strategies for small and medium businesses and not for profit organisations.

He has developed and authored the SME Security Framework and the Security Policy Training Course which are considered to be the definitive guides to helping SME's protect their organisation using the principles of Technology, Management, Adaptability and Compliance.