Skip to main content

Data backups

All production data is stored on Google Cloud Platform. For hosting regions, see Infrastructure.
FrequencyDaily automated backups
Retention28 days with point-in-time restore
EncryptionAll backups encrypted and replicated across GCP regions
ScopeAll application data, uploaded files, and audit logs
RPO< 1 hour (point-in-time restore to the last committed transaction)
RTO< 4 hours
Archiving an entity removes it from the UI but preserves the underlying record and its full audit history. GxP records and audit trails are immutable — they cannot be deleted or overwritten by any user or administrator. Personal data subject to GDPR erasure requests is handled through a documented process that preserves audit trail integrity. Backup retention can be extended on request. For data retention policies, see Data storage and security.

Incident response

Seal maintains continuous monitoring for data and security incidents, supported by a 24/7 on-call engineering team to ensure rapid response out-of-hours. In the event of a security or data incident that affects your organization, Seal will notify your designated technical contacts promptly. Our team provides regular status updates throughout the resolution process. See the Disaster recovery plan for details on our response workflow.

Disaster recovery

Seal maintains a comprehensive Disaster Recovery Plan (DRP) that is tested through regular quarterly exercises. These exercises validate our recovery procedures and ensure our team can restore services quickly in an emergency. The alert workflow graphic below represents our mechanism of response to incidents Screenshot 2025-08-29 at 12.11.15.png Google Cloud Platform also maintains its own business continuity and disaster recovery programs.