Home > APEX > Cyber & Data Protection > White Papers > Dell APEX Cyber Recovery Services – Security Guide > Direct data access
Direct data access is the data path in which data flows between the customer’s production environment (the source PowerProtect DD) and the APEX Cyber Recovery vault.
There is no direct connection between the customer production area to the Service and the vault except for in the following use cases:
The customer owns the security of these data access paths and networks. Access should be locked down and denied by default. Strong data and network routing controls such as Layer 3 and Layer 4 firewall rules and ACLs should be in place to minimize attack surfaces and vectors.
During data transmission to and from the Service, the customer must ensure data integrity, confidentiality, and availability to prevent interruption, replication, tampering, forgery, interception, and monitoring. The customer should implement security controls for these activities to secure the data ingress and egress to and from the Service.