RL-C meets the strict retention requirements of regulatory standards for electronic records such as SEC 17a-4(f) and other standards applicable worldwide. When enabled on an MTree, it ensures that all the files stored with an RL configuration cannot be modified, overwritten, or deleted under any circumstance until the retention period expires. After the retention period expires, the files stored on a Compliance MTree remain unchanged and can only be deleted with both system administrator and security officer authorizations. This functionality is achieved using multiple hardening procedures including:
- Securing the system clock from illegal updates
- Requiring Security Officer authorizing certain administrative actions
- Disabling operations that might compromise the system storing retention locked data (destroying the filesystem)
- Enabling audit logging for administrative operations associated with retention settings configured
- Disabling system configurations such as adding new iDRAC users or modifying NTP settings that could compromise the system, or the retention lock attributes configured
Figure 7. A PPDD system can be used to meet backup, data governance, and data compliance needs
In summary, RL-C allows users to meet the strictest compliance standards by:
- Offering the industry first deduplication storage system that provides true end-to-end permanent file locking and secure data retention capabilities
- Preserve RL settings even when the data is replicated to a disaster recovery site
- Extend the same protection when data is stored on DDVE (from DDOS version 7.10) and DDVE on-cloud (from DDOS version 7.12)
- Facilitate data management by integrating to backup applications such as PPDM), NetWorker, Avamar (native RL-C support from version 19.8), Commvault, Veeam Backup, and Replication v12a