Skip to main content Skip to navigation Skip to footer
Limited time: Design Partner Program — BUSINESS plan free for life
VERIFIED BACKUPS

Keep your data as long as the law requires

Set how long to keep your backups. Rediacc keeps them that long, then cleans up. HIPAA, SOC2, and GDPR rules are covered from day one.

Every vendor backs up your data. None check the restore actually works. Rediacc does, every day.

Claim Design Partner See compliance features → →
$ rdc config backup-strategy set
Policy "hipaa" configured ..... done
Retention: 7 years ............ set
Auto-cleanup: enabled ......... active
Audit trail: enabled .......... logging
$ rdc config backup-strategy show
POLICY KEEP BACKUPS OLDEST STATUS
hipaa 7y 2,555 2019-02-27 compliant
soc2 5y 1,825 2021-02-27 compliant
gdpr 3y 1,095 2023-02-27 compliant
Policies: 3 active    Total backups: 5,475    Compliance: 100%

Illustrative output; actual runs may include extra logs. CLI reference: rdc config backup-strategy show

7+ yrs
Maximum Retention
3
Compliance Frameworks
100%
Audit-Ready
THE PROBLEM

Compliance failures are expensive

The law says keep your data for years. Miss it and you get fined, audited, or sued. Most backup tools treat this as an afterthought. So you track it by hand in a spreadsheet. Then the auditor calls, and you start to sweat.

$4.88M average cost of a data breach globally IBM Cost of Data Breach 2024 [1]
$2.13M maximum HIPAA penalty per violation category per year HHS HIPAA Enforcement [2]
€1.2B in GDPR fines issued across Europe in 2024 alone CMS GDPR Enforcement Tracker 2024/2025 [3]
The old way
Month 1 Write retention policy
Month 3 Manual cleanup
Month 6 Missed some data
Month 9 Audit notice arrives
Month 10 Scramble to prove it
With Rediacc
Set policy
Auto
Audit-ready
THE REAL COST

What does manual compliance cost you?

Drag the sliders to match your environment. See the real cost of manual retention management.

Calculate your compliance exposure

Without Rediacc
Audit prep hours / year160 hrs
Compliance gaps (est.)4
Penalty risk per gap$200,000
Manual retention labor$32,000
Annual compliance cost
$232,000
With Rediacc
Audit prep hours / year4 hrs
Compliance gaps (est.)0
Penalty risk per gap$0
Manual retention labor$0
Annual compliance cost
$0
Prep hours: audits × hours per audit. Gaps: 1 gap per 5 TB of manually managed data (conservative estimate). Penalty: $50K per gap (median GDPR fine for SMB). Labor: prep hours × $200/hr (senior engineer). The average data breach costs $4.88M (IBM 2024) [1]. Rediacc generates audit-ready reports instantly — 2 hours per audit, automated policy enforcement.
HOW IT WORKS

One command. Full compliance.

1

Set policies

Run rdc config backup-strategy set. Set how long to keep data for each rule or data type.

2

Automate

Rediacc enforces your rules on its own. Old backups get cleaned up on schedule. No spreadsheets. No cron jobs.

3

Audit

Run rdc retention report. You get a full audit-ready report in seconds. It exports straight to your security log tool.

Retention Policies Configured
HIPAA 7 years
SOC2 5 years
GDPR 3 years
Internal 1 year
4 policies Auto-cleanup: ON
Enforce
24/7
Compliance Status Compliant
HIPAA 2,555 backups
SOC2 1,825 backups
GDPR 1,095 backups
Internal 365 backups
100% compliant Audit-ready
UNDER THE HOOD

Why spreadsheet compliance fails

Spreadsheet compliance means tracking backup dates by hand. You run cleanup scripts and hope nothing slipped before the auditor shows up. Rediacc uses btrfs, the storage engine that makes cheap instant copies. It keeps, checks, and cleans up backups for you. No human steps.

Manual Retention Management
Rediacc Retention
Spreadsheet tracking, easily outdated
Automatic rule enforcement, always current
Manual cleanup scripts, easy to get wrong
Automatic cleanup, zero manual steps
3-6 weeks audit preparation
Instant audit-ready reports via rdc retention report
No proof backups are restorable
Every kept backup checked daily
WHY IT MATTERS

What you get

Set and forget

Set your retention rules once. Rediacc enforces them forever. Old backups get cleaned up on their own. No cron jobs. No scripts.

Compliance-ready

Built for HIPAA, SOC2, and GDPR rules. Audit logs export to your security log tool. Pull a compliance report in seconds.

Full audit trail

Every backup, check, and deletion is logged with a timestamp. Every report is audit-ready by default.

THE GAP

Retention compliance compared

Most backup tools store your data. Few enforce how long to keep it. None check that old backups can still be restored.

Capability VeeamRubrikCommvaultDruva Rediacc
Choose how long to keep backups [4] [5] [6] [7]
Automatic cleanup of old backups [8] [9] [10] [11]
Checks that kept backups still work
Instant audit-ready reports [12] [13] [14] [15]
Covers HIPAA, SOC2, and GDPR [16] [17] [18] [19]
Runs on your own servers [20] [21] [22]
Built for the command line
Our SOC2 auditor asked for 3 years of backup retention proof. Previously, that meant 2 weeks of digging through logs and cross-referencing spreadsheets. With Rediacc, I ran rdc retention report --framework soc2 and handed over a complete report in 4 minutes. The auditor said it was the cleanest evidence they’d seen.
Before
2 weeks
After
4 min
5,040x faster audit prep · Zero compliance gaps found

Make compliance automatic

Start free with the Community edition. Set your first retention rule in 30 seconds. No credit card.

Claim Design Partner No credit card required
$ rdc config backup-strategy set --cron '0 2 * * *'

Short on time?

Skip the deep-dive. Grab the five-minute version your team can read at a stand-up.

Download short brief (PDF)
Check any app that runs in a container
Databases, mail servers, CI/CD, CMS, monitoring, login systems. If it runs in a container, Rediacc keeps it and checks it works.

Explore Other Solutions

backups

Backup Verification

Every backup verified automatically

 backups

Retention Compliance

Keep your data as long as the law requires

Current page backups

Instant Recovery

Full environment recovery in minutes

 ransomware

Immutable Backups

Backups that ransomware can’t touch

 multi cloud

Cloud Outage Protection

When AWS goes down, you don’t

 encryption

Encryption You Control

Your keys. Your encryption. No exceptions.

 dev env

Environment Cloning

Clone production in 60 seconds

 defense

AI Pentesting

Clone production. Let AI attack it.
Sources & References
  1. IBM Security, “Cost of a Data Breach Report 2024,” July 2024. “The global average cost of a data breach reached $4.88 million in 2024.” newsroom.ibm.com
  2. U.S. Department of Health & Human Services, “HIPAA Enforcement Rule,” 2024. “Civil money penalties up to $2,134,831 per violation category per calendar year.” www.hhs.gov
  3. CMS Law, “GDPR Enforcement Tracker Report 2024/2025,” 2025. “An aggregate total of EUR 1.2 billion in fines was issued across Europe in 2024.” cms.law
  4. Veeam provides configurable GFS (Grandfather-Father-Son) retention policies for daily, weekly, monthly, and yearly backups. helpcenter.veeam.com
  5. Rubrik SLA Domains provide automated retention with configurable local and archive retention periods. docs.rubrik.com
  6. Commvault provides configurable retention policies with basic, extended (GFS), and infinite retention options. documentation.commvault.com
  7. Druva supports GFS retention policies with daily/weekly/monthly/yearly schedules plus Long-Term Retention to cold storage. docs.druva.com
  8. Veeam Scale-out Backup Repository automates data lifecycle with performance, capacity, and archive tiers. helpcenter.veeam.com
  9. Rubrik SLA policies automate data lifecycle management with tiering from local to archive storage. docs.rubrik.com
  10. Commvault Data Aging automates data lifecycle by pruning expired backup data based on retention settings. documentation.commvault.com
  11. Druva automatically tiers data between S3, Glacier, and Deep Archive using ML-driven storage tiering. help.druva.com
  12. Veeam ONE provides built-in reporting and monitoring dashboards with compliance-ready audit reports. helpcenter.veeam.com
  13. Rubrik provides compliance and activity reports through its Envision reporting engine for governance needs. docs.rubrik.com
  14. Commvault Audit Trail Report displays all user operations across Critical, High, Medium, and Low severity levels. documentation.commvault.com
  15. Druva maintains a three-year audit trail of every admin and user activity with downloadable HTML/CSV reports. docs.druva.com
  16. Veeam Compliance Analyzer validates backup infrastructure against security and compliance best practices. helpcenter.veeam.com
  17. Rubrik Security Cloud enables compliance monitoring with SOC2, HIPAA, and PCI-DSS reporting templates. docs.rubrik.com
  18. Commvault holds ISO 27001, SOC 2 Type II, HIPAA, PCI DSS, FedRAMP High, and IRAP certifications. documentation.commvault.com
  19. Druva holds SOC 2 Type II, HIPAA, FedRAMP ATO, and FIPS 140-2 certifications with GDPR/CCPA monitoring templates. www.druva.com
  20. Veeam Backup & Replication is deployed on-premises on Windows Server with full customer control over infrastructure. helpcenter.veeam.com
  21. Rubrik is deployed as on-premises appliances (r6000 series) with integrated compute, storage, and software. docs.rubrik.com
  22. Commvault supports fully self-hosted on-premises deployments with CommServe, MediaAgent, and Access Node components. documentation.commvault.com
Product performance claims are based on Rediacc’s btrfs copy-on-write architecture. Calculator estimates use industry-standard cost models; actual costs vary by organization.