SOX
Sarbanes-Oxley
The Sarbanes-Oxley Act of 2002 (SOX) requires that businesses establish and document procedures for financial data retention.
DataPipe offers fully managed compliance solutions featuring Veritas Enterprise Vault compliance software in conjunction with NetApp SnapLock compliance.
SnapLock:
The Challenge: Complying with Strict Records-Retention and Performance Requirements
Across the board, businesses today face increasingly strict records-retention regulations that require the archiving of e-mails, documents, patient records, design files, audit information, and other data for years, often on WORM (write once, read many) media. In addition, companies are increasingly implementing rigorous best practices to ensure that unregulated but crucial reference data is not changed or deleted and can be quickly and easily retrieved.
In this highly regulated environment, government and internal records requests frequently combine highly specific search criteria with tight response times. Failure to accurately retrieve the required unaltered records may result in significant damage to company finances or reputation.
However, current WORM technologies based on optical disk and tape do not provide sufficiently rapid access, high reliability, or low total cost of ownership (TCO).
WORM and Security Capabilities Enable Regulatory Compliance and Business Best Practices
NetApp SnapLock enables you to comply with regulatory and best-practices records-retention requirements.
It provides the creation of nonrewritable, nonerasable WORM volumes on NetApp NearStoreTM and FAS storage systems, thereby preventing critical files from being altered or deleted until a specified retention date.
SnapLock allows WORM data to be replicated securely and automatically between multiple NetApp NearStore and FAS systems using NetApp SnapMirror® software. WORM-to-WORM replication enables data at remote sites to fully comply with regulations or best practices, resulting in a highly robust WORM data protection solution. WORM data can also be backed up to tape for an additional level of data protection.
To ensure the security and confidentiality of data, NetApp NearStore and FAS systems support an advanced set of security features, including authentication (Kerberos, Active Directory, NTLM, NIS, LDAP) access controls (CIFS ACLs, NFS Permissions), server or network-based access restrictions, transmission encryption (IPSec, SecureAdminTM software option), and audit logs (CIFS logging).
SnapLock Compliance:
Enables organizations to satisfy strict records-retention regulations such as SEC Rule 17a-4 (broker-dealers), HIPAA (healthcare), Sarbanes-Oxley (public companies), 21CFR Part 11 (life sciences), and DOD 5015.2 (government). Only an act of willful destruction, such as physically removing disks from a NetApp system, can result in record deletion or alteration prior to the specified retention date.