July 29, 2020
Shared Responsibility: Why SMBs Need Third-Party SaaS Backup
Data created in software-as-a-service (SaaS) applications like Microsoft 365 or Google G Suite is just as vulnerable to accidental deletion, ransomware, and other corruption as data in on-premises applications. SaaS application user agreements clearly state that data protection, data-level security, and long-term retention are ultimately end-user responsibilities. That’s why Microsoft, for example, recommends third-party backup in its Services Agreement.
SaaS providers do bear some of the responsibility for data protection of course. They must ensure application uptime, data availability, basic retention, and infrastructure-level security. This is commonly referred to as a “shared responsibility model” for data protection.
As a managed service provider (MSP), it is critical that you educate your clients about shared responsibility, and provide the tools necessary to address it.
The Shared Responsibility Model
SaaS providers protect data against:
- Service interruptions due to hardware or software failure
- Loss of service due to natural disaster or power outage
Users must protect data against:
- Accidental deletion
- Hackers, ransomware attacks, other malware
- Malicious insiders
Our latest research indicates that MSPs are migrating clients to Microsoft 365 SaaS applications at a rapid rate. Respondents to our annual State of the MSP survey said cloud migration was a top business driver for 2020, and that the COVID-19 pandemic only increased demand for SaaS apps. 62% said their clients are currently using Microsoft 365 cloud services and they expect that 70% will be using them within two years.
If you have clients on cloud productivity apps or will be migrating them soon, it is essential to communicate the need for SaaS backup—to reduce risk to their business and your own. That’s why some MSPs bundle SaaS protection with Microsoft services. In other words, it’s not a separate line item. If they deliver Microsoft services, backup is bundled with it and built into their fee. It's an approach worth considering, and can even be a margin-building opportunity.
Datto SaaS Protection
Datto SaaS Protection enables MSPs to protect clients against user errors, ransomware, and data corruption. It provides simple, automated, and secure backups three times every day, stored independently from your SaaS provider’s infrastructure. Unlike native tools, Datto SaaS Protection maintains folder structure and permissions in backups—so restores are fast, whether you need to recover a single file or an entire user’s account. Our easy onboarding process and 24x7x365 support gives you peace of mind that client data is safe. Datto SaaS Protection delivers:
Reliable data protection
- Automatic backup 3x daily
- Point-in-time restore and export
- Unlimited storage
- Infinite retention
- Microsoft 365: OneDrive, Exchange, SharePoint, Teams
- G Suite: Gmail, Calendar, Contacts, Drive, Shared Drives
To learn more about pitching SaaS Protection to your clients, check out our Selling SaaS Protection Made MSPeasy video.