The 3-2-1 backup rule, explained simply

If you remember only one principle about backup, let it be the 3-2-1 rule. It is simple, memorable, and has saved countless organizations from permanent data loss.

What 3-2-1 means

• 3 copies of your data (production + two backups)
• 2 different storage media types
• 1 copy kept off-site, in another location

Why it is no longer enough

Modern ransomware actively seeks out and encrypts backups. That is why we recommend extending to 3-2-1-1-0: one immutable or air-gapped copy, and zero errors on recovery testing.

• 1 immutable (WORM) or air-gapped copy
• 0 errors — verified through regular recovery testing

Takeaway

A backup that has not been tested is not a backup — it is a hope. Root Security implements and tests 3-2-1-1-0 strategies for organizations across Romania.