What is offline secure storage?

Offline secure storage (OSS) is a data protection method where data is physically disconnected from the internet when not in use. Unlike cloud storage, data stored offline has zero remote attack surface — it cannot be hacked, ransomed or accessed remotely because it is not connected to any network. Firevault provides this through hardware-encrypted vaults that are physically isolated.

How does Firevault protect against ransomware?

Firevault protects against ransomware by physically disconnecting your data from the internet. Ransomware can only encrypt data it can reach over a network. When your data is stored offline in a Firevault, ransomware attacks cannot reach it. Even if your entire network is compromised, your offline vault remains untouched and intact.

How much does Firevault cost?

Firevault Vault starts from £75 per month (inc VAT) for individuals. Business Storage starts from £360 per month (inc VAT). Enterprise Platform pricing is available on request. All plans include hardware encryption, identity verification, and physical disconnection by default.

Who is Firevault designed for?

Firevault is designed for individuals protecting passports, wills and crypto keys; professionals such as solicitors, accountants and consultants protecting client data; SMEs and businesses protecting crown jewel data; and regulated industries including healthcare, financial services and legal sectors requiring offline backup for compliance with GDPR, NIS2, DORA and FCA regulations.

Is Firevault GDPR compliant?

Yes. Firevault is designed to support GDPR compliance by keeping sensitive personal data physically isolated and offline. Physical disconnection ensures data is not exposed to network-based attacks, supports data minimisation principles, and provides an audit trail of access. Firevault is also designed to support NIS2, DORA, FCA and SRA compliance requirements.

What is a physical air gap?

A physical air gap is a security measure where a computer or storage device is completely isolated from the internet and all unsecured networks. Unlike a logical or software air gap, a physical air gap cannot be bridged remotely. Firevault uses a Layer 1 physical air gap — your data is stored on hardware that is physically disconnected from any network when not in active use.

Back to Guides

Guidesadvanced

Butterfly Deployment Model: Buyer's Guide

Complete guide to the Butterfly Deployment Model and VPPP framework for enterprise-grade offline data protection architecture.

12 min read

## Executive Summary The Butterfly Deployment Model is Firevault's enterprise methodology for architecting offline secure storage across organisations. Built on the VPPP framework (Vault, Policy, Permissions, Purpose), Butterfly enables systematic deployment of data protection infrastructure that scales from individual executives to global operations. --- ## What Is the Butterfly Deployment Model? Butterfly is a structured deployment framework that maps your organisation's data protection requirements across four interconnected dimensions: **The Four Wings:** - **Assets (Cyan)**: What data requires protection - **Roles (Coral)**: Who needs access and when - **Policy (Slate)**: Governance rules and compliance requirements - **Scale (Magenta)**: Deployment scope from personal to enterprise This framework ensures every deployment decision considers the full context of data sensitivity, access requirements, regulatory obligations, and organisational structure. --- ## What Butterfly Is NOT **Not a software product**: Butterfly is a methodology, not a standalone application. **Not a one-size-fits-all template**: Each deployment is architected to your specific requirements. **Not automated configuration**: Butterfly guides human decisions; it does not replace expert judgment. **Not limited to Firevault products**: The framework principles apply to broader data governance strategy. --- ## The Problem Butterfly Solves Enterprise data protection typically fails through: 1. **Fragmented deployment**: Security tools deployed reactively without coherent architecture 2. **Access confusion**: Unclear policies on who can access what, when, and why 3. **Compliance gaps**: Governance requirements addressed in isolation 4. **Scaling failures**: Solutions that work for 10 users but collapse at 1,000 Butterfly provides the architectural discipline to deploy protection systematically. --- ## The VPPP Framework Explained ### Vault (Assets Wing) Identify and classify data requiring protection: - Critical business records - Regulatory-sensitive information - Intellectual property - Personal liability documents - Succession and estate materials ### Policy (Governance Wing) Define the rules governing data handling: - Retention requirements - Compliance frameworks (GDPR, SOX, HIPAA) - Industry regulations - Internal governance standards - Audit trail requirements ### Permissions (Roles Wing) Map access requirements to organisational roles: - Executive access patterns - Departmental boundaries - External advisor requirements - Emergency access protocols - Succession planning ### Purpose (Scale Wing) Determine deployment scope and architecture: - Individual executive protection - Departmental data rooms - Enterprise-wide infrastructure - Multi-site coordination - Cross-border considerations --- ## How Butterfly Deployment Works ### Phase 1: Discovery - Asset inventory and classification - Stakeholder mapping - Compliance requirement analysis - Current state assessment ### Phase 2: Architecture - VPPP framework application - Access pattern design - Policy rule definition - Scale planning ### Phase 3: Implementation - Phased rollout strategy - User onboarding - Policy enforcement activation - Monitoring configuration ### Phase 4: Optimisation - Usage pattern analysis - Policy refinement - Scale adjustment - Continuous improvement --- ## Butterfly for Different Stakeholders ### For CISOs and Security Leaders - Systematic approach to offline storage architecture - Clear governance framework for board reporting - Audit-ready deployment documentation ### For Risk and Compliance Officers - Policy-first deployment methodology - Regulatory alignment verification - Evidence of structured governance ### For IT and Network Architects - Technical deployment blueprints - Integration architecture patterns - Scalability planning framework ### For Board Directors and Executives - Personal liability protection architecture - Succession planning integration - Advisor access management --- ## Key Differentiators **Methodology, not just technology**: Butterfly ensures you deploy the right solution, not just any solution. **Four-dimensional analysis**: Every decision considers assets, roles, policy, and scale together. **Scalable by design**: Architecture that grows with organisational requirements. **Compliance-integrated**: Governance requirements built into the deployment model, not bolted on afterwards. --- ## Getting Started with Butterfly The Butterfly Deployment Model is available through Firevault's enterprise engagement process: 1. **Initial consultation**: Discuss your organisation's data protection requirements 2. **VPPP assessment**: Map your specific needs across all four wings 3. **Architecture proposal**: Receive a tailored deployment blueprint 4. **Phased implementation**: Structured rollout with ongoing optimisation --- ## Summary The Butterfly Deployment Model transforms ad-hoc data protection into systematic enterprise architecture. By applying the VPPP framework, organisations ensure every deployment decision is informed by asset sensitivity, role requirements, policy obligations, and scaling needs. For organisations serious about offline secure storage at scale, Butterfly provides the architectural discipline that separates strategic data protection from reactive security spending.