What is offline secure storage?

Offline secure storage (OSS) is a data protection method where data is physically disconnected from the internet when not in use. Unlike cloud storage, data stored offline has zero remote attack surface — it cannot be hacked, ransomed or accessed remotely because it is not connected to any network. Firevault provides this through hardware-encrypted vaults that are physically isolated.

How does Firevault protect against ransomware?

Firevault protects against ransomware by physically disconnecting your data from the internet. Ransomware can only encrypt data it can reach over a network. When your data is stored offline in a Firevault, ransomware attacks cannot reach it. Even if your entire network is compromised, your offline vault remains untouched and intact.

How much does Firevault cost?

Firevault Vault starts from £75 per month (inc VAT) for individuals. Business Storage starts from £360 per month (inc VAT). Enterprise Platform pricing is available on request. All plans include hardware encryption, identity verification, and physical disconnection by default.

Who is Firevault designed for?

Firevault is designed for individuals protecting passports, wills and crypto keys; professionals such as solicitors, accountants and consultants protecting client data; SMEs and businesses protecting crown jewel data; and regulated industries including healthcare, financial services and legal sectors requiring offline backup for compliance with GDPR, NIS2, DORA and FCA regulations.

Is Firevault GDPR compliant?

Yes. Firevault is designed to support GDPR compliance by keeping sensitive personal data physically isolated and offline. Physical disconnection ensures data is not exposed to network-based attacks, supports data minimisation principles, and provides an audit trail of access. Firevault is also designed to support NIS2, DORA, FCA and SRA compliance requirements.

What is a physical air gap?

A physical air gap is a security measure where a computer or storage device is completely isolated from the internet and all unsecured networks. Unlike a logical or software air gap, a physical air gap cannot be bridged remotely. Firevault uses a Layer 1 physical air gap — your data is stored on hardware that is physically disconnected from any network when not in active use.

Back to Knowledge Vault

Opinion7 November 20254 min read

Offline by Default: UK 2025 Breaches Survey

The UK Government’s Cyber Security Breaches Survey 2025 is a useful reality check for anyone responsible for risk, data, or continuity. Four in ten businesses…

Mark Fermor

Director & Co-Founder, Firevault

A printed government survey report on a polished desk with soft directional lighting

The UK Government’s Cyber Security Breaches Survey 2025 is a useful reality check for anyone responsible for risk, data, or continuity.

Four in ten businesses (43%) and three in ten charities (30%) identified a breach or attack in the last 12 months. That equates to about 612,000 UK businesses and 61,000 charities being hit in a single year.

That headline hides three problems that leaders cannot ignore:

1) Exposure is constant, even when the numbers look “better”

Prevalence fell from 50% in 2024 to 43% in 2025, largely because fewer micro and small firms spotted phishing. Medium and large organisations remain heavily targeted at 67% and 74% respectively. So risk has not gone away. It has concentrated where the impact is largest.

2) Controls are uneven and leave gaps attackers can exploit

Basic measures like malware protection, firewalls and backups are common, but adoption of stronger gates is still too low. Only 40% of businesses use any form of two-factor authentication, 31% use a VPN for remote staff, and 30% monitor user activity.

3) Supply chains remain a blind spot

Only 14% of businesses review cyber risks in their immediate suppliers, and just 7% look at the wider supply chain. Even among large firms, only a quarter review wider supply chains. This is the same fault line attackers abused repeatedly in 2024–25.

Governance trend to watch

Board responsibility for cyber is 27% across all businesses, rising to 66% in large firms. That still leaves most companies without explicit senior ownership of cyber risk, which slows decision-making when incidents hit.

What “offline by default” changes

Most organisations accept permanent connectivity, then try to detect and recover fast enough. The survey shows where that breaks down: ransomware pressure, supplier weaknesses, and disruption even when “little” is taken.

Offline by default flips the equation. If your crown-jewel data is physically disconnected and identity-locked when not in use:

Ransomware cannot reach or encrypt the master copy.
Supplier outages and cloud incidents do not take your anchor data down.
Insider mistakes have a smaller blast radius because the source of truth is offline.

You still use online tools, but your most valuable assets live elsewhere: physically isolated until you choose to connect.

A five-step plan for boards

Classify what must never be online. Board packs, contracts, customer PII, IP, seed files, keys. Decide that these live offline by default.
Adopt 3-2-1-0. Three copies, two media, one off-site, and zero permanent online exposure for the master.
Make “offline %” a KPI. Track the share of sensitive files stored offline by default. Report it quarterly like any other risk metric.
Hard-gate access. Enforce MFA, least privilege and time-boxed sessions when you bring data online for use. Return it offline when finished. The survey shows MFA is still under-used. Close that gap.
Fix the supply-chain weakness. Require offline custody for partners that touch your crown-jewel data. Build it into contracts and due diligence. The current rates of supplier review are not enough.

How Firevault implements offline by default

Firevault is a secured offline data storage platform built around three pillars:

Controlled Connectivity — you decide when systems connect.
Secured Offline Access — identity-locked access with strong MFA, short windows, full audit.
Secured Offline Data — files are physically disconnected when idle.

Our Vault is likened to a digital safe deposit box for directors, investors, legal teams, creators and anyone who cannot afford a leak or lockout. Access is intentional and brief. When work is done, assets go back offline.

For teams and enterprises, Storage and our platform modules support offline custody for regulated datasets, board information, and recovery anchors, so you can keep operations moving even when suppliers or clouds fail.

The takeaway

The Breaches Survey shows some progress on hygiene, but it also shows persistent exposure, weak supply-chain oversight and patchy adoption of stronger controls. Do not accept permanent risk as the price of doing business. Reduce exposure first. Detect and respond second.

Read the full UK Government report to review the data for yourself.

If you want a practical roadmap to go offline by default for your most valuable data, speak with the Firevault team. We will help you decide what to take offline first and show how to keep it accessible on your terms

About the author

Mark Fermor

Director & Co-Founder

The driving force behind Firevault's market presence, combining commercial vision with deep tech insight.

Back to Knowledge Vault

Offline by Default: UK 2025 Breaches Survey

1) Exposure is constant, even when the numbers look “better”

2) Controls are uneven and leave gaps attackers can exploit

3) Supply chains remain a blind spot

Governance trend to watch

What “offline by default” changes

A five-step plan for boards

How Firevault implements offline by default

The takeaway

Mark Fermor

Offline by Default: UK 2025 Breaches Survey

You may also find these useful

World Backup Day 2026: Why Backups Alone Are Not Enough

NCSC Annual Review 2025: A Call for Leadership

Retail Exposure Crisis: Policy Pressure and Breach Wave