What is offline secure storage?

Offline secure storage (OSS) is a data protection method where data is physically disconnected from the internet when not in use. Unlike cloud storage, data stored offline has zero remote attack surface — it cannot be hacked, ransomed or accessed remotely because it is not connected to any network. Firevault provides this through hardware-encrypted vaults that are physically isolated.

How does Firevault protect against ransomware?

Firevault protects against ransomware by physically disconnecting your data from the internet. Ransomware can only encrypt data it can reach over a network. When your data is stored offline in a Firevault, ransomware attacks cannot reach it. Even if your entire network is compromised, your offline vault remains untouched and intact.

How much does Firevault cost?

Firevault Vault starts from £75 per month (inc VAT) for individuals. Business Storage starts from £360 per month (inc VAT). Enterprise Platform pricing is available on request. All plans include hardware encryption, identity verification, and physical disconnection by default.

Who is Firevault designed for?

Firevault is designed for individuals protecting passports, wills and crypto keys; professionals such as solicitors, accountants and consultants protecting client data; SMEs and businesses protecting crown jewel data; and regulated industries including healthcare, financial services and legal sectors requiring offline backup for compliance with GDPR, NIS2, DORA and FCA regulations.

Is Firevault GDPR compliant?

Yes. Firevault is designed to support GDPR compliance by keeping sensitive personal data physically isolated and offline. Physical disconnection ensures data is not exposed to network-based attacks, supports data minimisation principles, and provides an audit trail of access. Firevault is also designed to support NIS2, DORA, FCA and SRA compliance requirements.

What is a physical air gap?

A physical air gap is a security measure where a computer or storage device is completely isolated from the internet and all unsecured networks. Unlike a logical or software air gap, a physical air gap cannot be bridged remotely. Firevault uses a Layer 1 physical air gap — your data is stored on hardware that is physically disconnected from any network when not in active use.

OSS for Industry

Offline Secure Storage for Education

Schools, MATs, and universities hold some of the most sensitive personal data in existence — safeguarding records, SEND files, and child protection logs. Offline Secure Storage (OSS) provides physical disconnection for your most vulnerable data.

View All Industries

We Think This Is Hard to Ignore

The NCSC reported 327 cyber incidents targeting UK education in 2024, with ransomware encrypting safeguarding and student records on connected school networks. At Firevault, pupil data lives on hardware that is physically disconnected, because children's records deserve the strongest protection available.

327

Cyber incidents reported by UK schools in 2024

NCSC Annual Review, 2025

£14M

ICO fine to Capita, which processes education data

ICO, October 2025

6.5M

Personal records stolen in single Co-op attack

BBC News, 2025

72hrs

ICO breach notification deadline for pupil data

ICO Guidance

Industry Risks

Education data is uniquely sensitive.

Safeguarding Records

Child protection logs and safeguarding records require the highest standard of confidentiality and protection.

Ransomware Targeting

Education is now the most targeted sector for ransomware — the NCSC has issued multiple alerts.

Regulatory Pressure

Ofsted, ICO, GDPR, and KCSIE mandate robust technical measures for pupil data protection.

The Reality

This is already happening in education.

NCSC: 327 Cyber Incidents Reported by UK Schools in 2024

The National Cyber Security Centre reported a record number of cyber incidents affecting UK schools, with ransomware and data exfiltration the most common attack types targeting pupil records.

NCSC Annual Review, 2025

Capita: £14M Fine Affects Education Data Processing

Capita processes data for hundreds of schools and local authorities. The ICO fined the outsourcer £14 million after hackers accessed personal data of over 6 million people, including education records.

ICO, October 2025

Co-op: Pharmacy and Membership Data of 6.5 Million Stolen

The Co-op attack demonstrated how organisations holding data across multiple sectors, including education partnerships, are vulnerable to mass data exfiltration.

BBC News, 2025

How Firevault Stops This

Remove pupil data from every system attackers can reach.

Safeguarding records, SEND files, and child protection logs are taken off school networks and written to dedicated RAID 1 drives inside a Firevault Bunker. Those drives have no internet connection. No IP address. No API. When authorised staff need access, a physical connection is created after identity verification. When the session ends, the drives disconnect.

Safeguarding data removed from school networks and placed on hardware with no network connection. Ransomware cannot encrypt what is not online
SEND records isolated with identity-verified access. Stolen staff credentials cannot unlock physically disconnected hardware
Full audit trail for Ofsted, ICO, KCSIE, and GDPR compliance. Every access session is logged and attributable
Scalable from single schools to multi-academy trusts with centralised offline protection

Take Pupil Data Off School Networks

Step 1 of 3

Safeguarding records, SEND files, and child protection logs are taken off school networks and written to physically disconnected RAID 1 drives inside a Firevault Bunker. No cloud. No shared drive. No attack surface.

Featured In