What is offline secure storage?

Offline secure storage (OSS) is a data protection method where data is physically disconnected from the internet when not in use. Unlike cloud storage, data stored offline has zero remote attack surface — it cannot be hacked, ransomed or accessed remotely because it is not connected to any network. Firevault provides this through hardware-encrypted vaults that are physically isolated.

How does Firevault protect against ransomware?

Firevault protects against ransomware by physically disconnecting your data from the internet. Ransomware can only encrypt data it can reach over a network. When your data is stored offline in a Firevault, ransomware attacks cannot reach it. Even if your entire network is compromised, your offline vault remains untouched and intact.

How much does Firevault cost?

Firevault Vault starts from £75 per month (inc VAT) for individuals. Business Storage starts from £360 per month (inc VAT). Enterprise Platform pricing is available on request. All plans include hardware encryption, identity verification, and physical disconnection by default.

Who is Firevault designed for?

Firevault is designed for individuals protecting passports, wills and crypto keys; professionals such as solicitors, accountants and consultants protecting client data; SMEs and businesses protecting crown jewel data; and regulated industries including healthcare, financial services and legal sectors requiring offline backup for compliance with GDPR, NIS2, DORA and FCA regulations.

Is Firevault GDPR compliant?

Yes. Firevault is designed to support GDPR compliance by keeping sensitive personal data physically isolated and offline. Physical disconnection ensures data is not exposed to network-based attacks, supports data minimisation principles, and provides an audit trail of access. Firevault is also designed to support NIS2, DORA, FCA and SRA compliance requirements.

What is a physical air gap?

A physical air gap is a security measure where a computer or storage device is completely isolated from the internet and all unsecured networks. Unlike a logical or software air gap, a physical air gap cannot be bridged remotely. Firevault uses a Layer 1 physical air gap — your data is stored on hardware that is physically disconnected from any network when not in active use.

Back to Threat Counter

74%

of breaches involve human error

Human Error
The Weakest Link

Firewalls can't stop a convincing email. Encryption won't help if someone hands over the password. Human psychology is the most exploited vulnerability in cybersecurity.

Attack Vectors

How humans are exploited

Phishing Attacks

36%

Deceptive emails that trick employees into revealing credentials or downloading malware. Attackers impersonate trusted sources like executives, IT support, or vendors.

CEO fraud emailsFake invoice attachmentsPassword reset scams

Weak Passwords

81%

Password123, company name + year, or reused credentials across systems. Weak passwords can be cracked in seconds, giving attackers full system access.

Password reuse across sitesSimple dictionary passwordsDefault credentials left unchanged

Social Engineering

98%

Manipulation tactics that exploit human psychology. Attackers build trust, create urgency, or impersonate authority figures to bypass security measures.

Pretexting calls to help deskTailgating into buildingsBaiting with infected USB drives

Insider Threats

34%

Employees, contractors, or partners with legitimate access who misuse it, whether maliciously or through negligence.

Disgruntled employee data theftAccidental data sharingShadow IT usage

Real Cases

Billion-dollar companies, simple mistakes

These weren't sophisticated zero-day exploits. They were phone calls and emails.

MGM Resorts

£79 million2023

A 10-minute phone call to the help desk. Attackers impersonated an employee using LinkedIn info to reset credentials.

Uber

57M users exposed2016

Social engineering attack on a contractor. The hacker simply asked for access and was given it.

Twitter

£200K+ in Bitcoin stolen2020

Spear phishing employees via phone, convincing them to hand over internal tool access.

You can't train away
human nature

Awareness training helps, but it cannot eliminate mistakes. The only way to fully protect data from human error is to remove human access by taking it offline.

Human ErrorThe Weakest Link