Home / Focal Software Security & Infrastructure Overview

Focal Software Security & Infrastructure Overview

Jay White

Last updated on Oct 17, 2025

1. Data Storage Locations and Compliance Standards

Focal Software utilizes Google Cloud Platform (GCP) for all customer data storage. Data is housed in U.S.-based data centers, ensuring compliance with U.S. regulations and supporting industry-standard certifications:

  • Certifications: SOC 2, ISO 27001, and PCI DSS

  • Physical and Logical Security: Managed by Google’s world-class security team

  • Additional Compliance: Accommodations for HIPAA, GDPR, or other frameworks as required

2. Encryption Protocols (At Rest/In Transit)

  • At Rest: All data is encrypted using AES-256, leveraging GCP’s default encryption.

  • In Transit: Data exchanged between users and Focal Software is protected by TLS 1.2+.

  • Credential Security: Sensitive keys and credentials are managed using Google Cloud Key Management Service.

3. Backup Frequency and Retention Policies

  • Nightly full backups and incremental backups throughout the day

  • 30-day minimum retention for point-in-time recovery

  • Backups stored in geographically redundant U.S. locations

4. Disaster Recovery and Business Continuity Plan

  • Failover to alternate data centers in the event of a major incident

  • Regularly tested disaster recovery procedures

  • Continuous infrastructure monitoring and alerting

  • Recovery Time Objective (RTO): < 4 hours. Recovery Point Objective (RPO): < 1 hour.

  • Comprehensive business continuity planning for operational resilience

5. Options for Client-Side Data Export or Backup

  • Clients can export all data (orders, customers, financials, inventory) via CSV, Excel, or API at any time

  • Full data export available on request

  • Scheduled/automated exports can be arranged for local/offline backup needs

6. Example Case Studies or References

Focal Software powers several mid-market eCommerce businesses handling millions of transactions and multi-entity operations. For example, a health bars client successfully migrated over years of historical data (millions in sales, 50,000+ customers) to Focal Software with minimal downtime and full data integrity. References are available upon request and NDA execution.