Author: CalPrivacy Public & External Affairs Division
Published: Apr 06, 2026
Key Takeaways:
- Protect your data by creating backups so you are prepared if you experience data loss.
- Follow the 3‑2‑1 rule: keep 3 copies of your files, stored on 2 different media types, with 1 copy offsite.
- Use an encrypted external hard drive to keep physical backups secure from theft.
- When using cloud storage, consider encrypting files before uploading to protect them in case of a cloud provider breach.
- Strengthen all backup accounts with strong, unique passwords and multi‑factor authentication.
Backing up your data is an important way to help maintain control of your personal information and keep your important documents and memories safe from data loss.
Preventing data loss is easy if you are prepared. Here are some tips to back up your files safely, securely, and with privacy in mind.
The 3-2-1 Rule
When backing up your data, follow the 3-2-1 rule:
- Keep three copies of your data.
- Use two different media types.
- Store one copy offsite.
What this means for consumers is: keep your original files on your device, use a cloud backup, and keep an external hard drive where you have adequate control over the security of the hard drive.
Securing Your External hard Drive
Even if your external hard drive isn’t hooked up to the internet, it can still be stolen. Hard drives can be a target for real-life thieves. To protect your files if your hard drive is physically stolen, it’s important to the files you are backing up. Encryption converts normal data into a secret code that only the intended reviewer can decode. For example, Windows users can use BitLocker, and Mac users can use FileVault to encrypt files.
Cloud Storage
Cloud storage lets you back up your files directly from a device to a cloud service. If you use cloud storage, you have an option to use third-party tools to encrypt the files before you upload them to the cloud. Encrypting your data before upload will help safeguard it in the event of a data breach at the cloud service provider.
Strong Passwords and Multi-Factor Authentication
Keep your backup accounts safe with strong, unique passwords and multi-factor authentication. A strong password uses a mix of upper and lowercase letters, symbols, and numbers, and avoids common words or phrases. A password manager can help you keep track of your passwords.
Multi-factor authentication adds another layer of protection by requiring a second step, such as a code sent to your email or phone number as verification. These steps, combined with the practices above, help keep your information safe and secure.
Follow us for More Privacy Tips
By using the 3-2-1 rule, securing your external hard drive, and using strong passwords with multi-factor authentication, you are in a much better space if you experience data loss. Remember to check back monthly for more consumer blog posts, subscribe to our mailing lists, follow us on social media, and review our Privacy Tips webpage to get the latest information on how to protect your privacy.