Introduction

At UNIQUE, we are committed to ensuring the continuity of our services and the safety of our customers' data, even in the face of unexpected disruptions. Our Business Continuity Plan (BCP) outlines the strategies and processes we have in place to minimize downtime, protect critical operations, and recover swiftly from incidents.

This plan reflects our dedication to maintaining the highest standards of resilience and reliability. It is designed to address a wide range of potential disruptions, including natural disasters, cybersecurity incidents, hardware failures, unavailability of key personnel, and global or regional pandemics.

This document provides a high-level overview of our approach to business continuity and disaster recovery. Detailed internal procedures exist, but are not included here.

Scope

Our Business Continuity Plan applies to all critical business functions and IT services that support our operations. It is designed to address a wide range of potential disruptions, including:

• Natural disasters (e.g., floods, earthquakes).

• Cybersecurity incidents.

• Hardware or infrastructure failures.

• Unavailability of key personnel, including pandemics.

The plan ensures that we can continue to deliver essential services to our customers with minimal impact.

Key Principles

Our BCP is built on the following principles:

1. Preparedness: Proactively identifying risks and implementing mitigation strategies.

2. Resilience: Ensuring our systems and processes can withstand disruptions.

3. Recovery: Restoring critical operations within defined timeframes.

4. Continuous Improvement: Regularly testing and updating our plan to adapt to new challenges.

Incident Response

In the event of a disruption, we follow a structured incident response process:

1. Detection: Identifying the issue through monitoring tools and reports.

2. Assessment: Evaluating the impact on our operations and customers.

3. Response: Activating our Business Continuity Plan and taking immediate action to mitigate the impact.

4. Communication: Keeping stakeholders informed with timely and accurate updates.

5. Recovery: Restoring affected services and returning to normal operations.

Post-Mortem and Continuous Improvement

After every significant incident, we conduct a post-mortem analysis to:

• Document the root cause of the incident

• Evaluate the effectiveness of our plans, response and recovery efforts

• Identify lessons learned and areas for improvement to strengthen our resilience against future disruptions

• Implement changes to prevent similar incidents in the future

Disaster Recovery

We prioritize the availability and security of our IT systems. Key elements of our disaster recovery strategy to minimize impact on our customers and ensure a swift return to normal operations include:

• Data Backups: Regular backups of critical data are maintained in secure locations.

• Redundancy: Redundant systems are in place to ensure continuity of essential services.

• Recovery Objectives:

  • Recovery Time Objective (RTO): We aim to restore critical IT services within 24 hours of a disruption.

  • Recovery Point Objective (RPO): We ensure that no more than 24 hours of data is lost in the event of an incident.

Testing and Maintenance

To ensure the effectiveness of our Business Continuity Plan:

• We conduct regular drills and simulations to test our response to various scenarios.

• Lessons learned from these exercises are used to improve our plan.

• The BCP is reviewed and updated periodically, at least yearly, to reflect changes in our operations or the external environment.

Customer Assurance

We understand the importance of maintaining trust and reliability. Our Business Continuity Plan is designed to:

• Protect customer data and ensure its availability.

• Minimize service disruptions and downtime.

• Align with industry best practices, including ISO 22301 standard.

For any questions or further information, please contact us through your customer success manager.