Frequently Asked Questions

Have questions about SpinOne? Check out our FAQ. To make your navigation easier, we divided questions into several groups such as backup, ransomware protection, risky apps, and access control. Each section contains valuable tips to enhance your cybersecurity as well as information about SpinOne functionality.

General questions about SpinOne

Can we upgrade our account?

You can easily upgrade your account to add additional licenses or storage from your Admin Dashboard. If you wish to upgrade your plan, your Account Manager can assist.

Can we cancel our account?

Yes, you may cancel your account at any time. Please note that as you cancel your account, all your data will be automatically removed from the SpinOne servers. To cancel your account, you need to send us a request from your dashboard. Also, keep in mind while you have canceled your service, your payment will continue for the contract you signed up for.

We suspended our subscription. Can we restore our SpinOne account?

Yes, you need to contact your Account Manager.

I’m a current client and administrator within SpinOne. Where can I go for more technical details on how to administer my account?

Please visit our Knowledge Base here – https://spin.ai/help or contact us at https://spin.ai/help/contact-us

Can SpinOne access our backed-up files as well?

No, we encrypt all your data. Only your Root Administrator and anyone they’ve delegated access to can access your data in SpinOne.

Do you encrypt the data? What kind of encryption do you use?

Yes. We encrypt data in transit, in use, and at rest. We use 256-bit AES algorithms. Learn more about data encryption in SpinOne and why it’s important.

What cloud providers does SpinOne use?

We use AWS, GSP, and Azure and their associated geographic locations. You can choose one of them for your data backup. You can also choose your own storage.

What certificates does SpinOne support?

SOC1
SOC2
SOC3
ISO 9001
ISO 27001
HIPAA
MPAA
FISMA
FERPA
CJIS
CSA
DIACAP
FedRAMP
ITAR
FIPS 140-2
G-Cloud
PCI DSS Level 1

How can we purchase your solution?

Contact us for a free demo, start a free trial, or purchase from a Marketplace listed below.

  • For Google Workspace

Our solution is available on Google Marketplace. You’ll need to log in as an Administrator.

  • For Microsoft 365

Our solution is available on Microsoft AppSource. You’ll need to log in as an Administrator.

For SlackOur solution is available on Slack App Directory. You’ll need to log in as an Administrator.

Is there a free trial?

Yes, Spin.AI offers a 15 day free trial.

Can I schedule a demo of your product?

Sure, our sales team will be happy to help. Please follow this link.

What is the cost of your solution?

Spin has a subscription-based model. We charge per user per month. We also have several different cybersecurity solutions for Google Workspace,  Microsoft 365, Salesforce, and Slack. Learn more about SpinOne pricing.

Do you have an API for developers?

No, we don’t, but we are working on it. Please follow us on Twitter or on our Blog and watch for a planned release date.

I want to become a partner. What should I do?

Do you have a reseller in my country?

Spin.AI has over 400 partners all over the world. You can learn more on the Find a Partner page.

Do you have a mobile version?

No

Backup FAQ

Why does my business need a backup?

  1. Data loss damages business operations and business continuity.
  2. It can result in financial and reputational losses.
  3. The laws in most countries stipulate mandatory backups for data.
  4. It is especially important with the rise of ransomware that you have immutable backups and an easy way to restore data as needed.

What is the 3-2-1 rule?

It’s a recommended practice for backups. You should have 3 copies of your data stored on 2 different media with one being stored in a remote location.

Is my data safe in the cloud?

Cloud providers have significant proven risk mitigation for data storage. This doesn’t always apply to cloud office suites like Google Workspace and Microsoft 365 as well as SaaS applications like Slack or Salesforce. These tools have multiple vulnerabilities and are prone to cyberattacks and internal mistakes, insider risk or other security issues. Ultimately protecting your SaaS data is your responsibility.

How often should I back up my data?

It depends on the frequency of your data updates. For businesses, the recommended backup frequency is at least once a day.

What are the different types of backup?

There are four main types of backup: full, mirror, incremental, and differential. Read our article on different types of backups and learn which is best for you.

Is it safe to back up my business-critical data with SpinOne?

What happens with different versions of my files? Do you back them up too?

SpinOne backs up the last 365 versions of each file.

How often can we back up our data with SpinOne?

You can set automated backups up to three times a day and in addition to that make an unlimited number of manual backups.

What types of data does SpinOne back up?

For Microsoft 365 and Google Workspace:

  1. All types of files stored on your Google Drive or OneDrive
  2. Emails, contacts & calendar entries
  3. Metadata (file hierarchy, email folders)
  4. Teams, Sharepoints, and Exchange Online data

For Salesforce:

  1. Objects (records)
  2. Files
  3. Metadata
  4. Sandbox

For Slack:

  1. Workspaces
  2. Channels

Can I or anyone else delete the data backed up by SpinBackup?

SpinBackup customers can delete entities (users, shared drives, or sharepoints) if needed. This applies to the entire entity and not a subset of their files or data. SpinBackup will maintain the data for 7 days in the event the customer needs to restore the data.

Can our business use Google Drive as a backup?

No. Google Drive and Shared Drives are a service in a cloud office suite. Their key purpose is to enable collaboration on documents. Google explicitly explains that it’s not a backup service.

Why should we back up our Google data?

Google Workspace is vulnerable to ransomware attacks as well as data loss due to human error and malintent. Google provides limited time for the restoration of the lost data. In most cases, the loss is spotted past this period. That’s why, to prevent permanent data loss, companies need to back up data.

Why backup Google Services?

Google doesn’t have native backup functionality to restore the data that has been lost due to human error, malicious insiders, zero-day attacks, or ransomware.

Departments with vast external communications like Sales, Customer Success, or Procurement heavily depend on data that exists nowhere outside their Gmail inbox.

Most business-critical data is stored in Google Drive and Shared Drives. It can be corrupted or deleted in the event of a planned attack or by chance. Businesses invest significant resources in building their Contact lists that can be deleted in seconds.

Google Provides Google Vault. Why do I need SpinBackup?

Google Vault is an archive service. It doesn’t do a daily backup. SpinBackup is a true backup provider with version control. Google Vault + SpinBackup is the right disaster recovery plan for your organization. See more details in our article.

What Google Services can I back up with SpinBackup?

SpinBackup backs up Google Services that contain the most critical information for the business: Gmail, Drive, Shared Drives, Contacts, and Calendar.

What is the difference between SpinBackup and other cloud backup services for Google Workspace?

In short, SpinBackup is faster, more reliable, easier to use, has better performance, and has more features than other solutions. For more information, please check out our backup tools comparison table.

Can our business use OneDrive as a backup?

No. OneDrive is part of Microsoft 365, the cloud office suite. Its key goal is to support team collaboration on files, not to store them. Microsoft makes it crystal clear that it is not a backup service.

Why should I back up my Microsoft 365 data?

Microsoft 365 is vulnerable to both ransomware attacks and data loss due to human error or malintent. None of Microsoft 365 services is safe from these events. Furthermore, Microsoft has limitations to the file recovery time. There’s a great chance you’ll detect the data loss after the recovery opportunity expires.

Why backup Microsoft 365 services?

Microsoft Exchange online, OneDrive, Calendar, Contacts, SharePoints, and Teams all contain mission-critical SaaS data that is your responsibility to protect.

Your Outlook inbox contains irrecoverable data that might be essential for business daily operations.

Files in OneDrive can be changed on a regular basis. You need to have access to the latest correct versions in case of their corruption.

People is basically the contact book for your business. Most contacts exist only there and will be hard to restore.

Calendar is essential for internal and external operations.

What Microsoft Office 365 Services can I back up with SpinBackup?

We back up O365 Services that contain the most critical information for the business: OneDrive, Outlook, People, Calendar, SharePoints and Teams.

Is it possible to migrate my data from Google Workspace to Microsoft 365 with SpinBackup?

Yes, it is. Read our full guide.

Is it possible to migrate my data from Microsoft 365 to Google Workspace with SpinBackup?

Yes, it is. Read our full guide.

Can I migrate data between Google accounts with SpinBackup?

Sure. Account migration with SpinBackup is many times easier for Admins. Learn more here.

Can I migrate data between Microsoft 365 accounts with Spin?

Yes.

Ransomware Protection FAQ

What’s ransomware and how does it work?

Ransomware is malware that encrypts files in a given system. Cybercriminals demand payment (ransom) in exchange for decryption keys. Learn more about ransomware.

Can ransomware hit Google Workspace?

Yes, it can and it regularly does.

Can ransomware hit Microsoft 365?

Yes, it can. It disrupts businesses forcing them to pay billions of dollars for encryption keys.

Why are Google Workspace and Office 365 vulnerable to ransomware attacks?

Cloud ransomware operates as a regular SaaS application. It gains access to your cloud office suite from either a third-party app or your employees. In both cases, ransomware gains legitimate OAuth access to your data with editing permissions. Neither Google nor Microsoft can discern ransomware apps from legitimate apps, and thus cannot prevent ransomware from accessing and encrypting your data.

How does ransomware infect cloud office suites?

There are three main entry points: an infected PC that has a synchronization folder with cloud suite, third-party apps, and access granted by users. Read more in our article.

What are the consequences of a ransomware attack?

  1. Employee downtime
  2. Business interruption
  3. Mission-critical data loss
  4. Sensitive data leak
  5. Unexpected cost for paying the ransom
  6. Reputation risk
  7. Unexpected IT costs
  8. Legal fines and penalties

What’s the average downtime in the event of a ransomware attack?

From several weeks to several months.

What’s the average cost of ransom for business?

$1.54 million in 2023.

What should we do in case of a cloud ransomware attack?

1. Try to turn off access to the infected cloud drive on all your PCs. 

2. Contact law enforcement and inform your Legal Department. 

3. Find the source of the attack and revoke its access. 

4. Check if you can roll back files to previous versions. 

5. If previous versions are encrypted, define the type of ransomware and try to see if there’s a decryption key online. 6. If there’s no decryption key,  start recovering files from backup. Learn more in our article.

Should we pay a ransom?

It is best to consult with security and legal experts in the event of a ransomware attack to determine the best way to proceed.

How can my business protect against a ransomware attack in a cloud office suite?

We suggest using anti-ransomware solutions, SpinRDR in particular.

What is the difference between SpinRDR and other anti-ransomware solutions?

Most anti-ransomware solutions use historical data about previous attacks and decryption keys that were purchased or created. Unfortunately, they are vulnerable to new types of ransomware.

Unlike them, SpinRDR is equally efficient against all types of ransomware as it uses unique AI-based technology that analyzes data behavior in the cloud to detect the attack. And SpinRDR includes a 2-hour recovery SLA, which is the fastest in the industry.

How does SpinRDR anti-ransomware solution work?

SpinRDR analyzes data behavior in the cloud and detects mass data encryption activity (the main indicator of a ransomware attack). It revokes access to your cloud office and initiates the recovery. Read more on how SpinRDR fights ransomware.

How fast can SpinRDR detect and stop ransomware?

On average, it takes up to one hour. We have a 2-hour recovery SLA, which is the fastest in the industry.

How fast can SpinRDR recover files?

We have a 2-hour recovery SLA, which is the fastest in the industry.

Access Risks in Google Workspace and Microsoft 365

What are the key access threats in Google Workspace and Microsoft 365?

  • Unauthorized sharing of sensitive data. 
  • Account hijacking and unauthorized access.
  • Sending sensitive information via email.
  • Access granted to third-party risky apps and extensions.

How can unauthorized access damage my business?

  • Data theft
  • Data corruption
  • Data deletion.

Why aren’t Google Workspace access policies and features enough to protect my data?

Google Workspace has a limited set of data protection policies and features. In some cases, business operations will stop if these policies are applied. As a result, companies choose a less secure option.

How can I get better control over access to my Google Workspace and Microsoft 365?

SpinDLP is a Data loss and Data leak prevention tool that can help Administrators monitor and manage access more easily. It has a number of options that Google Workspace and Microsoft 365 don’t provide. It can significantly reduce your IT costs. Read more in our article.

Risky Apps in Google Workspace and Microsoft 365

What are the key risks of third-party apps and extensions for Google Workspace and Microsoft 365?

Third-party apps can bear a hidden malicious code that will eventually infect your Google Workspace or Microsoft 365 and damage the data stored there.

Do Google Workspace and Microsoft 365 have any protection against risky apps?

No.

How can I protect my Google Workspace against risky apps?

SpinSPM can easily detect apps, assess the level of their risk, and notify the Administrator. You can also revoke access of these apps to your Google Workspace and Microsoft 365 in Spin as well as create allow and blocklists. Please read more in our article.

Misconfigurations in Google Workspace and Microsoft 365

What are cloud misconfigurations?

Cloud misconfigurations are mistakes in cloud security and compliance settings that leave the cloud vulnerable to external or internal threats.

Why are cloud misconfigurations dangerous?

Gartner predicts that the majority of cyber incidents in the cloud will be due to misconfigurations. The incorrect settings can lead to data loss, data theft, non-compliance, downtime, reputational and financial losses, and client churn.

How can our business control cloud misconfigurations?

SpinSPM is the best tool to control misconfigurations in Google Workspace and Microsoft 365.  It detects cloud misconfigurations and alerts the administrators. It also has the functionality to automatically remediate misconfigurations.