Offline Secure Storage for Retail
Retail businesses handle millions of customer records, payment details, and loyalty data. Offline Secure Storage (OSS) provides physical disconnection for your most sensitive data.
We Think This Is Hard to Ignore
M&S lost an estimated £300 million in profit after DragonForce ransomware encrypted customer systems that were always online. At Firevault, customer and payment data lives on hardware that physically disconnects between sessions, because connected data is the blast radius.
£300M
Estimated profit loss from M&S DragonForce ransomware
Reuters, 2025
6.5M
Co-op members' personal data stolen in single attack
BBC News, 2025
430K
Harrods customer records stolen in second attack of 2025
BBC News, September 2025
£8.3T
Global cybercrime cost in 2025
Cybersecurity Ventures 2025
Retailers carry payment card data, loyalty records and millions of customer profiles that PCI-DSS treats as toxic the moment they are stored online longer than necessary. The PCI Security Standards Council recommends archiving cardholder data to media that is physically separated from the operating environment. Firevault provides exactly that separation, sharply reducing the attack surface auditors examine and the volume of data exposed in any single online incident.
Retail data is a growing target.
Payment Data
Customer payment information is the primary target for retail breaches.
Customer Records
Loyalty programmes and customer profiles contain valuable personal data.
Supply Chain Risk
Third-party integrations create additional attack surfaces.
This is already happening in retail.
M&S: DragonForce Ransomware Shut Down Online Operations
Attackers deployed DragonForce ransomware across Marks and Spencer systems, forcing the retailer to suspend online orders for months and costing an estimated £300 million in lost profit.
Reuters, 2025
Co-op: 6.5 Million Members' Data Stolen
Attackers exfiltrated personal data of all 6.5 million Co-op members in a cyber attack the CEO described as devastating. Customer names, contact details, and membership information were all taken.
BBC News, 2025
Harrods: 430,000 Customer Records Stolen in Second Attack
Hackers stole customer data from the luxury retailer via a compromised supplier, the second cyber attack to hit Harrods in the same year.
BBC News, September 2025
Remove customer data from every system attackers can reach.
Customer records, payment archives, and loyalty data are taken off retail networks and written to dedicated RAID 1 drives inside a Firevault Bunker. Those drives have no internet connection. No IP address. No API. When authorised staff need access, a physical connection is created after identity verification. When the session ends, the drives disconnect.
- Customer and payment data removed from retail networks and placed on hardware with no network connection. Ransomware cannot encrypt what is not online
- PCI-DSS compliant storage with identity-verified access. Stolen credentials cannot unlock physically disconnected hardware
- Scalable from single-site to national multi-store operations with centralised offline protection
- Supports GDPR, PCI-DSS, and Cyber Essentials through the strongest technical measure, physical disconnection
Take Customer Data Off Retail Networks
Step 1 of 3Customer records, payment archives, and loyalty data are taken off retail networks and written to physically disconnected RAID 1 drives inside a Firevault Bunker. No cloud. No API. No attack surface.
“Cardholder data should be retained only for as long as needed for legal, regulatory or business purposes, and should be stored using methods that minimise exposure of the data while at rest.”
Featured In
'%3e%3cpath%20fill='%23E40784'%20d='M141.363%2026.6a5.905%205.905%200%200%201-5.899-5.9%205.905%205.905%200%200%201%205.899-5.895%205.901%205.901%200%200%201%205.895%205.895%205.9%205.9%200%200%201-5.895%205.9Zm0-8.347a2.448%202.448%200%200%200%200%204.895%202.449%202.449%200%200%200%202.447-2.448%202.449%202.449%200%200%200-2.447-2.447ZM141.363%200c-.821%200-1.638.052-2.447.144v3.731a16.897%2016.897%200%200%201%202.447-.177c9.373%200%2017.002%207.626%2017.002%2017.002%200%20.825-.063%201.642-.177%202.448h3.732c.095-.81.143-1.627.143-2.448%200-11.411-9.285-20.7-20.7-20.7Z'/%3e%3cpath%20fill='%23E40784'%20d='M141.363%207.268c-.825%200-1.645.077-2.447.228v3.787a9.733%209.733%200%200%201%202.447-.313c5.369%200%209.734%204.368%209.734%209.734%200%20.832-.107%201.652-.313%202.447h3.783c.151-.802.228-1.623.228-2.447.004-7.412-6.024-13.436-13.432-13.436Z'/%3e%3cpath%20fill='%23fff'%20d='M71.382%207.537h-2.84a5.82%205.82%200%200%200-5.815%205.818v9.785h4.037v-9.789a1.78%201.78%200%200%201%201.777-1.777h2.841V7.537ZM80.539%2019.1a3.787%203.787%200%200%201-3.783-3.784%203.787%203.787%200%200%201%203.783-3.783%203.787%203.787%200%200%201%203.783%203.784%203.787%203.787%200%200%201-3.783%203.783Zm0-11.6c-4.313%200-7.82%203.507-7.82%207.82%200%204.313%203.507%207.82%207.82%207.82%201.372%200%202.66-.357%203.78-.982v.982h4.036V15.32c.004-4.313-3.503-7.82-7.816-7.82ZM41.806%2018.71a5.512%205.512%200%200%201-4.34%202.1%205.55%205.55%200%200%201-5.541-5.541%205.55%205.55%200%200%201%205.542-5.543c1.696%200%203.279.766%204.339%202.102l.088.114%201.656-1.656-.077-.092a7.865%207.865%200%200%200-6.01-2.797c-4.339%200-7.871%203.533-7.871%207.872s3.532%207.871%207.871%207.871a7.865%207.865%200%200%200%206.01-2.797l.077-.091-1.656-1.656-.088.113ZM19.479%207.397c-4.34%200-7.872%203.53-7.872%207.872%200%204.342%203.533%207.871%207.872%207.871a7.883%207.883%200%200%200%207.205-4.71l.081-.18H24.15l-.037.058a5.543%205.543%200%200%201-10.05-1.873h13.2l.015-.11c.048-.357.073-.714.073-1.053%200-4.346-3.529-7.875-7.871-7.875Zm-5.417%206.705a5.54%205.54%200%200%201%205.417-4.376%205.54%205.54%200%200%201%205.417%204.376H14.06ZM46.192%2023.14h2.33v-8.847a4.599%204.599%200%200%201%204.593-4.592%204.599%204.599%200%200%201%204.592%204.592v8.844h2.33v-9.149h-.008a6.887%206.887%200%200%200-2.082-4.648%206.89%206.89%200%200%200-4.832-1.972%206.863%206.863%200%200%200-4.593%201.751V.545h-2.33V23.14ZM2.686%207.393H0v2.33h2.686v8.471a4.944%204.944%200%200%200%204.94%204.939h2.435v-2.33H7.625a2.613%202.613%200%200%201-2.609-2.612V9.726h3.772v-2.33H5.016V1.84h-2.33v5.553ZM101.968%208.457a7.721%207.721%200%200%200-2.547-.858c-.088-.014-.177-.03-.265-.04-.1-.011-.199-.022-.302-.03a9.993%209.993%200%200%200-.574-.029c-.022%200-.04-.004-.062-.004h-.037c-4.313%200-7.82%203.507-7.82%207.82%200%204.313%203.507%207.82%207.82%207.82h.037c.25%200%20.496-.014.743-.04l.037-.003a7.742%207.742%200%200%200%203.003-.939v.979h4.037L106.005.537h-4.037v7.92Zm0%206.863a3.788%203.788%200%200%201-3.769%203.78%203.786%203.786%200%200%201-3.76-3.78c0-2.08%201.688-3.772%203.764-3.78a3.787%203.787%200%200%201%203.765%203.78ZM119.75%2023.11h4.037V15.299c-.011-4.302-3.515-7.798-7.82-7.798-4.313%200-7.821%203.507-7.821%207.82%200%204.313%203.508%207.82%207.821%207.82%201.372%200%202.66-.357%203.783-.982v.953Zm-3.783-4.01a3.786%203.786%200%200%201-3.783-3.784%203.786%203.786%200%200%201%203.783-3.783%203.79%203.79%200%200%201%203.783%203.78v.003a3.787%203.787%200%200%201-3.783%203.784ZM132.273%207.5a5.824%205.824%200%200%200-5.818%205.818v9.822h4.037v-9.822a1.78%201.78%200%200%201%201.777-1.777h2.841V7.5h-2.837ZM173.736%2020.807a5.534%205.534%200%200%201-5.527-5.527%205.534%205.534%200%200%201%205.527-5.528%205.535%205.535%200%200%201%205.528%205.528%205.535%205.535%200%200%201-5.528%205.527Zm0-13.399a7.852%207.852%200%200%200-5.527%202.274V7.393h-2.344V30h2.344v-9.127a7.836%207.836%200%200%200%205.527%202.275c4.339%200%207.872-3.533%207.872-7.872s-3.533-7.868-7.872-7.868ZM186.735%2023.14h-2.385v-9.81a5.84%205.84%200%200%201%205.833-5.834h2.848v2.385h-2.848a3.45%203.45%200%200%200-3.448%203.448v9.811ZM202.813%209.774a5.535%205.535%200%200%200-5.528%205.528%205.535%205.535%200%200%200%205.528%205.527%205.534%205.534%200%200%200%205.527-5.527%205.534%205.534%200%200%200-5.527-5.528Zm0%2013.4c-4.339%200-7.872-3.533-7.872-7.872%200-4.34%203.533-7.872%207.872-7.872s7.872%203.53%207.872%207.872c0%204.339-3.533%207.871-7.872%207.871Z'/%3e%3c/g%3e%3cdefs%3e%3cclipPath%20id='a'%3e%3cpath%20fill='%23fff'%20d='M0%200h210.68v30H0z'/%3e%3c/clipPath%3e%3c/defs%3e%3c/svg%3e){kind=small}
Choose Your Protection
Which OSS Fits?
300GB
Low Use Vault, Deep Cold Storage
From £74.99/mo
inc. VAT · £0 due today
Deep cold storage for loyalty programme data and archived customer records accessed periodically.
What 300GB holds
Use Cases for Retail
- Loyalty programme historical data
- Archived customer profiles
- Legacy supplier contracts
- Seasonal campaign archives
- Closed store records
Specifications
Capacity
300GB
Access
2 windows/week
Authentication
Identity-locked
Commitment
36 months
Security & Compliance
How to Get Started
Step 1
Discovery Call
Understand what you need to protect and how you operate.
Step 2
Vault Configuration
Select your tier, capacity, and access model.
Step 3
Identity Verification
Complete KYC/AML and set up multi-factor authentication.
Step 4
Go Live
Data ingestion, access policy activation, and ongoing support.
One Vault, every channel, every stage of the trading period.
Offline Secure Storage sits at the centre of the retailer, owned by the executive accountable for customer trust, payment integrity and brand reputation. Customer acquisition and sign-up feed the live customer and order file on one set of wings; suppliers, channels and the live trading periods the retailer is running in parallel form the other. Nothing is reachable between sessions, and every touch is logged for PCI DSS, the ICO and the cyber-insurance market.
;%20}%20.cls-5%20{%20fill:%20%23ff585b;%20}%20.cls-6%20{%20fill:%20%2300e8e4;%20}%20%3c/style%3e%3clinearGradient%20id='linear-gradient'%20x1='276.74'%20y1='118.34'%20x2='222.69'%20y2='132.54'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20offset='.27'%20stop-color='%23ea2b6c'/%3e%3cstop%20offset='.6'%20stop-color='%23514f62'/%3e%3c/linearGradient%3e%3c/defs%3e%3cg%3e%3cpath%20class='cls-6'%20d='M250.69,382.32v-171.71L93.34,115.59c-29.58-17.86-67.32,3.44-67.32,37.99h0c0,57.77,30.22,111.32,79.67,141.18l145,87.56Z'/%3e%3cpath%20class='cls-3'%20d='M250.69,382.32v-171.71l157.35-95.02c29.58-17.86,67.32,3.44,67.32,37.99h0c0,57.77-30.22,111.32-79.67,141.18l-145,87.56Z'/%3e%3cpath%20class='cls-5'%20d='M250.69,209.97l-140.85,80.93c-20.88,12-33.76,34.25-33.76,58.33h0c0,59.08,63.9,96.06,115.13,66.63l59.47-34.18v-171.71Z'/%3e%3cpath%20class='cls-2'%20d='M250.69,209.97l140.85,80.93c20.88,12,33.76,34.25,33.76,58.33h0c0,59.08-63.9,96.06-115.13,66.63l-59.47-34.18v-171.71Z'/%3e%3c/g%3e%3cg%3e%3cpath%20class='cls-4'%20d='M276.54,114.19h-33.56l-3.97-7.22h33.39l-6.23-11.23h-33.55l-6.36,11.22,4.03,7.23h-8.05l-6.41,11.35,16.72,29.8h12.79l-16.87-29.8h8.3l16.63,29.8h12.79l16.64-29.86-6.26-11.28ZM259.72,144.12l-10.41-18.71,20.77.05-10.35,18.66Z'/%3e%3cpolygon%20class='cls-1'%20points='269.14%20126.37%20269.11%20126.42%20248.35%20126.37%20269.14%20126.37'/%3e%3c/g%3e%3c/svg%3e)
Customer Acquisition and Sign-up
- Web account creation captured into the customer's vault on first sign-up
- In-store loyalty enrolment lodged with consent receipts attached
- Marketing opt-in, GDPR lawful-basis and preference centre recorded
- Age and identity verification evidence stored for restricted lines
- Click-and-collect and trade-account onboarding handed to the order file
- Newsletter, app and SMS sign-ups reconciled into one customer record
Customer and Order File
- Membership and account records
- Loyalty and rewards balances
- Order, basket and wishlist history
- Payment tokens and PCI vault
- Returns, refunds and chargebacks
- Complaints and CX correspondence
- Marketing consent and preferences
- Address book and delivery records
Suppliers and Channels
- Payment processors, acquirers and card schemes
- 3PL, fulfilment and last-mile carriers
- Marketing, CRM and loyalty partners
- External auditors and PCI assessors
- Cyber, credit-risk and product-liability insurers
Live Trading Periods
- PeakPK
- Seasonal SaleSLE
- NPD LaunchNPD
- ClearanceCLR
- Business as UsualBAU
Questions
Frequently Asked
Ready to take the next step?
See how Firevault can protect your most sensitive data with physically disconnected storage.