Collaboard is designed to remain reliable and resilient – even in the face of unexpected events. Our Business Continuity Management (BCM) and Disaster Recovery (DR) framework ensures that customers can depend on Collaboard to protect their data and maintain service availability across all supported cloud environments.
Collaboard operates in three independent cloud environments.
🇨🇭 Azure Switzerland – Hosted in Microsoft Azure’s Swiss datacenters, operated under strict Swiss data protection laws.
🇳🇱 Azure Netherlands – Hosted in Microsoft Azure’s Dutch datacenters to serve European customers with GDPR compliance.
🇩🇪 Open Telekom Cloud (OTC) – Hosted and operated by Deutsche Telekom in Germany, ensuring full data sovereignty and compliance with European and German government requirements.
The three Collaboard environments are completely separated from each other — both geographically and logically. While the Azure Switzerland and Azure Netherlands environments rely on Microsoft’s built-in redundancy and recovery services, the Open Telekom Cloud environment uses the resiliency and recovery mechanisms provided by Deutsche Telekom within the Open Telekom Cloud infrastructure.
Our BCM is part of the ISO 27001–certified Information Security Management System (ISMS) of IBV Informatik Beratungs und Vertriebs AG, the company behind Collaboard.
The primary goal of BCM is to ensure that critical services such as Collaboard Web (CH/DE/WEB) remain available, even under disruptive conditions.
Key elements include:
Annual risk assessment and management review – to identify and mitigate threats that could affect operations.
Defined crisis team – including management and the Information Security Officer, responsible for activating recovery measures.
Regular testing and exercises – of recovery plans, communication procedures, and backup restorations.
Clear communication channels – including phone, secure messaging, and email to maintain coordination during incidents.
Collaboration with authorities – following predefined procedures for coordination with agencies such as the BSI (Germany).
These measures ensure that IBV can quickly respond to and recover from incidents while maintaining compliance with regulatory and contractual obligations.
Collaboard’s DR plan includes automated and verified backup routines for all cloud environments:
| Environment | Backup Mechanism | Frequency | Protection of Back-Ups |
| Azure Switzerland / Netherlands | Azure Backup and replicated databases | Automated, with manual tests before critical releases | Encrypted storage and database with redundant replicas in separate datacenters |
| Open Telekom Cloud (Germany) | Cloud Backup & Recovery (CBR SFS) Service | Automated, with manual tests before critical releases | Encrypted storage and database with redundant replicas in three different availability zones ensuring an availability of 99.95%. |
| Source Code | Automatic (git repo on Azure DevOps) | Automatic | Automatically by Microsoft |
All backup and restoration procedures are regularly tested to confirm that data can be fully recovered within defined Recovery Time Objectives (RTOs) and Recovery Point Objectives (RPOs).
To prevent disruptions, Collaboard’s infrastructure follows a redundant multi-cloud architecture:
Azure environments include built-in high availability and geo-replication features.
Open Telekom Cloud container environments can be migrated seamlessly to alternative clusters.
Network, database, and storage systems are designed to avoid any single point of failure.
This ensures that a local or regional outage does not impact overall service availability.
In the event of an incident:
The crisis team is activated to assess impact and initiate recovery.
Emergency communication is maintained via predefined channels.
Continuity of service is achieved by shifting workloads to unaffected regions or environments.
Restoration of normal operations follows once systems are verified stable and all data integrity checks are complete.
The Collaboard BCM and DR framework align with:
ISO/IEC 27001 Controls 5.5 and 5.29
GDPR and European data protection regulations
Supplier assurance programs of Microsoft and Deutsche Telekom
You can find further details about Microsoft’s resiliency commitments here: Microsoft Resiliency and Continuity Assurance
For source code you can find further details about Microsoft's data protection commitments for Azure DevOps: Data Protection Overview
You can find further details about Open Telekom Clouds security and resiliencey commitments here: Open Telekom Cloud Security
You can download here the ISO/ICE 27001 Certification of IBV Informatik, Beratungs und Vertriebs AG that covers Collaboard Cloud and On-Premises Services
Validity ISO/ICE 27001 Certification for Collaboard: 21.02.2024 - 20.02.2027
Last Re-Certification: February 2025