Local authorities are putting the personal data of 3.5 million citizens at risk by not having a Disaster Recovery (DR) plan in place, research reveals.

A freedom of information request by storage solutions provider FalconStor to 429 councils found over 50% of councils will make no further investment in DR this year.

The FoI also discovered that 4% of authorities will decrease spending on recovery – despite the threat posed by issues such as ransomware and human error.

Additionally, FalconStor’s research highlighted that in the past year 85% of councils have not had to use their DR plan, making it difficult to know whether or not the plan is effective or how long it takes to recover data.

Despite this, nearly two-thirds of councils (63%) have a minimum target time in which to recover lost data. 5% of those respondents aim to have data back in one to two hours, 10% in half a day and the remainder in ‘a day or more’.

‘It’s encouraging to see the majority of councils have realised the importance of having Disaster Recovery plans in place,’ said Gary Quinn, FalconStor CEO.

‘However, this research does highlight that more work needs to be done both in implementing plans and testing them thoroughly.

‘Cyber threats are continuing to evolve and human error and natural disasters are not going anywhere – so it is important that public bodies and organisations alike don’t stand still when it comes to protecting data.’