We are a law firm and we experience that more and more often our clients (companies) are attacked by hackers who delete or encrypt their company data. Our clients lose their data despite double or triple servers being in place.
We currently rely on the fact that it is possible to recover old versions of files using the version history tool. Thus in case of deletion or encryption we should be able to recover our data. However, my understanding is that the DB administrator (myself) can permanently delete the DB files and that after permanent deletion no version history is available.
I believe that, despite the two-step verification process, a hacker might get my credentials, access as DB administrator and permanently delete all our files, including old versions of files.
For us it is fundamental to have a subscription available that would disable permanent deletions not only by members, but by Admins as well. The files, in particular, should be deleted only after 60 days from subscription cancellation.