Web

Archived Data

Learn how archived resources are reviewed, restored, and purged in Secryn.

Archived Data

Secryn preserves deleted resources in an archived state instead of permanently removing them immediately. This provides a safety layer for recovery, auditability, and operational resilience.

Archived Data allows administrators to review, restore, or permanently purge previously deleted items.

What Is Archived Data?

When a supported resource is deleted, it is moved to an archived state rather than being permanently erased.

Archived resources:

  • Are removed from active views
  • Cannot be modified
  • Do not appear in normal project or vault listings
  • Remain recoverable until permanently purged

This ensures accidental deletions can be reversed safely.

What Can Be Archived?

Archived Data typically includes:

  • Secrets
  • Keys
  • Certificates
  • Vaults
  • Other managed resources depending on system scope

Projects cannot be deleted and therefore are not archived.

Access Control

Archived Data is restricted to Administrators only.

This prevents unauthorized restoration or permanent deletion of critical resources.

RBAC rules apply as follows:

  • Admin: Full access to view, restore, or permanently delete archived items
  • Project Manager / Contributor / Read-Only: No access

Viewing Archived Items

The Archived Data section provides:

  • Resource name
  • Resource type
  • Project / Vault association
  • Deletion timestamp
  • Deleted by (if applicable)

This enables traceability and review before restoration.

Restoring Archived Resources

Administrators may restore archived resources.

When restored:

  • The resource returns to its original project and vault
  • Previous metadata is preserved
  • Version history (for secrets) remains intact
  • Audit logs reflect the restoration event

Restoration does not overwrite existing active resources unless explicitly designed to do so.

Permanent Deletion (Purge)

Administrators may permanently delete archived resources.

This action:

  • Removes the resource from the system entirely
  • Cannot be undone
  • Is logged in Audit Logs

Permanent deletion should be used carefully, especially in regulated environments.

Audit & Compliance

All archive-related actions are recorded in Audit Logs, including:

  • Initial deletion
  • Restoration
  • Permanent purge

This ensures complete traceability for compliance and forensic purposes.

Relationship with Backups

Archived resources may still exist inside system backups depending on retention settings.

If strict data removal is required:

  • Permanently purge the resource
  • Ensure backup retention policies align with your data governance requirements

Best Practices

  • Use archival recovery before attempting data re-creation
  • Review audit logs before restoring sensitive resources
  • Define internal policies for purge approvals
  • Align archive retention with compliance requirements

Logs

Backups and Restore