Home / Blog / Product News

Spring 2025 Compliance & Control release: RBAC, Event History, and Rewind BYOK

Aaron Davis | Last updated on April 29, 2025 | 5 minute read

Advanced compliance features and enterprise-grade protection, built for you

At Rewind, we’re constantly innovating to meet the needs of the IT, security, and cloud operations teams who trust us to protect their most critical SaaS data. We’ve collected many recent and new Rewind compliance and security features into our Spring ‘25 Compliance & Control release, designed to give your organization more control, stronger compliance support, and deeper visibility across your SaaS backup environment.

Whether you’re preparing for an audit, enforcing least-privilege access policies, or you just need better visibility into system events for support or incident response, these features deliver the enterprise-grade security and oversight you’re looking for.

Here’s what’s new:

Role based access control (RBAC)

Rewind compliance and security features continue to evolve to meet the needs of larger organizations. With that in mind, we’re happy to share Rewind role based access control (RBAC). RBAC in Rewind allows authorized org admins to set roles for invited and existing users in the Rewind app, and restrict or allow user access to functions and data based on role.

Why RBAC in Rewind?

As organizations grow in size and complexity, so do their backup needs and compliance requirements.

Enterprise teams often manage backups across multiple cloud services and departments—and they need to be confident that only the right people have access to sensitive information and critical data restore functions.

With compliance standards like SOC 2, GDPR, and ISO 27001 top of mind, RBAC gives organizations the tools to manage access efficiently, minimize risk, and prove their security posture in compliance audits.

Other benefits of RBAC in Rewind include:

  • Single role simplicity: To keep user management streamlined, each user has only one role, either at the organization level or aligned to integrations. This reduces complexity and confusion while offering meaningful access control.
  • Granular integration-level access: For teams handling different apps or services, roles can be assigned per integration, giving department leads or service owners the right access without overreaching.
  • Audit logging: All roles that manage data will have access to audit logs—an essential requirement for compliance and internal oversight.

Role based access control in Rewind gives organizations the power and precision they need to manage access safely and efficiently. to the long list of Rewind security and compliance features is about RBAC is another entry in the long list of Rewind security and compliance features that security-conscious organizations need.

Event History

When it comes to backing up critical business data, success isn’t just about making sure data is protected—it’s about proving it. That’s why we’re excited to introduce Event History, another new Rewind security and compliance feature in the Rewind Vault and a major step forward in helping IT teams meet their security, compliance, and operational goals with confidence.

Event History offers improved visibility and traceability across your Rewind environment. Event History provides you with a detailed timeline of events, including backup status, resolutions, and other critical activities, along with contextual next steps to address any issues.

Why Event History matters

If a backup fails for any reason, you need to know about it. In enterprise environments where compliance audits, internal reviews, or unexpected data issues can strike at any time, no news isn’t good news.

We heard this loud and clear from our customers, especially enterprise IT leaders: “I need to prove that our backups were completed every day. If they don’t, I need to know what happened so it can be corrected immediately.”

With this release, we’ve improved event reporting in the Rewind Vault as part of this Rewind security and compliance feature release. The Event History tab contains detailed backup status information for faster troubleshooting, better visibility, and fewer surprises. Event History is a detailed timeline of every backup and restore operation in your environment, showing:

  • What happened — backup, restore, or copy jobs
  • When it happened — complete with date and time
  • Who initiated it — with contextual identifiers
  • Event success state — with smart success rate indicators

And if something goes wrong with a backup, Event History lets authorized users dig into what went wrong and why so teams can take the right steps to fix any issues quickly.

It’s all available in a single view that can be organized by date, event types, and initiators. We’ve also built downloadable issue logs in JSON format, so you can get answers or build audit trails without raising a support ticket.

What this means for you

Event History is more than a UI update—it’s a way to build trust and transparency. Whether you’re preparing for an audit, investigating an issue, or simply verifying that your backup strategy is working as intended, Event History puts you in control.  It also helps prove that your data is protected—not just to yourself, but to anyone who asks.

Bring Your Own Key (BYOK) in Rewind

In today’s cloud-first world, data privacy and control aren’t just security measures, they’re a strategic requirement. And for organizations operating in regulated industries, encryption and access governance are more than checkboxes on a compliance list, they’re business-critical.

That’s why we’re excited to introduce Bring Your Own Key (BYOK), a powerful new feature designed to give Rewind customers complete control over access to their backup data using Amazon Web Services’ Key Management Service (AWS KMS).

Why Rewind BYOK?

While security and data protection are fundamental at Rewind and a responsibility we take very seriously, enterprise customers require even more in-house control. Specifically, enterprise Rewind customers tell us they want to:

  • Grant or revoke Rewind’s access to backup data from within their own AWS environment.
  • Rotate encryption keys on their schedule to meet internal security and compliance standards.
  • Ensure immutability of backups even after access is revoked.

How Rewind BYOK works

BYOK enables organizations to encrypt their backup data using their own encryption keys, stored and managed in AWS KMS. This means:

  • You control when Rewind accesses your data.
  • You can revoke access at any time, rendering backup data unreadable. 
  • You can rotate keys on demand or on a schedule, supporting stringent security protocols.

The feature includes a streamlined user interface for easy configuration and key management within the Rewind platform.

What’s supported:

  • AWS KMS integration for encryption key management
  • Granular access control at the organization, platform, and instance level
  • Support for one encryption key per service instance
  • Key rotation, revocation, and refresh capabilities

Get started today!

RBAC, Event History, and BYOK features are all available now as part of our Spring ‘25 Compliance & Control release.

Join us for a live webinar on May 29, 2025 to walk through the new releases in detail. We’d love to see you there! In the meantime, check out these articles and guides from our Knowledge Base for a more detailed look at these new features:

Rewind role based access control (RBAC)

Guide to Rewind RBAC

How To Assign or Change Roles

How To Transfer Organization Ownership

FAQ

Rewind Event History

Guide to Rewind Event History

How to Understand and Resolve Event Errors

Rewind Bring Your Own Key (BYOK)

How To Set Up Rewind BYOK

Data Managed with Rewind BYOK

Profile picture of Aaron Davis
Aaron Davis
I've had the privilege of helping some of the most innovative software companies bring disruptive technology to market. Innovative, entrepreneurial, and highly curious, I'm passionate about putting great technology into the hands of customers.