PURPOSE
This policy from TechRepublic Premium provides guidelines for reliable and secure backups of end user data. It outlines the responsibilities of IT departments and employees to identify tasks and action items for each group. The policy can be customized to fit the needs of your organization.

From the policy:

IT STAFF RESPONSIBILITIES
IT staff will perform the following tasks:

• Designate appropriate network-based home or local directories — to be referred to as “protected directories” — or cloud storage applications for users (such as Microsoft OneDrive, Google Drive, Dropbox or some other third-party application) to store data that will be backed up, either through direct means via backup software or synchronization capabilities.
• If using cloud storage, see TechRepublic Premium’s Cloud Data Storage Policy for further information pertaining to this and other cloud storage-related endeavors.
• Ensure the sufficient allocation of space and application of appropriate permissions on these protected directories. Only authorized individuals should have access.
• Implement and maintain a centralized backup system or official configuration that covers protected directories and devices. It should also include all other aspects of end user data, such as messaging systems, databases and instant messaging information. This backup system may be local (in-house, such as a data center) or external (such as in cloud storage provided by Box or Dropbox).