Every business depends on its IT systems, yet surprisingly few UK businesses have a credible plan for what happens when those systems fail. Whether the cause is a ransomware attack, a hardware failure, a fire at your office, or a simple misconfiguration that takes down a critical server, the result is the same: your business grinds to a halt, and every minute of downtime costs money, reputation, and customer trust.
Microsoft Azure provides a comprehensive set of disaster recovery tools that allow businesses to replicate their critical systems to the cloud, switch over to those replicas within minutes of a failure, and run their operations from Azure until the primary environment is restored. For UK businesses, Azure's UK South and UK West data centres provide locally hosted disaster recovery that satisfies data residency requirements under UK GDPR.
This guide explains how Azure disaster recovery works, what it costs, how to plan and implement it, and why it is rapidly becoming the standard approach for UK businesses of all sizes.
Understanding Recovery Objectives
Before implementing any disaster recovery solution, you need to define two critical metrics: your Recovery Time Objective (RTO) and your Recovery Point Objective (RPO).
Recovery Time Objective (RTO) is the maximum acceptable time between a disaster occurring and your systems being back online. If your RTO is four hours, you need a disaster recovery solution that can restore operations within four hours of a failure.
Recovery Point Objective (RPO) is the maximum acceptable amount of data loss, measured in time. If your RPO is one hour, your disaster recovery solution must ensure that no more than one hour's worth of data is lost in a disaster — meaning your systems must be replicated at least once every hour.
These two metrics drive every aspect of your disaster recovery design, from the technology you use to the cost you pay. Tighter objectives — shorter RTO and RPO — require more sophisticated (and more expensive) solutions. The key is to set objectives that reflect the actual business impact of downtime and data loss, rather than defaulting to either "instant recovery" (which may be unnecessarily expensive) or "we'll figure it out when it happens" (which may be catastrophically inadequate).
Work with your business stakeholders — not just IT — to determine appropriate RTO and RPO values. Ask: "If this system went down, how long could we operate without it before the impact becomes unacceptable?" and "How much data could we afford to lose?" Different systems will have different answers, and your DR plan should reflect this. Your email system may need a 1-hour RTO, while your marketing website might tolerate 24 hours.
Azure Site Recovery: The Core Service
Azure Site Recovery (ASR) is Microsoft's primary disaster recovery service. It continuously replicates your on-premise servers — or servers running in another cloud — to Microsoft Azure. When a disaster strikes, you can fail over to the Azure replicas with a single click, and your systems come back online running in Azure's data centres.
How Azure Site Recovery Works
ASR works by installing a replication agent on each protected server. This agent continuously replicates data changes to Azure Storage, maintaining a near-real-time copy of the server in the cloud. The replication is asynchronous, meaning it does not impact the performance of your production servers, and it captures changes at the block level for efficiency.
When you need to fail over — whether due to a real disaster or a planned maintenance window — ASR creates virtual machines in Azure from the replicated data, applies the most recent replication data to bring them up to date, and starts them in the network configuration you have predefined. The entire process typically takes between 15 and 30 minutes, depending on the number and size of the servers involved.
Once the primary site is restored, you can fail back — replicating data from Azure back to your on-premise environment and switching operations back to the original infrastructure. This bidirectional capability means Azure DR is not a one-way trip; it is a complete business continuity solution.
What Can ASR Protect?
Azure Site Recovery supports a wide range of source environments, including Windows Server physical and virtual machines, Linux servers (major distributions), VMware virtual machines, Hyper-V virtual machines, and Azure VMs (for region-to-region DR). This flexibility means it can protect virtually any server workload a UK business is likely to run, regardless of the underlying virtualisation platform.
Azure Disaster Recovery Costs
One of the key advantages of Azure-based disaster recovery over traditional approaches is its cost model. Traditional DR requires you to maintain a secondary site with duplicate hardware — servers, storage, networking — sitting idle and waiting for a disaster that may never come. This typically costs 60 to 100 per cent of your primary infrastructure investment, making it prohibitively expensive for many SMEs.
Azure DR, by contrast, charges primarily for storage (to hold the replicated data) and a per-server licence fee. You only pay for compute resources (virtual machines) when you actually fail over. This means your ongoing DR costs are a fraction of what a traditional secondary site would cost.
| Cost Component | Azure DR | Traditional Secondary Site |
|---|---|---|
| Per server/month (replication) | £19 per instance | N/A |
| Storage (per GB/month) | £0.02 - £0.05 | Included in hardware cost |
| Compute (during failover only) | Standard Azure VM rates | Duplicate hardware 24/7 |
| Typical cost for 5 servers | £150 - £300/month | £1,500 - £3,000/month |
| Typical cost for 20 servers | £500 - £1,200/month | £5,000 - £10,000/month |
Planning Your Azure DR Implementation
Step 1: Business Impact Analysis
Identify your critical business systems, determine the impact of their unavailability over time, and set RTO and RPO targets for each. Not every system needs the same level of protection — prioritise based on actual business impact.
Step 2: Network Design
Plan how your failed-over Azure environment will connect to your users. Options include site-to-site VPN, ExpressRoute, and Azure Virtual WAN. You also need to plan DNS changes to redirect users to the Azure environment during failover.
Step 3: Replication Configuration
Configure Azure Site Recovery for each protected server, specifying the source and target regions, replication frequency, retention policies, and recovery plans that define the order in which servers are brought online during failover.
Step 4: Testing
This is the step that separates a real disaster recovery plan from a theoretical one. Azure Site Recovery provides a test failover capability that allows you to spin up your replicated servers in an isolated network, verify that they work correctly, and then clean up the test environment — all without impacting your production systems or your replication. You should test your DR plan at least quarterly, and more frequently after any significant changes to your infrastructure.
Azure DR vs Alternative Approaches
Azure Disaster Recovery
- Pay-as-you-go model — no idle hardware costs
- UK data centres for data residency compliance
- Automated failover with recovery plans
- Built-in test failover capability
- Supports mixed environments (VMware, Hyper-V, physical)
- Scales instantly — no capacity planning for DR site
- Microsoft-backed 99.99% SLA
Traditional Secondary Site
- High capital cost for duplicate hardware
- Ongoing maintenance of idle infrastructure
- Manual failover processes prone to human error
- Testing disrupts the DR site
- Capacity constrained by physical hardware purchased
- May require separate premises or colocation contract
- Hardware refresh cycle adds recurring cost
Compliance and Data Residency
For UK businesses subject to UK GDPR, the data residency question is important. Azure's UK South (London) and UK West (Cardiff) regions allow you to keep both your primary data and your disaster recovery replicas within the United Kingdom, satisfying data residency requirements without needing to transfer personal data outside the UK.
If your business holds Cyber Essentials certification, your Azure DR environment should be included within the scope of your assessment. This means ensuring that the Azure resources are configured in accordance with Cyber Essentials controls — appropriate access control, patching, firewall configuration, and secure authentication.
Ready to Implement Azure Disaster Recovery?
Cloudswitched designs, implements, and manages Azure disaster recovery solutions for UK businesses. From initial business impact analysis through to ongoing monitoring and regular DR testing, we ensure your business can recover quickly from any disruption.
GET IN TOUCH
CloudSwitched
Centrally located in London, Shoreditch, we offer a range of IT services and solutions to small/medium sized companies.