A security administrator is reviewing the company’s data backup plan. The plan implements nightly offsite data
replication to a third party company. Which of the following documents specifies how much data can be stored
offsite, and how quickly the data can be retrieved by the company from the third party?