Learn the 3-2-1 backup rule in plain English and set up a beginner-friendly plan using an external drive plus an offsite copy (usually the cloud). Includes simple setups for Windows, Mac, iPhone, and Android, plus common mistakes to avoid.
- 3-2-1 backup rule “in plain English”
- What’s “two different media” for beginners?
- Simple 3-2-1 setups (pick one)
- Step-by-step: Set up a beginner 3-2-1 plan in about an hour
- Windows: Use File History for a local (external-drive) backup
- Mac: Use Time Machine for a local (external-drive) backup
- iPhone/iPad: Understand what iCloud Backup does (and what it doesn’t)
- Android: Use Google phone backup (and know it’s not the same as “all files”)
- How to verify your 3-2-1 plan is actually working
- Common beginner mistakes (and quick fixes)
- Beginner checklist: a solid 3-2-1 setup
- FAQ: Common Questions
- References
3-2-1 backup rule “in plain English”
The backup rule ensures you keep multiple copies of your data to protect against common disasters like accidental deletion, device theft, drive failure, fire/flood, and ransomware. The rule is simple but effective, and you can implement it without needing enterprise backup tools. Most of the time, systems run into problems from errors in file moving and copying, not storage issues.
What is the 3-2-1 backup rule (in plain English)? The classic 3-2-1 rule is simple: keep 3 copies of your data (your working copy + 2 backups), on 2 different kinds of storage (“media”), and 1 copy offsite (somewhere that’s not your house or office).
- 3 copies: your laptop, the external drive copy, plus a cloud backup.
- 2 storage types: an internal SSD and an external USB hard drive (or cloud storage). “The point is: do not keep all copies on [the same] “kind” of system that can fail the same way.”
- 1 copy offsite: could be cloud backup, or a second drive, “such as a small external you can ship to your friend’s place… and regularly update.”
What’s “two different media” for beginners?
For home users, “media” doesn’t need to mean exotic stuff, just that your backups don’t all live in the same place on the same type of system. A common beginner-friendly pairing might be external drive + cloud backup (different location, different provider, different failure modes).
- Good “two media” examples: (1) external USB drive + (2) cloud backup
- Also good: (1) external HDD + (2) a second external SSD stored elsewhere (updated monthly)
- Less ideal: (1) two partitions on the same internal drive (still one physical device)
- Also risky: “My backup is on a drive that’s always plugged in.” (Ransomware can reach it.)
Simple 3-2-1 setups (pick one)
| Scenario | Copy #1 (working) | Copy #2 (local backup) | Copy #3 (offsite backup) | Why it’s simple |
|---|---|---|---|---|
| Windows laptop/desktop | Your PC | External USB drive using File History | Cloud backup (backup service or synced critical folders) | Mostly automatic once set up |
| Mac laptop/desktop | Your Mac | External USB drive using Time Machine | Cloud backup (backup service or synced critical folders) | Time Machine handles versions well |
| iPhone household | Your iPhone | Encrypted backup to a Mac/PC (optional local) | iCloud Backup (offsite) | Restores are straightforward when upgrading phones |
| Android household | Your Android phone | Optional: copy DCIM/Documents to a computer/external drive monthly | Google backup/Google One phone backup (offsite) | Cloud-first, low maintenance |
| Photo/video heavy | Computer + photo library | Large external drive (or NAS) with versioned backups | Cloud backup for library (or rotate a second drive offsite) | Protects against drive failure + disasters |
Step-by-step: Set up a beginner 3-2-1 plan in about an hour
- Step 1 — Decide what you’re protecting: usually Documents/Desktop, Photos, and any work/school folders. Add password manager vault exports only if you understand the risks (many people should rely on the password manager’s own sync + recovery options).
- Step 2 — Choose your local backup target: an external USB drive is the easiest. As a rule of thumb, buy a drive that’s at least as big as the data you care about—often 2× your computer’s internal storage is a comfortable starting point for versioned backups.
- Step 3 — Turn on automatic local backups: use the built-in tool on your platform (Windows File History or macOS Time Machine).
- Step 4 — Add an offsite copy: easiest is cloud backup. Alternative is a second external drive you update on a schedule and store somewhere else.
- Step 5 — Protect backups from ransomware: if possible, keep one backup offline/air-gapped (not always connected) and use encryption where available. Also test restores on a schedule.
- Step 6 — Prove it works: restore one test folder (or a few files) from your local backup, and verify you can sign in and locate your cloud backup copy.
Windows: Use File History for a local (external-drive) backup
Microsoft’s File History automatically backs up personal files (including common libraries like Documents and Pictures) and gives you restore points for undoing careless edits or deletes.
- Plug in an external drive dedicated to backups (or at least used primarily for backups).
- Turn on File History and make sure it’s collecting folders you care about.
- Try do one manual test restore of a file so you’re comfortable knowing how it works.
- If you’re still on Windows 10: Microsoft says support for Windows 10 ended October 14 2025. Have a plan for getting out of your too-vulnerable Windows 10 your backups are protecting.
Mac: Use Time Machine for a local (external-drive) backup
Apple’s Time Machine can back up your Mac (including apps, photos, email, documents, and more) automatically onto an external storage device, keeping an archive of versions, so you can go back in time to a date when your Mac was humming along. Apple also recommends getting a backup disk that’s at least twice the storage capacity of your Mac for best results.
- Plug in the external drive, let it complete the first backup (could take a while).
- Check that you can enter Time Machine and recover a single file.
- Optionally exclude giant, replaceable folders (game installs, for example) so your backups stay quick and useful.
iPhone/iPad: Understand what iCloud Backup does (and what it doesn’t)
As Apple explains it: syncing is different than backing up. Some data is “synced” and shared through iCloud services, while iCloud Backup is more like a snapshot of things that aren’t already syncing. In practice, this means check if you are syncing your photos, notes, messages, etc. or backing them up—and that makes a difference to what’s actually protected.
Android: Use Google phone backup (and know it’s not the same as “all files”)
Google encourages you to use Google phone backup (separate from other backups) features through its Google One experience, with backup features even if you aren’t a paid-up member. What ends up getting backed up can include device data/settings—so you should verify on your phone what settings/categories are enabled and when the last backup ran.
- Search in your phone’s Settings for “Backup” to find the built-in page (the exact steps to get there varies by manufacturer).
- Confirm what Google account is used for Backup: many people accidentally back up to an old account.
- If you keep important downloads/attachments locally, consider a monthly copy to your computer or external drive (that’s your second “media”).
CISA’s ransomware guidance urges maintaining offline, encrypted backups of critical data and regularly testing for availability and integrity—because ransomware might try to delete or encrypt accessible backups. That’s why “external drive that’s always connected” is better than nothing, but not the end game.
- Easy win: unplug your backup drive when not in use (or on a schedule where it’s only connected during backups).
- Better: rotate two drives, keeping one at home and the other offsite (updated weekly/monthly).
- Also helpful: enable backup encryption when available (especially for laptops and portable drives).
- Non-negotiable: test restores. A backup you can’t restore is just a random pile of files.
How to verify your 3-2-1 plan is actually working
- Check those dates. Verify timestamp of most recent local and offsite backup.
- Restore drill 5 minutes. Restore a small folder (or 3–5 files) to some different spot and open it.
- Spot-check coverage. Make sure your really important folders are in there (Photos library, Desktop, key project-folder, etc).
- Credential check. Make sure you can sign in to that cloud account of your offsite copy (and that your recovery methods are up to date).
- Write it down. Create a super short “restore note” (where backups are, where passwords/keys are, and what you did that one time to test).
Common beginner mistakes (and quick fixes)
- “My files are in a synced folder, so I’m backed up.” Syncing is good, but it can also sync deletions. Add versioned backups (an external drive and/or a backup service).
- “I back up everything… sometimes.” Automate the local backup then schedule the offsite piece.
- “One big drive is enough.” 3-2-1 is specifically about mitigating any one point of failure. Add an offsite copy.
- “I’ve never tested a restore.” Do a tiny restore drill today, then set a calendar reminder to do it monthly.
- “My backup drive lives right next to my laptop.” Disasters and (thieves) can take both – move one offsite.
Beginner checklist: a solid 3-2-1 setup
- I can name my “most important data” (photos, documents, work/school).
- I have a local automatic backup (Time Machine or File History) to an external drive.
- I have an offsite copy (cloud backup or a second drive stored elsewhere).
- At least one backup is protected from ransomware (offline/air-gapped or otherwise not always reachable).
- I’ve tested restoring files within the last 30 days.
FAQ: Common Questions
Do I really need both an external drive and cloud backup?
If you want to follow 3-2-1 in a simple way, yes—because each covers the other’s weaknesses. The external drive gives fast restores and version history. The cloud gives offsite protection (fire/theft) and helps if your local drive is damaged too.
Is cloud storage the same as cloud backup?
Not always. Many cloud storage/sync tools focus on keeping folders in sync across devices, which can also sync deletions and unwanted changes. Cloud backup tools are typically designed for recovery (versioning, retention, and restore workflows).
How often should I back up?
Back up as often as you can’t afford to re-create data. For many people: automatic daily backups (or continuous) for documents, and at least weekly for large photo/video libraries—plus a monthly restore test.
What’s the difference between 3-2-1 and 3-2-1-1-0?
3-2-1 is the classic rule. Some vendors extend it (for example, adding an extra copy that’s offline/immutable and emphasizing verified restores). For beginners, get 3-2-1 working first, then improve your ransomware resistance and testing habits.
References
- Backblaze: The 3-2-1 Backup Strategy
- CISA: #StopRansomware Guide (backups, testing, offline backups)
- Veeam: 3-2-1 Backup Rule Explained
- Apple Support: Back up your Mac with Time Machine
- Microsoft Support: Backup and restore with File History
- Apple Support: What does iCloud back up?
- Apple Support: Backup methods for iPhone or iPad
- Google: Phone backup and a new storage manager in the Google One app
- Veeam Best Practices: 3-2-1-1-0 Rule (Microsoft 365 context)