Checklist

Self-hosting readiness: are you set?

Self-hosting rarely fails because of the software — usually because operations were never settled. This list answers the questions that must be answered before migrating.

1. Need: what should run — and for whom?

  • The applications are named (e.g. Nextcloud, Vaultwarden, Authentik) — not just “away from Microsoft”
  • User count and teams are clear: who works with it daily?
  • The data is inventoried: what must migrate, what can go?
  • Export from the old systems is verified — you can get at your data

2. Operations: who takes care of it — really?

  • The operating model is decided: run it yourselves, managed (provider), or a ready-made SaaS package
  • Updates and security patches have a plan with an owner
  • Backups including restore tests are planned in — from day one, not “later”
  • Monitoring is in place: someone notices before the users do
  • Holiday and absence cover is settled (the one-person trap)

3. Safeguards: GDPR and exit

  • The hosting location is chosen: your own hardware or an EU datacenter
  • A data processing agreement (DPA) with the hoster/provider is in place
  • An access and permissions concept is defined (who may do what, SSO planned?)
  • The exit strategy stands: open formats, export at any time — from the new setup too
  • A realistic budget for operations (not just setup) is accepted

If block 2 keeps coming up “actually nobody”: that is exactly what managed operations is for — you keep data sovereignty without the admin routine.

Newsletter

Practical notes on self-hosting, digital sovereignty, and IT security for SMEs — about once a month, no spam, unsubscribe anytime.

Block 2 makes you nervous?

Then let us talk about managed operations — the first call is free, ready-made packages are on cloudsourced.de.