How To Back Up Microsoft Teams Files And Chats

How to Back Up Microsoft Teams Files and Chats

Microsoft Teams stores files in SharePoint Online and OneDrive for Business. Chat messages are stored in Exchange Online mailboxes and Azure-based compliance storage. Native Microsoft 365 tools provide retention and eDiscovery — but not point-in-time restore. For true enterprise backup, third-party solutions like Veeam, AvePoint, or Commvault are recommended alongside native tools.

Key facts

• Teams channel files are stored in the team's SharePoint Online document library — one subfolder per channel.
• 1:1 and group chat files are stored in the sender's OneDrive for Business in a "Microsoft Teams Chat Files" folder.
• Channel messages are mirrored to the group mailbox in Exchange Online for compliance purposes.
• 1:1 and group chat messages are stored in each participant's Exchange Online mailbox in a hidden folder.
• Meeting recordings are stored in OneDrive (non-channel meetings) or SharePoint (channel meetings).
• Without a retention policy, deleted Teams messages are held approximately 21 days before permanent deletion.
• Basic Teams retention policies require Microsoft 365 E3 or E5 licenses. Advanced features require E5 Compliance.

Understanding where Teams data is stored

Before implementing a backup strategy, you need to understand Teams' distributed storage architecture. Different content types are stored in different Microsoft 365 services — each with its own retention and recovery capabilities.

• Channel files — Stored in the team's SharePoint Online document library under a dedicated folder for each channel.
• Chat files (1:1 and group chats) — Stored in the sender's OneDrive for Business in a "Microsoft Teams Chat Files" folder.
• Channel messages — Stored in Azure-based chat service and mirrored to the group mailbox for compliance.
• 1:1 and group chat messages — Stored in each participant's Exchange Online mailbox in a hidden folder.
• Meeting recordings — Stored in OneDrive for Business (non-channel meetings) or SharePoint Online (channel meetings).
• Wiki and OneNote tabs — Stored in SharePoint Online within the team site.

Native Microsoft 365 retention policies

Microsoft 365 provides built-in retention policies through the Microsoft Purview compliance portal. These preserve Teams data for specified periods. They are the first line of defense for enterprise data protection — but not a backup replacement.

Configuring retention for Teams

1. Navigate to the Microsoft Purview compliance portal at compliance.microsoft.com.
2. Go to Data lifecycle management > Retention policies.
3. Click New retention policy and name it (e.g., "Teams Chat 7-Year Retention").
4. Select Teams channel messages and/or Teams chats and Copilot interactions as locations.
5. Set the retention period (e.g., 7 years for regulated industries) and choose whether to retain, delete, or retain then delete.
6. Review and submit. It may take up to 24 hours to propagate.

Advanced retention options include retention locks (for SEC 17a-4 and FINRA compliance), adaptive scopes (target retention to specific departments or user attributes), and label-based retention for granular control of specific files or messages.

eDiscovery for Teams content recovery

Microsoft Purview eDiscovery lets you search, hold, and export Teams content for legal, compliance, or recovery purposes. It is particularly useful when you need to retrieve specific conversations or files.

• Content Search — Search across Teams chats, channels, and files using keywords, date ranges, and participant filters.
• eDiscovery (Standard) — Create cases with legal holds that preserve Teams data even if users delete content.
• eDiscovery (Premium) — Advanced analytics, conversation threading, and near-duplicate detection for large-scale investigations.
• Export options — Export search results as PST files, individual messages, or in native format for legal review.

Third-party backup solutions for Teams

Microsoft's native tools provide retention and compliance capabilities — but not true backup. For point-in-time restore, granular recovery, and independent storage, third-party solutions are recommended.

• Veeam Backup for Microsoft 365 — Backs up Teams channels, chats, files, and SharePoint sites. Supports granular restore: search by date, participant, or keyword, then restore individual messages or entire channels to the original location or an alternate destination.
• AvePoint Cloud Backup — SaaS-based backup with automated scheduling, geo-redundant storage, and compliance reporting. Also supports granular search and restore.
• Commvault Metallic — Enterprise backup-as-a-service with unlimited storage and broad Microsoft 365 coverage.
• Druva inSync — Cloud-native backup for Teams, Exchange, OneDrive, and SharePoint with legal hold integration.
• Microsoft 365 Backup (Preview) — Microsoft's own first-party backup service for Exchange, OneDrive, and SharePoint with fast restore at scale.

Best practices for enterprise Teams backup

• Follow the 3-2-1 rule — Maintain three copies of data on two different media types with one stored offsite or in a separate cloud region.
• Define RPO and RTO — Set Recovery Point Objectives (how much data loss is acceptable) and Recovery Time Objectives (how fast you need to restore) for Teams content.
• Back up all data types — Make sure your solution covers channel messages, chat messages, files, meeting recordings, Planner tasks, and OneNote notebooks.
• Test restores regularly — Conduct quarterly restore tests to verify backup integrity and measure actual recovery times.
• Document compliance mapping — Map retention policies to specific regulatory requirements: HIPAA (6 years), SEC (7 years), SOX (7 years).
• Monitor backup health — Configure alerts for backup failures, storage utilization thresholds, and policy violations.

Compliance mapping for Teams data

Different regulatory frameworks require different retention periods for Teams data.

• HIPAA — 6 years for protected health information
• SEC Rule 17a-4 — 3–7 years for broker-dealer records (with WORM-compliant storage)
• FINRA — 3–6 years depending on record type
• SOX — 7 years for financial records
• GDPR — Retention must match a specified lawful basis; erasure rights apply

Why choose EPC Group for Teams data protection

EPC Group has over 29 years of experience designing enterprise data protection strategies across the Microsoft ecosystem. We have implemented Teams backup and compliance solutions for Fortune 500 organizations in healthcare, financial services, and government.

Our founder, Errin O'Connor, has authored four bestselling Microsoft Press books and leads a team specializing in regulatory compliance and data governance.

• Microsoft Purview retention and eDiscovery configuration for regulated industries
• Third-party backup tool selection, deployment, and optimization
• HIPAA, SOC 2, GDPR, and FedRAMP compliance mapping for Teams data
• Disaster recovery planning and testing for Microsoft 365 workloads
• Data Loss Prevention (DLP) policy design and implementation

Frequently asked questions

Is Microsoft 365 a backup solution?

No. Microsoft provides infrastructure-level redundancy and geo-replication for Microsoft 365 data — but this is not a user-accessible backup.

Retention policies preserve data from deletion, but they do not provide point-in-time restore or protection against ransomware encryption. A dedicated third-party backup solution is recommended for true data protection.

What happens to deleted Teams messages without a retention policy?

Without a retention policy, deleted Teams messages are held for approximately 21 days before permanent deletion. With a retention policy configured, messages can be preserved for the full retention period — up to indefinite — regardless of user deletion actions.

Do retention policies apply to private channels?

Yes. Retention policies apply to private channels. Most third-party backup tools also support private channel backup. Private channel files are stored in a separate SharePoint site collection from the parent team — they require the same backup coverage as standard channels.

What licenses are required for Teams retention policies?

Basic retention policies for Teams require at least a Microsoft 365 E3 or E5 license. Advanced features — adaptive scopes, regulatory record locks, and eDiscovery (Premium) — require Microsoft 365 E5 or the E5 Compliance add-on.

Can I restore specific messages with third-party backup tools?

Yes. With Veeam or AvePoint, you can search by date, participant, or keyword and restore individual messages or entire channels to the original location or an alternate destination.

Native Microsoft eDiscovery Content Search also lets you find and export specific conversations — but it is designed for legal review, not day-to-day restore operations.

Protect your Teams data

Talk to an EPC Group Microsoft 365 architect about designing a comprehensive backup and retention strategy for your Teams environment. Call (888) 381-9725 or request a 30-minute discovery call.