Recovery Point Objective (RPO) is a business continuity metric that quantifies the maximum acceptable amount of data loss an organization can tolerate following a disruptive event or system failure. It is measured in time, representing the duration of data that might be lost between the last successful data backup/recovery point and the moment of failure.
Essentially, RPO answers the question: "Up to what point in time must data be recoverable for the business to resume operations without unacceptable consequences?"
It's important to distinguish RPO from RTO:
While related, they are distinct. A system might have a very low RPO (minimal data loss) but a higher RTO (takes longer to recover), or vice-versa.
For RisingWave, RPO is primarily tied to its checkpointing mechanism within the Hummock state store:
Achieving a desired RPO is a critical aspect of designing fault-tolerant and resilient streaming data pipelines.