Method and system for automatic data protection for limited access cloud data

What is claimed is: 1 . A method for performing data protection of limited access cloud data, comprising: identifying, by a data manager, a protection policy assignment event; in response to identifying the protection policy assignment event: identifying subscriptions associated with an on-premises cloud service provider, wherein the on-premises cloud services provider operates at a single, physical location, wherein each subscription comprises a cloud service, and wherein the cloud service is provided using cloud resources of the on-premises cloud service provider; identifying services associated with each subscription, wherein the services are executed using the cloud resources of the on-premises cloud service provider; assigning protection policy types to the subscriptions based on the associated services; and generating an incremental approximation backup of limited access cloud data associated with the services and based on the protection policy types by: obtaining object data and previous object metadata from the limited access cloud data; generating slices of the object data; generating current checksums and current object metadata associated with each slice; selecting a first slice of the slices; making a first determination that a first current checksum of the current checksums and a first previous checksum associated with the first slice do not match; in response to the first determination: storing the first slice in a backup storage; and updating a first portion of the current object metadata associated with the first slice; and after updating the first portion of the previous object metadata associated with the first slice: selecting a second slice of the slices; making a second determination that a second current checksum of the current checksums and a second previous checksum associated with the second slice match; in response to the second determination:  copying a previous slice associated with the second slice from a previous backup to the backup storage;  updating a second portion of the current object metadata associated with the second slice;  making a third determination that there are no additional slices; and storing the current object metadata with the first and second slice to generate in the backup storage to generate an incremental backup. 2 . The method of claim 1 , wherein the subscriptions are associated with limited access cloud data stored on the cloud resources. 3 . The method of claim 1 , wherein assigning the protection policy type to the subscriptions based on the associated services comprises: identifying a first subscription of the subscriptions using a user information repository; and identifying first services of the first subscription using the user information; assigning, a first protection policy type to the first subscription based on the first services; identifying second subscription of the subscriptions using a user information repository; identifying second services of the second subscription using the user information; and assigning, a second protection policy type to the second subscription based on the second services. 4 . The method of claim 3 , wherein: the first protection policy type specifies first data protection requirements; and the second protection policy type specifies second data protection requirements. 5 . The method of claim 4 , wherein the first data protection requirements comprise: first recovery point objectives, first target storages, first backup schedules, and first retention periods. 6 . The method of claim 4 , wherein the second data protection requirements comprise: second recovery point objectives, second target storages, second backup schedules, and second retention periods. 7 . The method of claim 4 , wherein the first data protection requirements and the second data protection requirements are configurable by a user of the data manager. 8 . A non-transitory computer readable medium comprising computer readable program code, which when executed by a computer processor enables the computer processor to perform a method for performing data protection of limited access cloud data, the method comprising: identifying, by a data manager, a protection policy assignment event; in response to identifying the protection policy assignment event: identifying subscriptions associated with an on-premises cloud service provider, wherein the on-premises cloud services provider operates at a single, physical location, wherein each subscription comprises a cloud service, and wherein the cloud service is provided using cloud resources of the on-premises cloud service provider; identifying services associated with each subscription, wherein the services are executed using the cloud resources of the on-premises cloud service provider; assigning protection policy types to the subscriptions based on the associated services; and generating an incremental approximation backup of limited access cloud data associated with the services and based on the protection policy types by: obtaining object data and previous object metadata from the limited access cloud data; generating slices of the object data; generating current checksums and current object metadata associated with each slice; selecting a first slice of the slices; making a first determination that a first current checksum of the current checksums and a first previous checksum associated with the first slice do not match; in response to the first determination: storing the first slice in a backup storage; and updating a first portion of the current object metadata associated with the first slice; and after updating the first portion of the previous object metadata associated with the first slice: selecting a second slice of the slices; making a second determination that a second current checksum of the current checksums and a second previous checksum associated with the second slice match; in response to the second determination:  copying a previous slice associated with the second slice from a previous backup to the backup storage;  updating a second portion of the current object metadata associated with the second slice;  making a third determination that there are no additional slices; and  storing the current object metadata with the first and second slice to generate in the backup storage to generate an incremental backup. 9 . The non-transitory computer readable medium of claim 8 , wherein the subscriptions are associated with limited access cloud data stored on the cloud resources. 10 . The non-transitory computer readable medium of claim 8 , wherein assigning the protection policy type to the subscriptions based on the associated services comprises: identifying a first subscription of the subscriptions using a user information repository; and identifying first services of the first subscription using the user information; assigning, a first protection policy type to the first subscription based on the first services; identifying second subscription of the subscriptions using a user information repository; identifying second services of the second subscription using the user information; and assigning, a second protection policy type to the second subscription based on the second services. 11 . The non-transitory computer readable medium of claim 10 , wherein: the first protection policy type specifies first data protection requirements; and the second protection policy type specifies second data protection requirements. 12 . The non-transitory computer readable medium of claim 11 , wherein the first data p