KMS Data Policy

KMS is predominantly a residential access control system provider, based in High Wycombe, Buckinghamshire. The Cloud based systems we sell are administered using our SimpleKey Web 4 application. KMS host the Client’s database on the Amazon Web Service S3 which is accessed via a secure internet link.

The database belongs to the Client and does not contain resident names or contact details, resident tokens are only identified by colour, flat number and block. It is not possible for KMS to associate any particular residents token with a particular resident or user.

System transactions are recorded, but due the fact that only entry data is collected with a “push to exit” button being used to leave the premises, it is not possible to ascertain particular token user movements.

SimpleKey Web 4 can be accessed remotely from any web enabled device via secure user names and passwords. The client has control of who can access the system and with which administration rights, having control of user names and passwords.

All data in the access control database is owned by the Client and can be accessed at any time.

The Databases can be backed up, and moved to a secure FTP server on a schedule decided by the Client. This secure FTP server can then be accessed at any time.

The KMS Client databases are hosted on the AWS (Amazon S3), this provides a highly durable storage infrastructure designed for mission critical and primary data storage. Objects are redundantly stored on multiple devices across multiple facilities within a region, designed to provide a durability of 99.999999999% (11 9s). AWS provides further protection for data retention and archiving through versioning in Amazon S3, AWS multi-factor authentication (AWS MFA), bucket policies, and AWS

Data Processors – KMS customer services, technical support and the KMS directors have the ability to support the client’s staff in the administration of their system. This is normally carried out with KMS viewing the same web page as the client staff and advising were necessary. If the Client requires KMS staff to carry out any operation, then a written instruction is always requested by KMS and no action will be taken until this is received.

No personal resident data is being stored or recorded.

If any employee or contractor working for the client requires a copy of the data we hold on them, they need to put a formal request into

KMS are registered with the Information Commissioners Office for data Protection, registration number ZA109516, and expiry date, 6 April 2018.

For more information or to discuss click here.


Visit Us On TwitterVisit Us On Linkedin