Keyfax Cloud

Where is my data located?

All Keyfax Cloud customers are located within the UK South & UK West Microsoft Azure regions.

What uptime guarantee is provided?

Please see Uptime Guarantee

How is my data backed up?

Please see the "Back Ups" section within Business Continuity

What back up checks do you have in place?

During set-up all configured automated back-ups are checked at least once to ensure these are working as expected. To check the on-going reliability of configured automated back-ups Omfax Systems strive to perform a manual review & verification of back-ups in place at least once per year. There is no formal process in place within Omfax Systems currently to ensure this work is performed and as such checks may vary based on availability. Please Contact Us should you have any concerns around back-up reliability.

What recovery time objective (RTO) is provided?

Please see the "Recovery Time Objective" section within Business Continuity

Is data encrypted at rest?

Yes. Omfax Systems leverage Azure Storage encryption to encrypt application files and customer configurations at rest for all Keyfax Cloud customers.

Is data encrypted in transit?

Yes. As part of your Keyfax Cloud service Omfax Systems will provide a TLS certificate to ensure access to your Keyfax web application is encrypted. Additionally, the Keyfax web application also communicates securely with your Keyfax database using an encrypted connection.

How can Omfax Systems support my organisations GDPR accountability?

Omfax Systems can provide guidance & documentation upon request to support customer’s GDPR requirements. Please Contact Us

Who has access to my Keyfax Cloud data?

Access to Keyfax Cloud customer data is strictly controlled and vetted by senior Omfax System employees. Keyfax Cloud customer data will always remain within Microsoft Azure data centres and offsite back-ups for any purpose are strictly prohibited.

How will our customers’ data be separated and secured within your systems?

Web Application

All Keyfax Cloud customers have their own unique Keyfax installation isolated from other Keyfax Cloud customers. Although Keyfax Cloud customers do share the same hardware resources Omfax Systems monitor usage and do over provision to ensure limits are not reached. The Keyfax web application is installed in such a way to isolate this from other Keyfax Cloud customers. This includes a unique IIS web site & application pool for each Keyfax Cloud customer as well as specific users & permissions to ensure only your Keyfax web application can only access your Keyfax data.

Database

All Keyfax Cloud customers have their own unique & isolated SQL Azure database with unique users & roles to control & isolate access. Access to Keyfax Cloud SQL Azure databasess is restricted through the use of secure logins and whitelisted IP addresses.

What Standards & Compliance offerings can Omfax Systems provide?

As all Keyfax Cloud customers are hosted upon the Microsoft Azure platform Omfax Systems can offer customers GDPR, UK Cyber Essentials Plus, UK G-Cloud & UK PASF compliance. Omfax Systems Ltd are also a registered vendor within the UK Goverment Cloud or G-Cloud marketplace and have attained UK Cyber Essentials certification.