What is SKS?
While many other vendors store their keys in AWS where their services are hosted, we keep root encryption keys outside of AWS infrastructure entirely to ensure control, transparency and protection for our customers’ data. Instead they are hosted externally via Complior who are a European provider specialising in high-security key management.
With SKS, all Scrive customers automatically benefit from enhanced security, no action is required on your side.
Our continued commitment to security & compliance
Security threats are evolving, and so are expectations for how customer data should be protected, especially in a European legal environment shaped by GDPR, eIDAS and Schrems II.
By externalising our root encryption keys:
We gain greater control. Scrive, not AWS, controls the keys to encrypted data, adding another layer of security for your important documents and data.
We reduce jurisdictional risk. Because AWS no longer has access to the keys, the risk of unauthorised access, for example through US legal demands (such as the CLOUD Act), is significantly lowered.
We increase transparency. Every encryption or decryption event requires an API request to the external key management system, allowing real-time monitoring and the ability to block decryption if necessary.
Part of Scrive’s Europe-first approach
SKS is a natural extension of Scrive’s commitment to keeping customer data secure, private and under European governance.
It supports our larger “Europe-first” strategy, ensuring that even when cloud infrastructure like AWS is used, your data remains protected against unauthorised access and international legal exposure.
Learn more
If you have any questions about SKS, how your data is protected, or would like to discuss compliance requirements for your organisation, contact our team here or if you are looking for EU-only hosting click here to learn about Scrive Extended Compliance.
