Kwik Vault (DMS)

Kwik Vault is Think360's unified enterprise document and knowledge platform for banking operations. It centralizes document lifecycle management: ingest from source systems or the web UI, classify by department and category, version by business key, route through approval workflows, index for federated search, and record an append-only audit trail.

Each institution runs on a dedicated Deployment Instance isolated from other organizations.

Overview

Banks store documents across branch files, shared drives, email chains, and standalone KYC systems. Staff spend time locating copies, version conflicts arise, and audit trails are fragmented. Kwik Vault provides a single governed repository where every department pushes documents through a common interface, staff search by customer or document attributes, approvals are tracked, and every access is auditable.

Kwik Vault integrates natively with KwikID VKYC, Document Service, and manual branch uploads without replacing transactional document generation systems already in production.

Key Features

• Centralized ingest: Push documents via REST API (vkyc, doc_service, branch_scan) or manual web upload with metadata.
• Versioning by Business Key: Re-ingest with the same source_tag + external_id creates a new version; DMS ID uniquely identifies each document record.
• Department-scoped approvals: New versions enter pending state; approvers act only within their department.
• Federated search: Find documents by CIF, PAN, account number, DMS ID, or file name with permission-aware results.
• Append-only audit: Every read, write, approval, and download is logged in a tamper-evident audit trail.
• Enterprise identity: Corporate SSO for portal users; integrators use service users and API keys.
• Sovereign AI: Natural-language Ask over authorized documents with pluggable LLM providers.
• Encryption at rest and in transit: AES-256 blob encryption, TLS 1.2+ APIs, and KMS-backed key management.
• Backup and DR: DC/DR with department-wise backup policies and documented RTO/RPO targets.
• Storage lifecycle (ILM): Hot, warm, and cold tiers for cost-optimized retention similar to Elasticsearch ILM.
• Soft delete and recovery: Configurable trash retention with super-admin restore before permanent purge.
• API gateway integration: Single HTTPS entry point for push (ingest) and pull (download) with sub-second search latency.

Portal Modules

The Vault Admin web UI exposes these modules:

Benefits

• Compliance: Unified audit trail aligned with banking regulatory and examination expectations.
• Operational efficiency: Sub-second metadata search replaces 15–20 minute manual document hunts.
• Governance: Department-scoped RBAC, approval workflows, and tenant isolation for restricted corpora.
• Integration-ready: OpenAPI 3.0 REST API; same ingest contract for VKYC, Document Service, and branch scans.

Next Steps

• Architecture: platform design, services, and deployment topology
• Security and Compliance: encryption at rest and in transit
• Backup and Disaster Recovery: DC/DR and department backup policies
• Storage and Lifecycle: ILM tiers, retention, and storage monitoring
• Operations Guide: CR process, department onboarding, and CS product note
• Login: corporate SSO and domain-based sign-in
• Upload: manual ingest and API integration
• Documents: browse, preview, and manage documents
• Ask: AI-powered natural-language discovery
• Approvals: department approval workflows
• Audit: activity monitoring and CSV export
• Configuration: tenant metadata schema and ingest rules
• Integration APIs: REST endpoints and ingest contract