Choosing a lock for an office cabinet is not an “aesthetic” detail or a note added at the end of a specification. It is a decision that affects the real security of documents, working convenience, the circulation of permissions, the organization of keys and codes, and in some environments also compliance with procedures concerning personal data, confidential documentation, or restricted-access zones.
In practice, many organizations make the same mistake: they compare only the price of the cabinet or the label “electronic lock” itself, instead of starting with the question:
Who should have access, how often that access changes, how sensitive the asset is, and how strongly accountability for opening the cabinet needs to be controlled?
If the answer is: “one person, small office, standard documents, low turnover” — a well-chosen cabinet with a key lock is usually enough. However, if we are talking about a law firm, accounting office, HR department, secretariat, executive office, records room, or an area with documents carrying increased responsibility, then the choice of lock becomes very important.
In this guide we show:
- what really differentiates a key lock, combination lock, and electronic lock,
- when each type makes sense in an office, law firm, public institution, and archive,
- what the advantages, disadvantages, and most common traps are,
- which standards and organizational requirements are worth considering in 2026,
- which Metaf product families match each security logic.
Table of contents
- The shortest answer: which lock should you choose?
- What really protects a cabinet: the lock or the entire usage system?
- Key lock – when it is the best choice
- Combination lock – when a code beats a key
- Electronic lock – when it is worth paying more
- Comparison table: key vs combination vs electronic
- Legal requirements and standards in 2026
- How to choose a Metaf cabinet according to security logic
- Metaf models and dimensions table
- Specific cabinet photos as a problem-solving aid
- The most common mistakes when choosing a lock
- FAQ
- Summary and recommendation
The shortest answer: which lock should you choose?
If you want the answer in one paragraph, it looks like this:
- a key lock wins on simplicity, low cost, and predictability where only a small number of people need access and there is no need to manage permissions quickly,
- a combination lock makes sense where you want to eliminate the circulation of keys but still do not need advanced electronics or event logs,
- an electronic lock starts to have a major advantage when more people need access to the cabinet, permissions change frequently, higher organizational control is needed, or you want to reduce the risk associated with copying, losing, and handing over keys.
That does not mean “electronic” is automatically the best choice. In an ordinary, calm office with one key owner, it may simply be more expensive and more complicated than necessary. On the other hand, in an environment with greater responsibility, the phrase “electronic lock” alone is not enough — because then you need to look not only at the lock, but at the entire family of solutions, the level of protection, and the way access is organized.
What really protects a cabinet: the lock or the entire usage system?
The most important thing worth saying bluntly is this: security is not determined by the type of lock alone.
The final result depends at the same time on:
- the construction of the body and doors,
- the rigidity and thickness of components,
- the locking mechanism,
- where the cabinet is placed,
- how many people have access,
- the procedure for issuing keys or codes,
- the way the organization reacts to a lost key or a disclosed code,
- whether the organization actually enforces its own rules at all.
That is why, very often, the more secure option will be:
a good cabinet with a simple lock used within a sensible procedure, rather than a badly chosen cabinet with a “fashionable” electronic lock whose code is known by everyone in the room.
This is exactly why, when requirements are higher, Metaf directs the user not only to product families, but also to paths such as:
It is a good logic: first the type of asset and level of access control, then the model.
Key lock – when it is the best choice
A key lock is the oldest and still a very sensible solution in office cabinets. Not because it is “traditional,” but because in many environments it simply does exactly what is needed — without unnecessary complexity.
When a key lock makes the most sense
A key lock usually wins when:
- the cabinet is used by one person or a very small number of fixed users,
- the document workflow is predictable,
- you do not need an opening history,
- the organization has a simple responsibility system: “this key belongs to this position,”
- you care about low entry cost and simple service,
- the cabinet stands in a room that is itself additionally controlled.
The biggest advantages of a key lock
- simplicity of use,
- no power supply,
- low failure rate,
- easy implementation,
- low purchase cost,
- natural intuitiveness for users.
The biggest disadvantages of a key lock
- risk of losing the key,
- risk of copying the key outside the organization’s control,
- weak scalability with a larger number of users,
- no access trace: you usually do not know who opened the cabinet and when,
- logistical problems when the key circulates between shifts, rooms, or locations.
Where Metaf has natural solutions for this logic
If you need a classic, strong office cabinet for documents, binders, and files, the starting point is the family:
In this family you will find models for offices, law firms, public institutions, and schools, for example:
In practice, this type of cabinet is most often chosen when an organization simply wants to:
- lock documents away outside working hours,
- organize files and binders,
- limit access to authorized people,
- keep the budget reasonable.
Combination lock – when a code beats a key
In offices, the term “combination lock” usually means a lock opened by a code, not by a physical key. Most often these are mechanical or combination solutions where the main benefit is eliminating the problem of key circulation.
When a combination lock makes sense
It is a good solution when:
- several authorized people use the cabinet,
- keys “go missing” too often,
- the organization does not want to duplicate, issue, and collect keys,
- access should be simple but still local,
- users work on-site and do not need an advanced management system.
Main advantages of a combination lock
- no physical circulation of a key,
- faster transfer of access to a new person,
- lower risk of the “who has the key?” problem,
- a sensible compromise between simplicity and control.
Main disadvantages of a combination lock
- the code can be passed on,
- users may write the code on a note, monitor, or in a notebook,
- when staff changes, you need to remember to change the code,
- usually, you still do not have a full record of who opened the cabinet, when, and how many times.
Where a combination lock most often wins
- in administrative departments with a small but changing team,
- in secretariats,
- in document handling rooms where several people need access,
- in shared spaces where circulating keys would be annoying.
An important practical note
If your organization’s problem is not keys, but a lack of user discipline, a combination lock will not magically fix anything. Instead of managing a key badly, you will simply start managing a code badly.
Electronic lock – when it is worth paying more
This is the topic that more and more companies, law firms, accounting offices, HR departments, and public institutions are asking about today. And rightly so — because in many environments an electronic lock provides advantages that neither a key nor a simple combination lock can offer.
When an electronic lock makes the most sense
An electronic solution starts to make a lot of sense when:
- more than a few people need access to the cabinet,
- permissions change often,
- you want to revoke or grant access quickly,
- accountable management of responsibility matters,
- keys in the organization are regularly lost or circulate without control,
- you store assets with greater sensitivity or value,
- higher operational control matters in the project.
The most important advantages of an electronic solution
- quick changes of permissions,
- no problem with copying keys,
- easier administration in environments with higher turnover,
- the ability to apply a more organized access logic,
- in selected solutions, event logging and more advanced supervision.
The most important disadvantages of an electronic solution
- higher price,
- greater implementation complexity,
- the need to monitor power supply / batteries / emergency procedures,
- the need for better requirement descriptions already at the inquiry stage,
- the risk of overpaying if the environment is simple and will not use these advantages.
When an ordinary office cabinet stops being enough
This is important: if the project requires not just convenience but a clearly higher level of protection, it is not worth limiting your thinking to an ordinary office cabinet with a different lock. Then you need to move to a family with a different protection logic, for example:
This is especially important when your question is not about a “lock for a cabinet,” but about:
- protecting confidential documents,
- protecting storage media,
- zones with greater responsibility,
- organized access control across several rooms or locations.
Comparison table: key vs combination vs electronic
| Criterion | Key lock | Combination lock | Electronic lock |
|---|---|---|---|
| Entry cost | lowest | medium | highest |
| Ease of use | very high | high | medium to high |
| Risk of physical key circulation | high | none | none |
| Risk of informal access sharing | medium | high if the code circulates | depends on procedures, usually easier to control |
| Changing access when an employee changes | slower | fairly quick | fastest |
| Scalability with a larger number of users | weak | medium | high |
| Ability to audit events | usually none | usually none | depends on system and class of solution |
| Dependence on power supply | none | usually none | yes |
| Service and administration | simple | simple to medium | medium to more demanding |
| Best use case | small office, 1–2 users, simple environment | small team, no desire to manage keys | higher responsibility, frequent access changes, more expensive deployments |
Legal requirements and standards in 2026
1. GDPR does not impose one specific type of lock
This is the most important thing to understand. GDPR does not say: “you must have an electronic lock” or “you must have a combination lock.” The logic is different: the organization must choose appropriate technical and organizational measures according to risk.
That means that in one office a classic cabinet locked with a key will be fully sufficient, while in another an access solution with a higher level of control will make sense.
2. In practice, real implementation matters, not declarations
In Polish data protection practice, one thing is very clear: writing down a procedure is not enough. If an organization declares that paper documents are protected, but in practice they lie in a place accessible to unauthorized persons, a paper procedure will not save the situation.
That is why, for paper documents, a simple chain makes sense:
- limited access to the room,
- a lockable cabinet, locker, or drawer,
- assigned responsibility for opening,
- a sensible procedure in case of key loss, code disclosure, or staff change.
3. Access control is not IT theory, but physical practice
In environments aligned with good security practices, access control is becoming increasingly important. And not only for computer systems, but also for rooms, zones, and physical information carriers.
4. Where “higher class” standards really begin
If we are talking about a normal office cabinet, the starting point is reasonable selection according to risk and process. However, if the project enters the level of increased protection, then you need to look at standards concerning:
- information security management systems,
- access control,
- high-security locks for secure storage units,
- and, for safe-class solutions, the resistance of the entire product, not just the lock itself.
Table: standards and reference points worth knowing
| Standard / reference point | What it regulates | What it means for a cabinet buyer |
|---|---|---|
| GDPR, Art. 32 | selection of security measures adequate to risk | there is no single “mandatory” lock; the solution must be chosen according to the asset and process |
| Polish DPA practice (UODO) | real protection of paper documents, e.g. in locked cabinets / rooms | a procedure alone is not enough without real locking and access control |
| ISO/IEC 27001 | information security management in a risk-based model | in larger organizations, the choice of lock should result from access policy, not chance |
| good access control practices | restricting access to zones, assets, and information only to authorized persons | the more people have access and the more frequent the turnover, the more sense easy-to-administer solutions make |
| EN 1300:2023 | classification of high-security locks for secure storage units; applies to mechanical and electronic HSLs | important when you are looking not for an ordinary office cabinet, but for a solution with a higher protection class |
Practical conclusion for 2026
The most sensible way to think about it is this:
- ordinary documents + few users + simple environment → a good cabinet with a key lock is usually enough,
- shared access + desire to eliminate key circulation → a combination lock is worth considering,
- higher responsibility + frequent permission changes + need for better control → it is worth moving to an electronic logic or a family of solutions with a higher level of protection.
How to choose a Metaf cabinet according to security logic
Below is the most practical purchasing framework.
Scenario 1: ordinary office documents, 1–2 users
Most often, this is enough:
Choose a model according to:
- the number of binders,
- the required height,
- the width of the furniture line,
- the expected construction durability,
- whether you want to maintain a consistent standard between rooms.
Scenario 2: active documentation, frequent retrieval of individual files
What usually wins here is not so much a different lock as a different type of furniture:
Why? Because with frequent searching for individual cases, ergonomics of access and internal order matter more than the lock itself.
Scenario 3: executive office, confidential archive, greater responsibility
This is the moment when it is worth moving beyond a classic office cabinet and starting from:
This is where it makes sense to talk about:
- a higher protection level,
- a different access type,
- a standard for multiple zones or locations,
- more expensive constructions and a more controlled access process.
Scenario 4: several locations, one standard, more users
In such a project, the buyer usually should not start with the question “which lock?”, but with the question:
- what is the logic for granting and removing access,
- who will administer the solution,
- whether the standard must be replicated across several rooms, floors, or facilities,
- whether simplicity or the ability to change permissions quickly is more important.
Metaf models and dimensions table
Below are sample Metaf models that clearly show different levels of organization and protection.
Important: Metaf product cards are handled in an inquiry-based mode. Final variants, colors, and configurations are confirmed after the inquiry, so in projects with non-standard access logic it is worth describing it immediately in the request.
| Family / model | Type of use | Dimensions (H x W x D) mm | Weight | Organizational / technical data |
|---|---|---|---|---|
| Sbm 102 M lx | office documents, small and medium collections | 1040 x 800 x 435 | 33 kg | 2 shelves; sheet metal: bottom beam 1.0 mm, other elements 0.8 mm |
| Sbm 202 M lx | office, law firm, public institution | 1990 x 800 x 435 | 54 kg | 4 shelves; sheet metal: bottom beam 1.0 mm, other elements 0.8 mm |
| Sbm 202 st | basic organization of files and binders | 1990 x 800 x 435 | 55 kg | 4 shelves; sheet metal: beam and doors 0.8 mm, other elements 0.6 mm |
| Szk 101st | card files and active documentation | 722 x 415 x 633 | 31 kg | 2 drawers; internal drawer dimensions 244 (front 280) x 330 x 585 |
| Sam W 1a | higher level of protection for documents and media | 1500 x 700 x 550 | 131 kg | reinforced family for environments with increased responsibility |
| Sam W 2a | confidential archive, executive office, infrastructure back room | 1950 x 950 x 550 | 202 kg | 4 shelves; family for zones with greater access control |
| Sam W 3a | higher capacity with stronger protection | 1950 x 1260 x 550 | 252 kg | 4 shelves; wide model for more demanding deployments |
How to read this table
- SBM is the starting point for a classic office and administration,
- SZK wins where documentation is used daily and you need quick access to an individual case,
- Sam W is the logical direction when an ordinary office cabinet is no longer enough and higher access control plus asset protection become more important.
Specific cabinet photos as a problem-solving aid
1. Classic office cabinet for documents and binders
When it makes sense:
- standard office,
- administrative room,
- law firm,
- secretariat,
- any department where order and predictable access to files matter.
Natural product path: SBM metal filing cabinets
2. Card index cabinet for active documentation
When it makes sense:
- card indexes,
- registers,
- current documentation,
- departments where searching for a single case is more common than taking out a whole binder.
Natural product path: Card index cabinets
3. Reinforced cabinet for environments with increased responsibility
When it makes sense:
- documents and media of greater importance,
- executive offices,
- confidential archives,
- infrastructure back rooms,
- projects where access logic and protection level matter more than price alone.
Natural product path: Safes and reinforced cabinets
The most common mistakes when choosing a lock
1. Buying “electronic” because it sounds modern
This is a classic mistake. If one person uses the cabinet and there is no need to manage permissions often, you can simply overpay for a function that nobody will truly use.
2. Leaving key circulation without a procedure
A key lock is good, but only when the organization knows:
- who has the key,
- where the spare copy is,
- what happens when an employee leaves,
- what happens when the key is lost.
3. Pretending the code is secret when half the department knows it
A combination lock does not provide magical security. A code circulating within the team is simply “a shared key without metal.”
4. Looking at the lock while ignoring the furniture type
Sometimes the problem is not the wrong lock, but the wrong type of cabinet. For active documentation, a card index cabinet may make more sense than a classic filing cabinet. For higher protection, a reinforced family may make more sense than an ordinary office cabinet with a different lock.
5. Failing to ask about the emergency scenario
Before purchase, you need to determine:
- what happens after losing a key,
- what happens after code disclosure,
- who administers permissions,
- what happens when staff changes,
- how the organization maintains continuity of access when the responsible person is absent.
How to make a good inquiry to Metaf
If you want to reach the right solution quickly, the inquiry should immediately include:
- what exactly is to be protected: binders, files, card indexes, media, confidential documents,
- how many people should have access,
- whether access is permanent or rotating,
- whether the standard is to be replicated across several rooms or locations,
- whether simplicity or higher access control is more important,
- what the dimensional limitations of the room are,
- whether one purchasing list is needed for several models.
A good starting point:
FAQ
Is an electronic lock always safer than a key lock?
Not always. In a simple environment with a small number of users and good work organization, a classic cabinet with a key lock may be entirely sufficient. An electronic solution mainly wins where access management must be stronger.
Does GDPR require an electronic lock?
No. GDPR requires selecting measures adequate to the risk, not one specific lock type.
When is it worth moving from an ordinary office cabinet to a reinforced cabinet?
When the importance of the protected asset grows, responsibility increases, stronger access control is needed, or organizational requirements for confidential zones become more demanding.
Will a better lock solve the problem for active documentation?
Not necessarily. Often it matters more to move from a classic filing cabinet to a card index cabinet, because it organizes daily access to individual cases better.
What matters more: the lock type or the cabinet construction?
In practice, both matter at the same time. A lock without adequate construction will not solve everything, and good construction without sensible access logic will not deliver the full result either.
Summary and recommendation
If you remember only one thing from this article, let it be this:
The best lock is not the “most modern” one, but the one that matches the risk, the number of users, and the way documents are used.
The simplest purchasing recommendation
- small office, 1–2 users, ordinary documents → start with the SBM family,
- actively used documentation, card indexes, quick case retrieval → start with card index cabinets,
- documents of greater importance, executive office, confidential archive, higher responsibility → start with safes and reinforced cabinets and the Confidential documents and control zones path.
If you want to choose a solution not “by eye” but for a specific workflow, it is best to immediately send an inquiry with a description of:
- the type of documents,
- the number of users,
- the expected access method,
- the number of locations,
- dimensional constraints,
- the expected implementation standard.
See products and send an inquiry:
Sources and substantive basis
- Regulation (EU) 2016/679 (GDPR), in particular Art. 32 — selection of technical and organizational measures adequate to risk.
- Official materials and decisions of the Polish Personal Data Protection Office (UODO), showing the importance of actually protecting paper documents in locked cabinets / rooms and of practically implementing declared security measures.
- ISO/IEC 27001 and ISO materials concerning access control and information security management.
- EN 1300:2023 — classification of high-security locks for secure storage units; a reference point for solutions of a higher class than an ordinary office cabinet.
- Current Metaf family and model cards used for descriptions, dimensions, weights, and use logic.
