Yes that is right. Kicksecure has all the security implementations of whonix, just without TOR. Although it by default does do updates by TOR. I personally disabled this feature as my security model doesn’t require TOR but I see how overall it is beneficial. I guess one of the worrying things about IF kicksecure was actually not secure is obviously that whonix would also not be secure which would be very sad for internet freedom. While I don’t personally use whonix I do understand how important it is for global internet freedom.