0%

Bitfinex has completed the SOC 2 Type 1 Compliance

28 Eki 2022 4 dakika okuma
Haber Makalesinin Reklâm Bandı Görseli

The Bitfinex platform implements a set of security features to ensure the safety of customers’ funds. These features include the Bitfinex hot and cold wallets, distributed denial-of-service (DDoS) protection and regular testing to ensure systems can’t be penetrated.

Today, we are excited to share the next phase of this journey. In October 2022, Bitfinex successfully completed the System Organisation Control (SOC) 2 Audit Type 1, the first phase of the highest level of security compliance an organisation can demonstrate. The executed audit declares that Bitfinex’s information security (InfoSec) practices, policies, procedures and operations meet the SOC 2 Trust Service Principles for security, availability and confidentiality. This is a major milestone for Bitfinex as one of the longest-running crypto exchanges in the world, operating in an industry that has witnessed many security breaches and hacks. But why is this so important?

The importance of SOC 2 and its value to customers

Information security and data protection are extremely important for businesses and especially financial organisations to protect them from fraud, hacking, phishing and identity theft. As the amount of data stored and created increases, so does the importance of data protection. Therefore, any organisation that wants to work effectively needs to ensure the safety of its information. Data breaches and cyberattacks can cause devastating financial and reputational damage that can be severe and long-lasting.

That’s what makes SOC 2 such an important accreditation for Bitfinex — it gives our customers a recognised and respected source of proof that our security practices can be trusted.

Developed by the American Institute of CPAs (AICPA), SOC 2 stands for a System and Organisation Controls report with an audit opinion issued by a certified public accountant for internal controls related to information technology. A SOC 2 report can demonstrate general IT controls through a third-party assurance report. SOC 2 defines criteria for managing customer data based on the following five “trust service principles”:

  • Security

Security is a fundamental criterion which refers to the protection of system resources against unauthorised access. It helps prevent potential system abuse, theft or unauthorised data removal, software misuse, and improper information alteration or disclosure. Security measures generally include firewalls, intrusion detection and beefed-up authentication measures for users.

  • Availability

In SOC 2 terms, the Availability principle generally looks at whether a network is reliably active and how quickly problems on a platform can be resolved.  Consistent service with little downtime is a crucial point of data centres, so the Availability principle becomes a key consideration.

  • Processing Integrity

The Processing Integrity principle proves that the system does not produce errors in processing, and in cases when errors occur, these are rapidly detected and fixed. The criterion also measures whether the company provides users with consistent, accurate, and timely data.

  • Confidentiality

The Confidentiality principle declares that data access and disclosure are restricted to a specified set of persons or organisations. In this case, encryption should play a major part and control protecting confidentiality during transmission.

  • Privacy

The Privacy principle explicitly addresses how a company collects and uses users’ personal information. It ensures that an organisation handles users’ data following commitments in the entity’s privacy notice and with criteria defined in generally accepted privacy principles issued by the AICPA.

The SOC 2 report verifies the existence of internal controls which have been designed and implemented to meet the requirements for the security principles. This independent validation of security controls is vital for Bitfinex, as it demonstrates our commitment to being the world’s most trusted and compliant crypto exchange and proves that security is in our mentality.

Next steps

We feel strongly that this standard of compliance is what Bitfinex customers deserve. That is why, in addition to our SOC 2 Type 1 review, we are also committed to obtaining our SOC 2 Type 2 review in 2023, with the subsequent assessments on an annual basis. The key difference between SOC 2 Type 1 and Type 2 audits is time. A SOC 2 Type 1 audit assessed the effectiveness of Bitfinex data security controls at a single point in time. In contrast, a SOC 2 Type 2 report evaluates the operational effectiveness of our internal controls over a more extended period of time, between 6 to 12 months. Stay tuned!

The post appeared first on Bitfinex blog.

Popüler haberler

How to Set Up and Use Trust Wallet for Binance Smart Chain
#Bitcoin#Bitcoins#Config+2 daha fazla etiket

How to Set Up and Use Trust Wallet for Binance Smart Chain

Your Essential Guide To Binance Leveraged Tokens

Your Essential Guide To Binance Leveraged Tokens

How to Sell Your Bitcoin Into Cash on Binance (2021 Update)
#Subscriptions

How to Sell Your Bitcoin Into Cash on Binance (2021 Update)

What is Grid Trading? (A Crypto-Futures Guide)

What is Grid Trading? (A Crypto-Futures Guide)

Cryptohopper sayesinde ücretsiz bir şekilde alım satım yapmaya başlayın!

Kullanımı ücretsiz - kredi kartı gerekmez

Haydi başlayalım
Cryptohopper appCryptohopper app

Feragatnâme: Cryptohopper belli kural veya yasalara göre idare edilen bir kuruluş değildir. Kripto paraların bot üzerinden alım satımı önemli riskler içerir, ayrıca bir kripto paranın geçmiş performansı gelecekteki sonuçlarının göstergesi değildir. Ürün ekran görüntülerinde gösterilen kârlar tamamen açıklama amaçlıdır ve abartılı olabilir. Yalnızca yeterli bilgiye sahipseniz veya nitelikli bir finansal danışmandan rehberlik alıyorsanız Bot yoluyla alım satıma girişmelisiniz. Cryptohopper hiçbir koşul altında, (a) tamamen veya kısmen, yazılımımızın dahil olduğu işlemlerden kaynaklanan veya bunlarla bağlantılı olarak ortaya çıkan herhangi bir kayıp ya da hasar, veya (b) doğrudan, dolaylı, özel, sonuç olarak ortaya çıkan veya arızi zararlar için herhangi bir kişi veya kuruluşa karşı herhangi bir sorumluluğu kabul etmeyecektir. Cryptohopper sosyal alım satım platformunda bulunan içeriğin sadece Cryptohopper topluluğunun üyeleri tarafından oluşturulduğunu ve Cryptohopper firması tarafından yapılmış veya onun adına tavsiye veya öneri teşkil etmediğini lütfen unutmayın. Pazar yerinde gösterilen kârlar gelecekteki elde edilecek sonuçlara dair bir gösterge temsil etmez. Cryptohopper'ın hizmetlerini kullanarak, kripto para birimi alım satımının doğasında bulunan riskleri kabul etmiş ve ayrıca Cryptohopper'ı ortaya çıkacak her türlü yükümlülük veya zarardan muaf tutmayı da kabul etmiş oluyorsunuz. Yazılımımızı kullanmadan veya herhangi bir alım satım faaliyetinde bulunmadan önce, Hizmet Şartlarımızı ve Risk Bilgilendirme Politikamızı gözden geçirmek ve anlamak çok önemlidir. Özel koşullarınıza göre kişiselleştirilmiş tavsiyeler için lütfen konuyla ilgili deneyim ve uzmanlık sahibi hukuk ve finans uzmanlarına danışın.

©2017 - 2025 Telif hakkı Cryptohopper™'a aittir - Tüm hakları saklıdır.