Crypto.com Completed the SOC 2 Type II Compliance Audit, Carried by Deloitte

Crypto.com announced it has completed the compliance audit for Service Organization Control (SOC) 2 Type II. The audit was independently carried out by Deloitte.

SOC Type 2 as opposed to SOC Type 1 includes a long-term analysis of the company's security, design and safeguards over an extended period of time.

It also provides assurance to both existing and future customers that their data is safe.

On 17 August 2022, Crypto.com announced it gained approval from the FCA to operate as a cryptoasset business. The approval allows the company to offer its products and services to UK customers.

Officials' Remarks

Kris Marszalek, the CEO of Crypto.com, was pleased with the audit: "I am extremely proud of our commitment to compliance, and this latest achievement is a testament to our security, privacy, and regulatory compliance capabilities which have been cornerstones of our business since day one.

“We will continue investing aggressively in building a most trusted platform for our users that maintains the highest standards of security and privacy in the industry.”

Jason Lau, the Chief Information Security Officer at Crypto.com, added: “Achieving SOC 2 Type II certification is yet another step in reinforcing Crypto.com’s continuous commitment to security and data privacy by design.

“With the ever-evolving threat landscape, we will continue to ensure we maintain the highest level of security and data privacy so our customers can feel confident and trust our products.

"SOC 2 is an internationally respected security assessment criteria, and in line with highly regulated industries like the financial sector.”

Crypto.com is the first virtual asset service provider to be certified for ISO 22301:2019, ISO/IEC 27701:2019, ISO/IEC 27001:2013 and PCI-DSS v3.2.1 Level 1 compliance.

Furthermore, the company is assessed as Tier 4, which is the highest level for both NIST Cybersecurity and Privacy Frameworks.