Regulatory Approval Sees Crypto.com Expand Services to Spain

Korbit Passes Post-Audit for ISMS-P and ISO CertificationsSouth Korean crypto exchange Korbit announced on Wednesday that it has successfully passed a post-audit to maintain its Personal Information and Information Security Management System (ISMS-P) certification and four different International Organization for Standardization (ISO) certifications — ISO 27001, ISO 27017, ISO 27018, and ISO27701.“By maintaining our ISMS-P and ISO certifications this year, we were able to reaffirm the stability and trustworthiness of Korbit’s personal information protection capabilities and security management system,” said Oh Se-jin, CEO of Korbit.Photo by FLY:D on UnsplashRigorous criteriaThe ISMS-P is a security management system jointly operated by the Ministry of Science and ICT and the Personal Information Protection Commission, representing the highest level of security management in Korea. It combines 80 requirements for Information Security Management System (ISMS) certification and 22 requirements for Personal Information Management System (PIMS) certification, totaling 102 requirements that must be met. Once obtained, certification is valid for three years, and annual post-audits are required to maintain its validity.Korbit first obtained ISMS-P certification in September of 2021 and has once again passed this year’s post-audit that was conducted last Wednesday.Meeting international standardsIn addition, the exchange had previously passed post-audits for four ISO certifications related to information protection and personal information management systems earlier in June. This includes ISO 27001 for information security management systems, ISO 27017 for information security controls on cloud services, ISO 27018 for protection of personally identifiable information (PII) in public clouds, and ISO 27701 for privacy information management systems.This achievement demonstrates Korbit’s commitment to reliability and security when operating and managing exchange services.“As a crypto exchange, we will continually focus on strict security management to ensure the protection of customer information and assets,” said CEO Oh.

Acquisition by SBI Subsidiary Part of European ExpansionB2C2, a cryptocurrency liquidity provider catering to institutional clients and a subsidiary company of Japanese financial services conglomerate SBI Holdings, has solidified its foothold in the digital assets market by completing the acquisition of Woorton, a prominent European market maker and over-the-counter (OTC) transaction specialist.Photo by Christian Lue on UnsplashMarket expansionIn a press release published to its website on Thursday, UK-based B2C2 outlined further details relative to the acquisition. The move represents an effort by B2C2 to broaden its client base and expand within the European market, ahead of the forthcoming regulations under the Markets in Crypto-Assets Regulation (MiCA).The acquisition opens doors for B2C2 to extend its services within the European Union (EU) jurisdiction. Additionally, it allows B2C2 to tap into growth opportunities beyond its existing strongholds in the United Kingdom, Asia-Pacific (APAC), and the United States.Licensing accessOne of the prime advantages of this acquisition is B2C2’s access to Woorton’s prestataires de services sur actifs numériques (PSAN) license, which is regulated by the Autorité des Marchés Financiers (AMF), the French financial regulatory authority. This license empowers B2C2 to operate seamlessly within the EU, positioning the company for a strategic advantage in the evolving regulatory landscape.As the UK is no longer part of the EU, this acquisition makes for a much easier entry point for the company into the broader European market.Founded in 2017, Woorton boasts an active clientele of nearly 250 entities engaged in trading 96 different cryptocurrencies. The company distinguishes itself by offering round-the-clock liquidity provision, ensuring uninterrupted trading opportunities for its clients.Woorton’s engagement with regulatory bodies is a key highlight, and the firm is a co-founding member of the Association for the Development of Crypto-Assets (ADAN). Through ADAN, Woorton actively contributes to shaping regulatory frameworks governing digital assets in France, bridging the gap between the industry and policymakers.Additionally, the company played a crucial role in establishing Paris Blockchain Week, an internationally recognized event that brings together thousands of attendees and speakers to discuss blockchain and digital asset trends.Charlie Meraud, CEO of Woorton, expressed excitement about the acquisition, emphasizing the complementary strengths of the two firms. Meraud highlighted the enhanced liquidity pool and improved market presence that the combined platform would offer to customers, ultimately leading to a superior liquidity and trading experience.B2C2’s CEO, Nicola White, described the acquisition as a significant milestone in the company’s growth journey. White expressed enthusiasm about the potential the acquisition unlocks for B2C2 and its EU-based clients, reaffirming the importance of regulatory standing and a robust client base.London baseEstablished in 2015 and primarily owned by SBI, B2C2 operates from its main headquarters in the UK, with operational offices in the US and Japan. Its UK-registered company B2C2 Ltd serves as the parent entity within the B2C2 group of companies.B2C2’s acquisition of Woorton not only enhances its presence within the European Union but also serves to demonstrate its intent in terms of regulatory compliance and industry leadership. This strategic move positions the company to navigate the evolving crypto market, likely leading to greater opportunities for its clients.

Upbit procures ISO 22301 certificationDunamu, the blockchain and fintech firm that operates South Korea’s largest crypto exchange Upbit, announced Wednesday (local time) that Upbit has obtained the ISO 22301 certification, an international standard for security and resilience that evaluates a company’s business continuity management system (BCMS) based on its ability to protect against and respond to disruptive events. The firm disclosed that it acquired the certification from the U.S. International Accreditation Service (IAS) on Nov. 6.Photo by John Salzarulo on UnsplashNavigating risk managementMore specifically, the ISO 22301 certification evaluates a company’s ability to maintain uninterrupted and stable business operations through the prevention, response and recovery in the event of accidents, man-made or natural disasters and more. It offers several benefits for companies, such as proof of compliance with legal requirements, which serves as a marketing advantage, and the prevention of large-scale damage.To obtain the certification, companies must prepare in advance for unexpected disruptions by analyzing the level of impact that such events can have on business operations and the amount of time needed to recover, then put relevant policies in place to facilitate recovery. To maintain the certification, enterprises must also undergo an annual follow-up audit and a renewal audit every three years.Commitment to business resilience“We obtained the certification to protect user assets and provide safe services that do not stop in the face of external influences,” Dunamu said, emphasizing its commitment to enhancing service reliability and protecting investors. “We will not stop our efforts to become the most trusted cryptocurrency exchange.”Upbit has previously acquired other ISO certifications, such as the ISO 27001 for information security; the ISO 27017 for information security in cloud computing; and the ISO 27701 for privacy management. The exchange also obtained ISMS-P in 2021, a certificate administered by Korea’s Ministry of Science and ICT and Personal Information Protection Commission for information security and personal information management.