Trust is Key
In digital finance, a security compromise that exposes your client’s data can seriously harm your business. Protecting your data requires several security measures, including disaster recovery, data encryption at rest and in transit, identity and device management, system monitoring, and safeguarding against attacks. Only implementing solutions engineered with a ‘security-first approach’ is paramount to protecting your organization and data at every layer.
Ospree is a full-stack compliance platform that equips virtual asset service providers with a complete client overview by integrating with industry-leading KYC solutions, monitoring transactions, and reporting enhanced due diligence. The platform includes robust security and data protection features that give you the control, visibility, and flexibility you need to manage all your security challenges without compromising agility.
Internal Security
All connections to the Ospree platform are protected with enterprise-grade TLS encryption. Data is encrypted at rest and in transit as part of our foundational security controls; it is then stored in secure data centers worldwide. Ospree only uses the highest-rated data centers that meet or exceed the most stringent and broadly recognized security standards.
All customer data on the Ospree platform is backed up and stored redundantly at multiple locations in our hosting provider’s data centers to ensure availability. Our tested backup and restoration procedures allow recovery in the event of hardware failure. All customer data and our source code are automatically backed up every 24 hours. Ospree’s software backups and recovery processes are routinely tested by our technical team every 180 days to ensure that backup and restoration processes, controls, and tools work as expected.
Product Security
Multi-factor authentication (MFA): MFA has become the gold standard for login authentication. With MFA your company can ensure user credentials are safe from identity theft or impersonation by adding layer of security on top of logging in with your password.
Session Protection: Ospree implements the OAuth2 authorization framework. Your connection to the system is secure with strict session-length management protections and privileged access controls.
Full Audit Trail: An organization must protect itself from security breaches from outside the organization and, more frequently, from within*. With Ospree, all user activity is fully auditable and can be viewed through privileged access controls to prevent and discourage bad actors.
Identity Protection Options: As an additional layer of security, companies can store customer wallet and transaction information in the Ospree platform without revealing their name or other identity-related information. Excluding real-world identifiers from the system guarantees anonymity to high-profile clients.
Identifying all avenues of risk and proactively implementing safeguards are part of Ospee’s layered security protocols, ensuring that compliance analysts are able to conduct their duties safely. Designed in concert with leading regulatory and compliance professionals and digital security experts, with Ospree, you can stop worrying and get on with your business.
*Note: BBC News. (2014, January 20). Credit card details on 20 million South Koreans stolen. https://www.bbc.com/news/technology-25808189
