Nexo Cements Data Protection and Cloud Privacy with a Duo of ISO Certifications

Jan 303 min read

Italian RINA’s stringent evaluation process underscores the robustness and reliability of Nexo's infrastructure.

January 30, 2024 – Nexo, the leading digital assets institution, announces a significant testament to its privacy protocols, with the prestigious ISO 27017 and ISO 27018 certifications, building upon the foundation of its existing ISO 27001 standards. These accolades, granted by RINA – a multinational inspection, certification, and engineering consulting company, known for its rigorous standards – represent a comprehensive commitment to securing client data, enhancing cloud security, and ensuring privacy in the digital age.

The significance of robust security measures has never been more evident. In 2023, while the cryptocurrency sector witnessed a 50% decrease in losses due to security incidents, the tally still came in at $1.7 billion. This figure underscores the critical importance of security standards.

The Synergy of ISO 27001, ISO 27017, and ISO 27018

Nexo, already recognized for its robust Information Security Management Systems (ISMS) under ISO 27001 since 2019, has further cemented its stance by expanding its credentials to include ISO 27017 and ISO 27018.

  • ISO 27001: This foundational certification underscores Nexo’s security-focused approach to sensitive information, highlighting the sustained excellence and robustness of its top-tier ISMS.
  • ISO 27017 extends the security principles of ISO 27001 to the cloud environment, increasingly and universally used in the crypto ecosystem. Nexo addresses this and fosters a collaborative environment with cloud service providers, ensuring utmost protection against cloud computing threats.
  • ISO 27018: As the first privacy-specific international standard, ISO 27018 fortifies Nexo’s commitment to protecting personally identifiable information (PII) in the cloud. It emphasizes the principles of explicit consent, data minimization, and stringent third-party management.

"Nexo's integration of ISO standards for information security and privacy signifies a major step forward in our journey to set new benchmarks in digital finance," said Nexo's Chief Security Officer Milan Velev. "We are not just complying with international standards; we are leading by example, prioritizing our clients in every aspect of our operations."

"We are pleased to certify Nexo with the ISO 27017 and ISO 27018 standards. This partnership underlines RINA commitment to promoting advanced security measures and data protection in the innovative financial technology sector," said Kalin Panev, Country Manager of RINA.

The prestigious ISO 27017 and ISO 27018 certifications build upon Nexo's long-standing commitment to the highest standards in privacy, including the successful completion of the SOC 2 Type 2 audit and the attainment of the CSA Security, Trust & Assurance Registry (STAR) Level 1 Certification. For Nexo, these achievements represent not the final destination but pivotal steps in an ongoing journey towards setting unparalleled standards in transparency in the digital assets space.

About Nexo

Nexo is a leading digital assets institution. Committed to enhancing the value and utility of digital assets, the company offers a comprehensive suite of services including advanced trading solutions, liquidity aggregation from top trading venues, and flexible asset-backed credit lines. In 2022, the enterprise launched its investment arm Nexo Ventures, which now boasts over 60 portfolio companies. Since its inception in 2018, Nexo has processed $130+ billion for 7,000,000+ satisfied users across more than 200 jurisdictions. For more details, visit: nexo.com.

Media Contact for Nexo

The Nexo PR Team: [email protected]

About RINA

RINA, leading certification company and engineering company in Italy, provides a wide range of services across the Energy, Marine, Certification, Infrastructure & Mobility, Real Estate and Industry sectors. With revenues in 2022 of 725 million euros, 5,300 employees and 200 offices in 70 countries worldwide, RINA is a member of key international organizations and an important contributor to the development of new legislative standards. www.rina.org

Media Contact for RINA

RINA PR Contact: [email protected]