Bitso Achieves ISO/IEC 27001:2022 Certification

Bitso, Latin America’s leading crypto-powered financial services company, announced it has received the ISO/IEC 27001:2022 certification, a globally recognized standard for information security. This milestone places Bitso among fewer than 30 cryptocurrency companies worldwide to attain this level of security validation.

The certification confirms the maturity of Bitso’s information security program and follows a rigorous evaluation of its organizational, physical, personnel, and technological controls. The ISO/IEC 27001:2022 standard is applied across industries globally, with fewer than 50,000 organizations achieving the designation since its inception.

“Threats evolve daily and become increasingly sophisticated”

Jeff Fostek, Chief Information Security Officer at Bitso, commented, “In the cryptocurrency industry, maintaining the highest security standards is paramount, as threats evolve daily and become increasingly sophisticated. Bitso has consistently aimed to lead in fortifying its internal systems, ensuring regulatory compliance, and actively engaging within the ecosystem to foster a more secure and prosperous industry.”

The certification process evaluates four primary areas:

• Organizational controls, including internal policies and responsibilities,
• Physical controls, such as surveillance and restricted access,
• Personnel controls, focused on employee screening and training,
• Technological controls, covering firewalls, antivirus protection, and network access security.

Bitso credits its company-wide commitment to achieving this certification, stating that every team member, referred to internally as “Bitsonauts,” played a role by adhering to protocols, reporting incidents, and completing security training.

Fostek added, “Receiving the ISO/IEC 27001:2022 certification reinforces our commitment to accelerating the global adoption of cryptocurrencies. This achievement focuses on our customers, who entrust us with their assets, data, and future, and we demonstrate our commitment with concrete actions, not just words. Security is our responsibility, a duty we take personally.”

Founded in 2014, Bitso serves over 9 million users and supports more than 50 cryptocurrencies through a regulated digital platform. The company’s B2B division, Bitso Business, powers cross-border payments for more than 1,900 institutional clients, enabling real-time, transparent, and cost-efficient currency transfers.

With offices and staff in 35 countries, Bitso continues to expand its infrastructure with a focus on security, regulatory compliance, and financial accessibility. The ISO/IEC 27001:2022 certification affirms the company’s ongoing efforts to build trust across its customer and partner base.