Bitso, the leading digital financial services company in Latin  America, announced today that it has obtained the Cryptocurrency Security Standard (CCSS) 2025 certification, one of the most rigorous global standards for safeguarding digital assets and ensuring the  secure operation of cryptocurrency platforms. 

With this achievement, Bitso positions itself as one of eight companies worldwide currently holding this  certification, and as one of the first in Latin America to meet the requirements of the new and more  demanding version 9.0 of the standard. As a result, Bitso’s rating on Cer.Live was elevated to AAA with  3 stars, the highest security level available for companies operating with crypto assets. 

For Bitso users, this certification translates into greater security, transparency, and trust. The standard  requires advanced practices in cryptographic key management, periodic security audits, Proof of  Reserves (PoR) audits, and comprehensive audit logging, strengthening accountability and the protection  of digital assets. 

“Achieving the CryptoCurrency Security Standard (CCSS) marks a significant milestone in Bitso’s mission  to set the global benchmark for digital asset protection. This standard promotes greater security,  transparency, and trust, giving our customers confidence in the Bitso platform. By enforcing rigorous  protocols for key generation, storage, and lifecycle management, we have fortified our defenses against  both external and internal threats. Combined with our ongoing Proof of Reserve (PoR) audits and  comprehensive logging, this certification reaffirms Bitso as a transparent, security-first leader in the  regulated crypto landscape with an unwavering focus on protecting our customers and digital assets,”  said Jeff Fostek, Chief Information Security Officer (CISO) at Bitso. 

The CCSS certification is an open standard developed by the global crypto community, establishing  specialized technical and operational controls for the generation, custody, use, and safeguarding of  cryptocurrencies. Its objective is to significantly reduce risks associated with external attacks, insider  threats, and operational failures, thereby protecting users’ funds. 

For Bitso, this certification complements international standards such as ISO/IEC 27001, which the  company obtained in April 2025, enabling its platform to integrate additional controls tailored to the unique  risks of the crypto ecosystem. Moreover, the CCSS standard has become a key reference for regulators  and authorities, as many licensing requirements for Virtual Asset Service Providers (VASPs) align with  this framework.

With this milestone, Bitso reaffirms its long-term commitment to security, transparency, and the  development of a stronger and more trustworthy crypto ecosystem in Latin America, promoting the  responsible adoption of cryptocurrencies beyond minimum regulatory requirements.