Bitflowmarket

Security

Industry-leading security protects your investments.

Safeguarding your funds, NFTs and privacy is our number one objective

Bitflowmarket takes a comprehensive approach to protecting your investments in crypto assets and NFTs. Our team of experts have built in a number of sophisticated measures to prevent the theft of funds, NFTs, or information.

Theft isn't the only threat of course. As a professional exchange we offer financial stability, with full reserves, healthy banking relationships and the highest standards of legal compliance.

Bitflowmarket's comprehensive approach to cybersecurity and information security management systems has earned us the ISO/IEC 27001:2013 certification. This demonstrates our ability to meet the highest international security standards, as well as our commitment to keeping your funds and information safe.

security labs

We test third-party services and products in an effort to help identify, publicize and solve issues before they’re exploited by bad actors. Discover more about Bitflowmarket Security Labs.

Security above everything.

World-class Security Team

We’ve assembled a global team of top security professionals who take a risk-based approach to ensuring our clients’ assets are protected at the highest levels while maintaining exceptional performance and an unparalleled client experience. Our team has decades of experience building security programs for the world’s top brands, investigating the largest consumer data breaches, developing security technology trusted by millions of businesses and discovering vulnerabilities in the technology used by billions of people every day.

Proof of Reserves

We periodically work with an external auditor to perform Proof of Reserves audit aimed at developing greater trust and transparency in the assets held within our exchange and on-chain staking service. You can log in to your account and verify that Bitflowmarket had custody of the covered tokens in your account at the time of the audit. Learn more.

Custody Security

We use advanced cold storage and hot wallet solutions to secure your funds. Our crypto infrastructure resides in secure cages under 24/7 surveillance by armed guards, alarm systems and video monitors.

Information Security

All sensitive account information is encrypted at rest at both the system and data level. Access is strictly controlled and monitored. We’re also ISO 27001 certified. Learn more.

Security Testing

We have an expert team dedicated to testing our own systems via every imaginable attack vector. Additionally, we run a bug bounty program to leverage the expertise of the broader security research community.

Security Features

2FA (Google Authenticator and Yubikey) to keep your account secure

No Phone/SMS account recovery, your account stays in your hands

Email confirmations for withdrawals with self-serve account lock

Configurable account timeout for another layer of protection

Customizable, granular API key permissions with range boundaries

Global settings time lock for extreme security when you're away

PGP signed and encrypted email for secure communication

SSL encryption to protect you when browsing Bitflowmarket

Constant, real-time monitoring for suspicious activity

Zero settlement risk, no chargeback fraud when trading crypto

Sensitive data is fully encrypted at rest and in transit

High priority 24/7 live chat and email support for urgent concerns

Committed to helping secure the crypto-ecosystem

Our mission is to increase cryptocurrency adoption world-wide, and we recognize that this extends pastBitflowmarket products and services. We’re committed to helping the entire industry become more secure, and that means identifying vulnerabilities in other projects or tools that our clients regularly use. To this end, we’ve developed Bitflowmarket Security Labs to test third-party services and products in an effort to help identify, publicize and solve issues before they’re exploited by bad actors. Learn more.

Security Resources

Interested in learning more about our security practices or how you can protect yourself from bad actors? Check out the resources below:

Securing your account

  • Security basics
  • Securing your account
  • Setting up two-factor authentication
  • Setting up a master key
  • Setting up PGP encryption
  • Setting up the global settings lock
  • Creating a strong username and password

Other Security Information

  • Bug Bounty
  • Vulnerability disclosure policy
  • Proof-of-reserves audit process
  • Bitflowmarket’s PGP Key
  • Available two-factor authentication options

Keep sailing the high seas of success! What’s next?

I want to dive deeper into all of Bitflowmarket's security practices.
I'm a developer. Tell me about Bitflowmarket's bug bounty program.
I want to learn more about protecting my emails communications.
I'm ready to try it out, let's create my account

Disclaimer

There are no formally accepted rules or procedures that define a proof of reserves audit. For ours, we engaged an independent accounting firm to perform an engagement under standards set forth by the American Institute for Certified Public Accountants and to issue an Independent Accountant’s Report on Agreed Upon Procedures. This report includes specific procedures performed by that firm as well as their findings