Hex Trust, the leading institutional digital asset custodian, today announced that it has successfully completed its SOC 2® Type II - SOC for Service Organizations: Trust Services Criteria attestation independently conducted by Deloitte.
After the turbulent year the digital asset industry faced during 2022, now more than ever, companies need to commit to prioritizing the highest degrees of institutional-grade security, compliance, and confidentiality to increase trust from clients and investors.
The successful completion of this attestation demonstrates Hex Trust’s commitment to ensuring its internal control, policies, processes, operations, and security practices meet the rigorous standards for five trust service principles for security, availability, processing integrity, confidentiality, and privacy.
The SOC 2 Type II attestation is an independent inspection conducted by Deloitte, which assesses Hex Trust’s organizational controls over six months. The attestation is a widely recognized auditing standard developed by the American Institute of Certified Public Accounts (AICPA).
“At Hex Trust, we always improve, validate and verify our security and privacy practices. Being granted this certification from Deloitte is a testament to the thorough and diligent work of our dedicated team. It remains our priority to set the highest global standards for our products, services, and processes in order to protect our clients and their assets.”— Alessio Quaglini, CEO of Hex Trust
“Receiving the SOC-2 Type II attestation is a demonstration of Hex Trust’s commitment to the highest levels of institutional-grade security and regulatory compliance. The independent assessment was incredibly in-depth and time-consuming but vital to signaling that our complex platforms and processes are built with integrity, trust, and accountability by design.” — Shane Read, Chief Information Security Officer of Hex Trust
Hex Trust strives to meet the strictest regulatory and compliance standards and was previously granted the SOC 2 Type I attestation conducted by Deloitte, which was received in March 2022. The Cloud Security Alliance (CSA) STAR Level 1 Certification was obtained in February 2022, with Hex Trust becoming an official Trusted Cloud Provider committed to full cloud security competency. In terms of data center certifications, Hex Trust takes a security-oriented approach in processes to protect the business from a variety of threats and security risks. Hex Trust uses Singtel as a colocation provider, leveraging its network of cloud-enabled data centers, which offer adherence to global standards, market-leading security, extensive coverage, and more. Hex Trust also receives regular penetration testing with the help of Theos Cyber Solutions, a CREST-accredited cyber security services provider, to verify the capabilities of our security architecture against potential cyber-attacks.