App Feature

Your Security at the Centre of our attention

5 min

ISO/IEC 27001

TAP manages confidential information on a daily basis and recognizes the importance of protecting this information from the risk of data leakage, loss or theft. Thus, it has adequately implemented the leading international and certifiable Standard for information security managementISO/IEC 27001 (IT Information Management System).

ISO/IEC 27001, sets out the requirements for defining, implementing, monitoring and improving an information security management system (ISMS) and it involves people, processes and IT systems implementing a risk management process. It offers a systematic and well-structured approach that protects the confidentiality of TAP’s stored information, ensures the integrity of the company data, and improves the availability of its IT systems.  

Tap’s ISO/IEC 270001 certificate of implementation has international readability and validity and ensures the verification of compliance with relevant laws and regulations.

At European level, the GDPR (the General Data Protection Regulation 2016/679 on data protection and privacy in the European Union and the European Economic Area), encourages the use of certification systems such as ISO/IEC 27001, as this standard describes the requirements that an organization must meet in order to manage its information security comprehensively and effectively. By adopting ISO/IEC 27001, Tap can demonstrate that actively manages its data security in accordance with international best practices.


100m insurance Bitgo

Tap’s partnership with BitGo, a top qualified digital assets custodian, ensures the highest-level of security for Tap’s customers.

Tap’s first line of defense against theft, loss or damage of private keys includes software, hardware, physical security measures and top quality Know Your Customer (KYC) and Anti-Money Laundering (AML) policies and procedures. By carrying a $100 million coverage insurance as an additional layer of protection from Bit Go, Tap integrates a significant hedge against loss.


Licensed & Regulated

Tap is a legitimate Distributed Ledger Technology (DLT) provider as it is fully authorized by the Gibraltar Financial Services Commission (GFSC), with license number 25532.

This authorization ensures that Tap meets all the required standards to provide efficiently and securely its services and has proper regard to the DLT associated risks in order to protect its customers.

In general, Tap is fully complied with all applicable regulatory, legal and contractual rules and the company’s policies and procedures are frequently reviewed and updated in order to align with the regulative framework. Tap checks on a daily for compliance breaches, ensures that its staff is properly familiar with the KYC and AML/CTF global standards and guarantees the effectiveness and adequacy of its procedures, internal controls and systems.

(In addition, TAP’s provided prepaid card is issued by Transact Payments Limited, which is regulated by the Financial Services Commission Gibraltar, under the Financial Services (Banking)Act 1992.)