Compliant & Secure

Compliance & Security

Built with compliance and security at the core. POPIA-aware, FSCA-aligned, and committed to protecting your data and funds.

Regulatory Posture

POPIA Compliant
We adhere to the Protection of Personal Information Act (POPIA) principles:
  • Data minimization
  • Purpose limitation
  • Consent-based processing
  • Secure storage and transmission
  • Individual rights honored
FSCA Licensed
OneStop Crypto operates with the necessary approvals to offer crypto services in South Africa.

FSCA CASP License No. 54459

We follow Financial Sector Conduct Authority (FSCA) guidelines for crypto asset service providers:

  • Customer due diligence
  • Transaction monitoring
  • Record keeping (5+ years)
  • Risk-based approach

Safety & Security

Your Funds Are Protected

We take the security of your funds seriously. Client funds and crypto are kept separate from operational funds and are never used for business operations.

  • Segregated client accounts
  • Multi-signature wallet protection
  • Regular reconciliation and audits
  • Secure custody practices
Secure Systems

Our platform is built with security at its core. All data is encrypted and protected using bank-grade security measures.

  • Encrypted data storage and transmission
  • Two-factor authentication for account access
  • Continuous system monitoring
  • Regular security updates and patches

Our Commitment: Your safety is our priority. We maintain rigorous security protocols, undergo regular audits, and continuously monitor our systems to ensure your funds and personal information remain secure at all times.

AML/CFT Requirements

Know Your Customer (KYC)
We follow a tiered KYC approach based on transaction size and risk. Requirements scale appropriately to protect both parties:

Basic KYC (Tier 1)

Email, phone and ID verification. Suitable for smaller transactions.

Extended KYC (Tier 2)

+ Proof of address and liveness checks. For regular trading activity.

Enhanced KYC (Tier 3)

+ Source of funds, bank statements, and enhanced due diligence. Required for larger tickets and higher-volume trading.

Specific limits and requirements are confirmed during onboarding based on your trading needs.

Record Keeping & Audit Trail
Comprehensive audit logs maintained for regulatory compliance:
  • All transactions logged with timestamps
  • KYC documents encrypted and securely stored
  • Communication records retained
  • Minimum 5-year retention period
  • Immutable audit trails for compliance reviews

Questions about compliance?

Our team is here to answer any questions about our security and compliance measures.

Contact Us Privacy Policy