Coinfloor holds client fiat fiat (i.e. GBP, EUR and USD) funds in client funds accounts held by Gibraltar
As banking relationships are a high priority for any Bitcoin company, we
maintain accounts with several other banks in Europe to avoid any downtime
to Coinfloor’s services. In all cases, the banks are fully aware of the
nature of our business.
We are actively seeking to add further payment options through ongoing
research and development, partnering with innovative payment providers and
lobbying government and UK-based banking institutions.
Bitcoin security - We are paranoid about security
Coinfloor operates with a 100% cold storage policy. All our client
bitcoins are received, stored and sent out from within multiple underground
vaults which maintain the same security standards as the Bank of England.
Coinfloor is the first bitcoin exchange to hold all client bitcoins in
Multi-Signature Pay 2 Script Hash (P2SH) cold storage.
Our system has been built such that no single person, server, vault
location or device failure could compromise the integrity of client bitcoins.
No client bitcoins are ever stored on a server, ensuring that in the unlikely
event that an attacker gains complete access to any of our online servers,
our client bitcoins would not be compromised.
As a result of our 100% multi-signature cold storage policy, bitcoin withdrawals over 2
bitcoins take place up to 3 times a day during business hours. We believe that this
slower withdrawal speed is worth the peace of mind that comes from knowing no client
funds are ever accessible in a hot or warm wallet.
All users are required to set up either Authy or YubiKey two-factor
authentication meaning that if someone were to find out a user’s username
and password they would still not be able to log into their account without
the user’s Authy one-time password token or YubiKey.
We have multiple levels of security and application separation. Starting
from Web application firewalls provided by Incapsula monitoring all incoming web
traffic and going through to multiple internal firewalls and security measures
as well as logical and physical compartmentalisation of all key applications.
External penetration tests are regularly performed by a highly regarded penetration
testing firm with extensive experience in testing financial institutions and ecommerce
How we keep you safe
Coinfloor takes its clients safety very seriously.
It is our responsibility to safeguard our services from
being used for money laundering and the facilitation of terrorist financing.
It is for this reason that we require all of our customers to go through
an application and verification process to become a Coinfloor client before
they are formally engaged with Coinfloor. Other safeguards including ongoing
monitoring and flagging of suspicious activities are also put in place
in order to protect Coinfloor and our clients.
Data Protection: Coinfloor stores client information
to the highest of standards.
All the information supplied by you is transmitted
via Transport Layer Security (TLS) protocol. Once we have received your
information, we use strict procedures and security processes to prevent
any unauthorised access. Your data can only be accessed by authorized
Coinfloor staff who are required to keep the information confidential
and have passed a criminal background check as part of the joining process.
Two-Factor Authentication: We believe that Two-Factor
Authentication (2FA) should be a required standard for any financial
services company. Passwords alone are insecure and in order to follow the
“something you have” and “something you know” standard of security, we
require the use of 2FA for all users, all of the time.
CFE Limited Portland House PO Box 204 GX11 1AA, Gibraltar
CFE Limited is a company registered in Gibraltar (number 116367). CFE Ltd. is a regulated DLT provider
licensed by the Gibraltar Financial Services Commission under the Investments and
Financial Fiduciary Services Act.
Our registered address is Portland House, Glacis Road, PO Box 204, GX11 1AA, Gibraltar.
The information on this website is not directed at residents of
the United States, Canada, France, Belgium, Germany, Singapore, Australia
or any other jurisdiction where Cryptocurrency trading is restricted
or prohibited by local laws or regulations.
Trading and investing in cryptocurrency involves risk and is not suitable for everyone. Ensure you understand the risks.