Liquify has successfully completed ISO 27001 certification, the internationally recognised standard for information security management systems (ISMS). This certification confirms that we operate a formal, continuously maintained framework for managing and protecting information assets across our infrastructure, operations, and client services.
It is a milestone we have been working towards for some time, and one that reflects a core principle of how we build and run infrastructure.
What Is ISO 27001?
ISO/IEC 27001 is the global benchmark for information security management. It requires organisations to identify risks, implement controls, and demonstrate ongoing improvement across all aspects of data and systems management. Certification means an organisation has been independently verified to manage risks to the confidentiality, integrity, and availability of its information assets in a structured, auditable way.
Maintaining certification requires ongoing surveillance audits, internal reviews, and continuous improvement, which means the standard is not about reaching a bar but staying above it.
The Process
Completing the certification was a long process. It required a thorough, multi-month programme covering risk assessment, policy development, technical controls implementation, staff training, and internal auditing, all before the formal external assessment.
Every part of our operation was examined: how we handle physical access to data centres, how we manage cryptographic material, how we onboard and offboard team members, how we detect and respond to incidents, and how we evaluate suppliers and third-party services. The result is a living framework embedded into how we work day to day.
“Getting ISO 27001 across the line was a long process, and deliberately so. We wanted to build something that reflects how seriously we take the security of our infrastructure and our clients’ assets. When you are running validators, managing private keys, and processing billions RPC requests daily, there is no room for ambiguity in how you handle security. This certification formalises what has always been a core part of how we operate.”
Andy, Founder, Liquify
Scope of Certification
Our ISMS covers the full breadth of Liquify’s core operations, including:
Protection of private keys and cryptographic material
Node and validator infrastructure across our global data centre footprint
RPC services processing 2+ billion daily requests
Internal systems, access controls, and operational procedures
Incident detection, response, and recovery protocols
What This Means for Our Clients and Partners
For existing clients, this certification formalises the security posture that already underpins the services you use. It provides documented, auditable assurance that the infrastructure handling your workloads meets a recognised international standard.
For enterprise partners evaluating Web3 infrastructure providers, ISO 27001 is often a baseline requirement. Achieving it opens doors that have historically been closed to crypto-native companies, and positions Liquify to work with institutions that hold security to the same standard we do.
Looking Ahead
ISO 27001 is one component of our broader commitment to operational maturity. As we expand our network coverage beyond 90+ supported blockchains and deepen our relationships with institutional partners, certified security practices provide the foundation for sustainable growth. We will undergo regular surveillance audits to maintain certification and will continue to evolve our controls as both the threat landscape and the regulatory environment develop.
For enquiries related to our infrastructure services or security practices, get in touch with us.
About Liquify
Liquify Ltd is a UK-based, certified Infrastructure-as-a-Service (IaaS) provider founded in 2021. We operate a network of proprietary bare-metal servers across the globe, offering decentralised infrastructure that is highly secure, efficient, and customised for blockchain foundations and institutional clients.
