Crestmont's security framework is built on regulatory requirements, not marketing claims. Every layer documented. Every obligation met.
Operating a cryptocurrency exchange in the United States requires registration and compliance across multiple regulatory frameworks simultaneously. Here's exactly how Crestmont is positioned.
Ethio American LLC is registered with the Financial Crimes Enforcement Network as a Money Services Business. This registration is a federal requirement for entities engaged in money transmission, including cryptocurrency exchange services.
View Compliance DocumentationCrestmont maintains a written BSA/AML compliance program covering internal controls, independent testing, designated compliance personnel, and ongoing training. Recordkeeping and reporting obligations are met under 31 CFR Chapter X.
Our Customer Identification Program (CIP) complies with USA PATRIOT Act Section 326 requirements. Identity verification is mandatory for all account holders before any transactions are permitted.
State-level money transmission licensing requirements vary. Crestmont services are only offered in states where Ethio American LLC holds applicable authorization. Services may not be available in all states.
Every Crestmont account requires identity verification before any transaction is processed. This isn't just a regulatory checkbox — it's a fundamental principle of how we operate. Verified identity protects the integrity of the platform and the security of every account holder.
All data in transit protected by current TLS standards. Certificates managed and renewed on schedule. No unencrypted data transmission permitted.
Account data, transaction records, and wallet information encrypted at rest using AES-256 standards. Database access controlled and audited.
MFA required for all account access. TOTP-based second factor supported. Session management with automatic timeout on inactivity.
Role-based access control for all internal systems. Principle of least privilege applied. All administrative access logged and monitored.
Independent security review processes conducted on schedule. Findings addressed with documented remediation timelines.
Platform hosted on redundant infrastructure with documented business continuity procedures. Regular backup verification and recovery testing.
Unauthorized or erroneous transactions can be reported to Crestmont for investigation. Contact support@crestmont.co.com or call +1 (941) 955-7859 within a reasonable time of discovering the error. We will investigate and respond within applicable timeframes.
Submit complaints in writing to support@crestmont.co.com or by mail to 539 S Orange Ave, Sarasota, FL 34236. Complaints are logged, reviewed, and responded to. Unresolved complaints may be escalated to applicable state regulators.
Certain transactions may be cancelled within applicable timeframes under state law. Review the Terms of Use for specific cancellation policies applicable to exchange and transfer transactions.