Lunor Capital has committed to two primary cybersecurity standards, each serving distinct yet complementary roles in safeguarding the platform:

We collect information to provide and improve our services, including cloud mining, fractional investing, and tools like Stake-to-Mine. The types of information we collect include:

1.1 Personal Information: Information that can identify you, such as:

• Definition and Purpose: CCSS is a set of requirements specifically tailored for securing cryptocurrency systems, such as exchanges, web applications, and storage solutions. It standardizes techniques for global systems, aiding end-users in making informed decisions about which platforms to trust.

• Details: The latest version, 9.0, was published on December 17, 2024, and is maintained by the CCSS Steering Committee to ensure alignment with industry best practices. It complements existing standards like ISO 27001 but is not a replacement, requiring knowledgeable security professionals for implementation.

• System Types and Certification Levels: CCSS applies to Self-Custody systems, Qualified Service Providers (QSPs), and Full Systems, with certification levels ranging from Level 1 to Level 3, indicating increasing security robustness. Systems, not entities, are certified, and audits evaluate 41 aspect controls.

• Audit Process: Audits are conducted by CryptoCurrency Security Standard Auditors (CCSSAs), covering the 12 months prior to the audit, and are reviewed annually by a CCSSA-Peer Reviewer, with disputes arbitrated by the CCSS Steering Committee. Audit fees are determined between the CCSSA and the entity, including Listing Fees and CCSSA-PR fees.

• Relevance to Lunor Capital: Given Lunor Capital’s focus on cloud mining and staking, CCSS ensures the security of private keys and cryptographic operations, critical for protecting user investments.

• Definition and Purpose: ISO 27001 is the international standard for Information Security Management Systems (ISMS), providing guidance for establishing, implementing, maintaining, and continually improving information security. It helps organizations manage risks related to sensitive data, including financial and personal information.

• Details: Published as ISO/IEC 27001:2022, it is widely recognized across industries, including cryptocurrency, as evidenced by platforms like Flipster, Fireblocks, and CoinTracking achieving certification. It includes risk assessments and continuous improvement, making it essential for managing cyber-risks in a dynamic environment.

• Relevance to Lunor Capital: ISO 27001 ensures that Lunor Capital systematically manages user data and financial information, aligning with global best practices and enhancing user trust. It complements CCSS by addressing broader information security needs beyond cryptocurrency-specific operations.

• Audit Process: Audits are conducted by CryptoCurrency Security Standard Auditors (CCSSAs), covering the 12 months prior to the audit, and are reviewed annually by a CCSSA-Peer Reviewer, with disputes arbitrated by the CCSS Steering Committee. Audit fees are determined between the CCSSA and the entity, including Listing Fees and CCSSA-PR fees.

• Relevance to Lunor Capital: Given Lunor Capital’s focus on cloud mining and staking, CCSS ensures the security of private keys and cryptographic operations, critical for protecting user investments.

Lunor Capital’s adherence to these standards translates into tangible benefits for users:

• Enhanced Security: Multi-layer encryption, two-factor authentication, cold storage, real-time intrusion detection, and secure transaction validation are underpinned by these standards, ensuring robust protection against threats.

• Trust and Credibility: Certifications under CCSS and ISO 27001 signal to users that Lunor Capital meets industry benchmarks, fostering confidence in the platform’s security measures.

• Continuous Improvement: Both standards emphasize ongoing audits and updates, ensuring Lunor Capital adapts to emerging threats and maintains high security levels.