Yes. Bitpanda Enterprise Custody supports institutional governance controls through configurable roles, permissions, approval workflows, quorum requirements, audit history, and controlled operational processes.
The exact controls available to an organisation depend on its BE Custody configuration, custody model, enabled services, and agreed operational setup.
What are governance controls?
Governance controls are the rules, permissions, and processes used to determine who can access custody functions, who can approve activity, and how sensitive actions are reviewed before they proceed.
In an institutional custody environment, governance controls help organisations align custody activity with internal policies, risk controls, compliance requirements, and audit expectations.
What types of controls may be available?
Depending on the organisation’s setup, BE Custody may support controls such as:
- Role-based access
- User permission management
- Transaction creation permissions
- Transaction approval workflows
- Quorum approval requirements
- Wallet or policy-level controls
- Address or withdrawal controls
- Governance workflows for sensitive changes
- Audit history and reporting
- API access controls, where applicable
These controls help organisations define how custody activity should be performed and reviewed.
How do roles and permissions support governance?
Roles and permissions help organisations separate responsibilities between different users or teams.
For example, an organisation may separate responsibilities for:
- Senior organisational authority
- User administration
- Governance configuration
- Transaction creation
- Transaction approval
- Technical custody operations
- Controlled key lifecycle processes
This separation helps reduce concentration of authority and supports internal control requirements.
How do approval workflows support governance?
Approval workflows help ensure that sensitive actions are reviewed by authorised users before completion.
Depending on configuration, approval workflows may apply to:
- Asset withdrawals
- Transfers
- Governance changes
- User or role changes
- Address or policy changes
- Other sensitive custody workflows
Approval requirements may vary by wallet, asset, amount, workflow, or internal governance model.
How does quorum support governance?
Quorum approval can require more than one authorised user to approve an action before it can proceed.
This supports multi-user review and helps reduce the risk of a single user completing sensitive actions without appropriate oversight.
Each approver should perform an independent review and should not approve actions they do not recognise or cannot verify.
How does audit history support governance?
Audit history can help organisations review custody activity, support internal investigations, and evidence operational controls.
Depending on the organisation’s setup, audit history may support review of activity such as:
- User actions
- Transaction activity
- Approval decisions
- Governance changes
- Operational events
Audit and reporting features should be used alongside the organisation’s own internal control and record-keeping processes.
What should organisations review regularly?
Organisations should regularly review whether their custody controls remain appropriate.
This may include reviewing:
- User access
- Assigned roles and permissions
- Approval workflows
- Quorum requirements
- Address controls
- API access
- Reporting and audit requirements
- Internal escalation processes
- Former users or users who no longer require access
Controls should be updated when responsibilities, teams, operating models, or risk requirements change.
Can governance controls differ by organisation?
Yes. Institutional custody requirements vary.
Different organisations may have different approval models, segregation of duties, wallet structures, asset flows, integration requirements, reporting needs, and internal governance processes.
The BE Custody setup should reflect the organisation’s agreed custody model and internal control requirements.
What should I do if a governance control looks incorrect?
If a role, permission, approval workflow, quorum requirement, or governance setting appears incorrect, do not proceed with any related action until it has been reviewed.
Follow your organisation’s internal escalation process or contact Bitpanda Enterprise Custody Support through the approved support channel.
Do not include passwords, PINs, private keys, seed phrases, API keys, API secrets, or other sensitive authentication information in a support request.