Building a regulated digital asset platform in-house typically means long delivery cycles, heavy compliance engineering, and high execution risk — before the first offering ever goes live.
Asset Haus is a white-label, on-premise platform for compliant issuance, investor onboarding, registry/cap table, and controlled secondary activity — delivered with full source code.
Designed for banks, broker-dealers, fund managers, family offices, and regulated digital asset operators, Asset Haus lets you launch under your own brand while keeping full control of infrastructure, data, and technology.
Integration-ready — API-first (REST + Webhooks + WebSockets), SSO (SAML/OIDC), and export paths to your security/monitoring stack.
Commercial Snapshot
Perpetual on-premise license + maintenance — no per-user or per-transaction fees.
Optional modules available (e.g., orderbook trading, DeFi/yield modules, mobile apps, multi-tenant setups), activated per tenant and jurisdiction profile.
Evidence packs and control mappings support audit preparation and licensing readiness — they do not replace jurisdiction-specific legal counsel.
Typical timeline: pilot in weeks; production go-live commonly 10–15 weeks, depending on integrations, security reviews, and regulatory sign-off.
Why Asset Haus
Launch faster without sacrificing controlAccelerate time-to-market with a production-ready foundation that you deploy and operate in your own environment. Pilot in weeks; production go-live commonly 10–15 weeks.
Full source code deliveryReceive the complete codebase to audit, extend, and maintain independently. No vendor lock-in.
Built for regulated operationsMaker-checker workflows, segregation of duties, role-based governance, and end-to-end audit trails across onboarding, investing, transfers, and admin actions.
Compliance configuration by jurisdictionConfigurable rulesets and evidence-pack documentation to support multi-jurisdiction deployments and audit preparation.
Transfer-agent-grade registryCap table as the system of record with controlled updates, on-chain reconciliation, and export-ready reporting.
API-first extensibilityIntegrate KYC, custody, signing, payment rails, IAM/SSO, and back-office systems via versioned APIs and event-driven webhooks.
Section 01
Core Platform Capabilities
Everything below is included in the Core Edition license.
1.1 Deal Issuance & Offering Management
Launch compliant offerings with a structured, approval-gated workflow:
Deal creation wizard — issuers configure offering terms, eligibility rules, investment limits, and documentation in a guided flow.
Approval workflow — every deal goes through a maker-checker approval process before publication.
Virtual Data Room (VDR) — secure document storage with role-based access tiers, download tracking, and integrated e-signing (DocuSign, Adobe Sign).
Deal discovery — investors browse, search, and filter live offerings with rich deal pages. Curated collections group related offerings.
Configurable eligibility — restrict deals by KYC level, accreditation status, geography, investor class, or custom rules.
Token economics — configure vesting schedules, cliff periods, unlock events, and distribution rules per deal.
Dividend distribution — create, configure, and execute dividend payments to token holders via the cap table.
Corporate actions — token splits, conversions, and other holder-level actions with full audit trail.
Investor Q&A — deal-level comments and inquiry threads between investors and issuers.
Deal lifecycle — full management from draft through active to closed, with audit trail at every stage.
Supported asset classes: Tokenized equity, debt, real estate, fund tokens, commodities, crowdfunding offerings. The framework is asset-agnostic.
Token standards: ERC-20, ERC-1400 (partitioned securities), ERC-3643 (T-REX identity-linked compliance tokens). Deployable on any EVM-compatible blockchain.
Multi-currency: deals denominated in any fiat currency (USD, EUR, AED) with currency-specific formatting and reporting.
Deal page — investor view with offering terms, documents, and investment action
Deal creation wizard — issuer-facing guided flow for configuring offerings
1.2 Investor Onboarding & KYC/AML
Automated, provider-driven compliance onboarding:
Progressive verification — each level programmable with auto-advance rules
Progressive verification pipeline — multi-level onboarding from registration through accreditation. Each level is programmable with auto-advance rules.
KYC integration — pluggable providers (Sumsub, ShuftiPro, or your choice) with automated identity verification.
AML transaction monitoring — real-time monitoring with configurable thresholds, velocity analysis, and automated alert escalation.
CTR/SAR filing — automated report creation for threshold-exceeding transactions with filing management and export.
Sanctions & PEP screening — automated watchlist screening at onboarding and on an ongoing basis.
Wallet screening — blockchain analytics integration for wallet risk assessment.
Geo-blocking — jurisdiction-level restrictions with configurable rules and access logging.
Enhanced Due Diligence (EDD) — additional document requests for high-risk investors or redemptions.
Travel Rule compliance — threshold-based data collection and counterparty information exchange.
Compliance snapshots — automated pre-transaction checks with evidential records.
Investor onboarding — registration and verification flow
Segregation of duties — conflicting roles cannot be assigned to the same user.
Role applications — structured application process for elevated roles with admin review.
Audit logging — every action logged with actor identity, tenant context, and before/after snapshots.
Section 02
Optional Modules
Each module is licensed separately and can be activated at any time after initial deployment.
2.1 Professional Orderbook (CLOB)
For clients holding a trading venue license — a full exchange-grade matching engine:
Real-time central limit orderbook with Level 2 market depth
Limit and market orders with time-in-force options (GTC, IOC, FOK, GTD)
Price protection, slippage controls, and circuit breakers
DvP settlement — atomic on-chain settlement via smart contract
Candlestick charts across 7 intervals with 24h rolling market stats
Sub-second matching with deterministic event replay
Professional orderbook — exchange-grade trading interface with Level 2 depth and order management
2.2 DeFi Modules
Staking — flexible and fixed staking with tier progression, multiplied rewards, priority deal access, and configurable fee structures.
Lending Protocol — supply and borrow with configurable interest rate models, collateral factors, liquidation thresholds, and platform-controlled risk parameters.
2.3 Community Connect — Internal Social Network
Platform-internal investor community: social feed, user profiles, follow/discover, engagement (like, comment, share), trending topics, investment groups, privacy controls, and content moderation.
2.4 AI-Powered Investor Assistant
Read-only AI agent for investor self-service: portfolio queries, platform guidance, compliance-safe operation, automatic ticket handoff, and 24/7 availability.
2.5 Mobile Applications (iOS + Android)
Branded mobile apps published under your name to App Store and Google Play. Full platform parity, instant OTA updates, push notifications, biometric authentication. Source code and build pipeline included.
Mobile app — iOS
Mobile app — Android
2.6 Multi-Tenant Operations
Operate multiple brands, jurisdictions, or business units from a single deployment: independent configuration, strict tenant isolation, separate branding/domains, instant provisioning.
White-label — Tenant A with custom brand, colors, and domain
White-label — Tenant B on the same deployment
2.7 Additional Modules
Redemption Gate — investor-initiated token-to-equity/cash conversion with multi-step approval and audit trail.
OTC Trading — bilateral negotiated trades with compliance and transfer-agent settlement workflows.
Client API keys — programmatic access with configurable scopes and rate limits.
API documentation — full OpenAPI specification with role-based endpoint documentation.
4.2 Integration Models
Model
Description
Standalone white-label
Complete branded platform on your infrastructure
Headless / API-only
Backend as investment engine behind your existing application
Widget embedding
Embed specific modules (deal pages, KYC, portfolio) into your frontend
SSO integration
Connect to your identity provider (SAML, OIDC)
Section 05
Regulatory & Compliance Coverage
Core license includes 1 evidence pack. Additional packs are available as Professional Services. Evidence packs support licensing readiness and audit preparation — they do not constitute legal advice.
Crypto Asset Frameworks
Framework
Jurisdiction
MiCA (CASP)
European Union
VARA (VASP)
Dubai, UAE
MAS Payment Services Act
Singapore
ADGM FSRA
Abu Dhabi, UAE
DIFC
Dubai IFC, UAE
CBB Crypto-Asset Module
Bahrain
DASP
El Salvador
Securities & Crowdfunding Frameworks
Framework
Jurisdiction
ECSPR
European Union
SEC Regulation D
United States
MiFID II Investment Firm
European Union
MiFID II MTF
European Union
FCA Investment Firm
United Kingdom
Cross-Cutting Standards
Standard
Coverage
GDPR
Data protection, DSAR workflows, consent management
Data residency guarantee — all platform data resides exclusively within your chosen infrastructure and jurisdiction. No external telemetry, no cloud callbacks.
Container images — OCI-compliant containers for application, API, workers, and background services.
Helm charts — production-ready Kubernetes manifests with configurable resources and health checks.
Infrastructure-as-code — Terraform modules for cloud or on-premise provisioning.
Backup & DR — automated backups with point-in-time recovery and documented RPO/RTO targets.
Monitoring — Prometheus metrics and Grafana dashboards for health and business KPIs.
High availability architecture — multi-replica deployments with health checks, auto-restart, and rolling updates. HA configuration provided; uptime depends on operator infrastructure.
6.2 Air-Gap & Restricted Network Support
Mirrored container registries for fully offline deployment
Self-hosted alternatives for all external dependencies
Air-gapped treasury signing with offline transaction preparation
6.3 Infrastructure Requirements
Profile
Specifications
Use Case
Standard
24 vCPU, 80 GB RAM, 800 GB storage
Single tenant, moderate traffic
Enterprise HA
36+ vCPU, 120 GB RAM, 1.2 TB storage
Multi-tenant, high availability
6.4 Blockchain Support
EVM-compatible networks (Ethereum, Polygon, Arbitrum, BSC, and more)
No vendor lock-in — source code, operate independently after deployment
8.2 Optional Modules
Module
Licensing
Professional Orderbook (CLOB)
Separate license
DeFi: Staking + Lending
Separate license
Community Connect (Social Network)
Separate license
AI Investor Assistant
Separate license
Mobile Apps (iOS + Android)
Separate license
Multi-Tenant Operations
Separate license
Redemption Gate
Separate license
Additional Evidence Packs
Per framework
Additional Blockchain Networks
Per network
8.3 Support & SLA
Commitment
Target
Critical incident response
Within 1 hour
Non-critical support
Within 1 business day
Scheduled maintenance
72 hours advance notice
Security patches
Critical: 24h · High: 72h
Platform uptime is a shared responsibility between Asset Haus (application reliability, patches, HA architecture) and the operator (infrastructure, networking, monitoring). The platform is architected for 99.9%+ availability when deployed on the reference HA infrastructure.
8.4 Professional Services
Service
Description
Deployment & hardening
Environment setup, security hardening, production readiness
Integration implementation
KYC, blockchain, custody, email, and SSO integration
Staging environment, test execution, stakeholder validation
Production Go-Live
2–3 weeks
Cutover, operational handover, monitoring setup
Typical timeline: pilot in weeks; production go-live commonly 10–15 weeks, depending on integration complexity, security reviews, and regulatory sign-off.
Build vs. Buy
Factor
Build In-House
Asset Haus Core
Time to production
18–24+ months
10–15 weeks
Compliance evidence packs
Built from scratch
Available for 13+ frameworks
Ongoing team
8–15 engineers full-time
Existing ops + optional support
Regulatory updates
Internal legal + engineering
Maintained with license
Risk
Unproven architecture
Production-tested platform
Source code
Full ownership
Full ownership (perpetual license)
Section 10
What You Receive
A fully operational, turnkey platform deployed on your infrastructure — not just source code. The delivery includes dedicated DevOps and integration engineering time to get you to production.
Turnkey Delivery
Fully deployed & operational platform — Asset Haus engineers deploy, configure, and harden the platform on your infrastructure. You receive a working production system, not a codebase to assemble.
DevOps engineering included — infrastructure provisioning, Kubernetes setup, CI/CD pipelines, monitoring configuration, and production hardening are performed by our engineering team as part of the delivery.
Integration engineering included — KYC provider integration, blockchain configuration, custody/signing setup, email infrastructure, and SSO connection are implemented by our team during the pilot phase.
Workflow customization — compliance flows, deal approval chains, investor onboarding steps, and business rules are configured to your specific requirements before handover.
Key generation & custody on your side — all cryptographic key generation and storage is performed on your infrastructure via HSM, MPC, or your chosen key management solution. Asset Haus never holds or has access to private keys.
Source Code & Repositories
Repository
Contents
Stack
Platform Frontend
Investor portal, issuer dashboard, admin panel
Next.js 15, React, TypeScript, Tailwind CSS
API Server
Business logic, REST API, WebSocket, workers
Node.js, Express, TypeScript
Smart Contracts
Escrow, token lifecycle, sale contracts
Solidity, Hardhat
Mobile App(optional)
iOS + Android with build pipeline
React Native, Expo
What Is Not Included
Hosting infrastructure (you provide or procure)
Third-party service accounts and fees (KYC, blockchain RPC, email, custody, e-signature)
Regulatory licenses (platform supports licensing — obtaining licenses is the operator's responsibility)
Legal counsel and jurisdiction-specific legal opinions
Penetration testing execution (platform is pen-test ready; testing arranged by operator)
Section 11
Legal Disclaimer
This document is technical and commercial information for pre-sales evaluation. It is not legal advice. Regulatory requirements vary by jurisdiction and may change. The non-custodial architecture and compliance tools described herein may simplify licensing requirements in certain jurisdictions but do not guarantee exemption from custodial or other regulatory obligations. Final licensing, jurisdiction suitability, and regulatory compliance must be validated by qualified legal counsel.
Appendix A
Feature Matrix
Core Platform (Included in Core License)
Capability
Status
User registration (email + wallet)
Available
Wallet-based authentication + MFA
Available
Role-based access control (9 roles)
Available
KYC integration (Sumsub, ShuftiPro)
Available
AML transaction monitoring & CTR filing
Available
Sanctions & PEP screening
Available
Travel Rule compliance
Available
Deal creation, approval, and lifecycle
Available
Virtual data room (VDR) with e-signing
Available
Direct + escrow-protected investment
Available
Investor registry (cap table) with on-chain reconciliation
Available
P2P secondary transfers with compliance gates
Available
Portfolio, fund performance (IRR, MOIC, TVPI)
Available
Security token standards (ERC-1400, ERC-3643)
Available
Multi-currency deal denomination
Available
White-label branding & custom domain
Available
API versioning & webhook guaranteed delivery
Available
Compliance operations center & audit logs
Available
Data residency / sovereignty controls
Available
Sandbox / testnet environment
Available
Fiat payment rails (bank wire, SEPA, card)
Integration
Institutional custody (Fireblocks, BitGo)
Integration
Optional Modules (Licensed Separately)
Module
Status
Orderbook trading (CLOB) + DvP settlement
Available
Staking and tier progression
Available
Lending protocol
Available
Community Connect (social network)
Available
AI investor assistant
Available
Mobile app (iOS + Android)
Available
Multi-tenant operations
Available
Redemption gate
Available
OTC trading
Available
Marketing & growth tools
Available
Appendix C
Technical Architecture
Logical Topology
Platform architecture — on-premise deployment with full data sovereignty
Scalability
Horizontal scaling — stateless API and worker tiers scale independently via Kubernetes HPA.
Database — PostgreSQL with read replicas, connection pooling, and partitioned audit tables.
Real-time — Redis-backed pub/sub and WebSocket layer handles thousands of concurrent connections.
Background processing — worker-based job queues decouple heavy operations from the request path.
Security Highlights
Defense in depth with zero-trust network model
TLS 1.3 in transit, AES-256 at rest
JWT session management with HttpOnly, Secure, SameSite cookies
Kubernetes pod security (non-root, read-only filesystem)
Comprehensive audit logging with tamper-resistant storage
Structured logging across 8 categories: authentication, KYC, compliance, deals, investments, transfers, admin actions, system events. Every entry includes tenant context, actor identity, timestamp, and before/after snapshots. Exports available for SIEM integration.
Appendix D
Glossary
Term
Meaning
Tenant
Logically isolated client environment within the platform
Maker-checker
Two-person approval: one submits, another approves
Cap table
System of record for token/share holders, positions, and ownership
CLOB
Central Limit Order Book — professional-grade trading engine
DvP
Delivery vs. Payment — atomic on-chain settlement
Escrow
Smart contract holding funds until release conditions are met
