v4.2 · LIVE IN PRODUCTION Cloud-native brokerage core

The operating core
for a modern brokerage.

Zion Ecosystem is the brokerage backbone built for Paraguay's capital markets, a Kotlin-native core, a white-label investor portal, a branded mobile app, and a unified admin console. Production-ready. Security-first. Engineered to clear real-world flow without flinching.

Request a demo See architecture SOC2 · ISO 27001 aligned
99.99%
Targeted uptime SLA
<40ms
Order routing latency
4 modules
Core · Portal · Mobile · Admin
100%
Kotlin / JVM stack
Built to comply with
Local & international standards
01 / The ecosystem
/ products

Four products. One platform.
Everything a brokerage house needs to operate.

Run the entire business on a single, coherent stack, from the matching surface and back-office, to the apps your investors hold in their hand. White-labeled, configurable, deployed in your cloud or ours.

01 / CORE

Brokerage Core

The transactional heart of the operation. Order management, post-trade lifecycle, custody reconciliation, settlement and ledger, all under a single source of truth.

  • Multi-asset OMS, equities, fixed income, FX, repos
  • Double-entry ledger with atomic settlement
  • BVA gateway, FIX 4.4 connectivity, custodian APIs
  • Event-sourced, every state change is reconstructable
14:32:08 order.received #PY-04412 · BVA · BUY 1,200 ITAU ACK
14:32:09 routing.sent BVA · session A · seq 8821 SENT
14:32:10 fill.partial 780 @ Gs. 24,150 · slippage 0.02% PARTIAL
14:32:10 fill.complete 420 @ Gs. 24,200 · vwap 24,167 FILLED
14:32:11 settlement.T+2 scheduled 2026-05-22 · custodian SYNC QUEUED
02 / WEB

Investor Portal

A white-label web experience your clients can trust. Onboarding, portfolio, statements, orders, under your brand.

Total portfolio 30D 1A 5A
Gs. 1,284,450,200 + 4.82%
Equities Fixed income Funds Cash
03 / MOBILE

Mobile App

iOS & Android, white-labeled for your firm. Biometric login, push-confirmations, order entry, statements on the go.

Portfolio ● Live
Gs. 1.28+4.82%
Last order
ITAU · BUY 1,200
FILLED · 14:32
TRADE
04 / ADMIN

Central Admin

One console for the operators of the firm: traders, compliance, risk, finance, support. Permissions are granular; every action is audited and signed.

Operations Risk Compliance Clients Reports
Order Client Symbol Qty Status Latency
#PY-04412 L. Benítez ITAU 1,200 FILLED 38ms
#PY-04411 R. Vázquez BBPY 4,500 PARTIAL 41ms
#PY-04410 M. Acosta SOL-2030 500 FILLED 36ms
#PY-04409 C. Cardozo UPBV 2,100 FILLED 29ms
02 / Under the hood
/ architecture

Engineered on the JVM. Built for the cloud.

Zion is written in Kotlin, a typed, modern language that runs on the most battle-tested runtime in finance. The stack is containerised, horizontally scalable, and deploys to any Kubernetes-compliant environment, in any cloud, in any datacentre.

Client surface WEB · iOS · ANDROID
Investor Portal
Mobile (iOS/AND)
Admin Console
↓ mTLS + OAuth 2.1
Edge API GATEWAY
Rate limit
JWT verify
Zion Core · Kotlin / JVM DOMAIN SERVICES
OMS
Ledger
Risk
Settlement
↓ event bus · idempotent
Persistence STATEFUL
PostgreSQL HA
Kafka
↓ FIX 4.4 · ISO 20022
Market integrations EXTERNAL
BVA
Custodians
Banks · SPI

  • Cloud-native by design

    Stateless services, externalised configuration, health-aware deploys. Scale a single module, OMS, ledger, KYC, without touching the rest.

  • Event-sourced ledger

    Every state change is a recorded, immutable event. Reconstruct any account, any portfolio, at any point in time. Audit is not an afterthought; it is the substrate.

  • Resilience as a feature

    Circuit breakers, bulkheads, retries with exponential backoff, idempotency keys end-to-end. The system degrades gracefully, it does not surprise.

  • Open by interface

    REST and gRPC for partners. FIX 4.4 for exchanges and counterparties. ISO 20022 messaging for banks. Webhooks for everyone else.

  • Deployable anywhere

    Kubernetes-native helm charts. Run it in AWS, GCP, Azure, OCI, or on-premise on your own metal, same artifact, same behaviour, same SLAs.

03 / Security-first
/ trust model

Security is not a feature.
It is the foundation.

Zion is designed assuming the network is hostile, the keys are precious, and the regulator is watching. Defence in depth, least privilege, complete observability, applied to every component, every flow, every line.

A.01 / Identity

Kotauth · OAuth 2.1 · OIDC · WebAuthn

Powered by Kotauth, our in-house identity platform. Phishing-resistant multi-factor by default. Hardware-backed keys on the admin tier. Per-tenant identity boundaries, never shared.

FIDO2 · TOTP · BIOMETRIC
A.02 / Cryptography

Encrypted everywhere

TLS 1.3 in flight, AES-256-GCM at rest, envelope encryption with KMS-managed keys. PII is tokenised; the database never sees plaintext.

AES-256-GCM · TLS 1.3 · HSM-BACKED
A.03 / Access

Zero-trust, least-privilege

Granular RBAC down to the field. Every action signed and audited. Maker-checker enforced on funds movement and configuration changes.

RBAC · ABAC · MAKER-CHECKER
A.04 / Observability

Complete audit trail

Structured, signed, tamper-evident logs. Distributed traces on every order. Real-time anomaly detection on flows, balances, and access patterns.

OPENTELEMETRY · WORM · SIEM-READY
A.05 / Resilience

Built to survive

Active-active across availability zones. RPO < 60s, RTO < 15min. Chaos-tested. Game-days quarterly. The system is rehearsed, not just deployed.

RPO < 60s · RTO < 15min · MULTI-AZ
A.06 / Compliance

Regulator-ready out of the box

SIV reporting, SEPRELAD AML controls, transaction monitoring, sanction screening. Reports generated, signed, and shipped on schedule.

SIV · SEPRELAD · FATF
99.99%
Targeted uptime
Active-active across zones, observed monthly.
<40ms
Median order latency
Ingest → risk → routed to BVA.
60s
RPO recovery point
Continuous replication, multi-AZ.
24/7
Operations & support
On-call SRE, monitored from Asunción.
04 / Built for Paraguay
/ local fit

A platform that speaks guaraní, and the regulator's language.

Zion is not a translated import. It is conceived for the Paraguayan market, its instruments, its currencies, its settlement cycles, its reporting cadence, its tax regime, and its compliance bodies.

  • 01
    Multi-currency, native PYG FX-aware ledger; clean handling of Gs., USD, ARS and BRL with intraday revaluation.
  • 02
    BVA-integrated Native connectivity to the Bolsa de Valores de Asunción, including equities, fixed income and repo operations.
  • 03
    Local instruments CDA, treasury bonds, sovereign and sub-sovereign debt, mutual funds, structured products, modelled correctly.
  • 04
    SET / IVA-aware Withholdings, retentions and VAT on commissions are computed and booked, not retrofitted.
  • 05
    SIV reporting Daily, monthly and event-driven reports generated and signed for the Superintendencia de Valores.
  • 06
    SEPRELAD AML Transaction monitoring, ROS workflow, sanction lists, and PEP screening, integrated, not bolted on.
For us it was unthinkable to adopt a core that didn't understand PYG, the SIV, or how the BVA really operates. Zion understands all of that because it was born here.
M
Operations Director
BROKERAGE FIRM · ASUNCIÓN
Get started

Ready to run the firm on Zion?

30-minute architecture call with our team. Walk through your operation, your compliance posture, and your timeline, leave with a tailored deployment plan.

Request a demo Read the technical brief
ASUNCIÓN · PARAGUAY · ZION.PY