Security

How we protect your crypto assets and personal information

Security is our top priority. We employ institutional-grade security measures to protect your assets and data. We'd rather be slow and bulletproof than fast and vulnerable.

Cold Storage

The vast majority of customer assets are held in cold storage—offline wallets that are physically isolated from the internet. Only a small percentage is kept in hot wallets for operational liquidity.

  • 95%+ of assets in cold storage
  • Geographically distributed storage
  • Bank-grade physical security

Multi-Signature Wallets

All significant transactions require multiple signatures from different key holders. No single person can unilaterally move funds. This protects against both external attacks and internal threats.

  • M-of-N signature requirements
  • Distributed key holders
  • Hardware security modules (HSMs)

Insurance Coverage

We maintain comprehensive insurance coverage for digital assets held on our platform. This covers losses from theft, hacking, or security breaches—providing an additional layer of protection for your assets.

  • Digital asset insurance
  • Crime and theft coverage
  • Professional liability insurance

Regular Security Audits

We undergo regular security audits from reputable third-party firms. Our smart contracts, infrastructure, and processes are continuously reviewed and tested for vulnerabilities.

  • Third-party penetration testing
  • Smart contract audits
  • SOC 2 compliance (in progress)

Security Practices

24/7 Monitoring

Continuous monitoring of all systems and transactions for suspicious activity.

Two-Factor Authentication

Required 2FA for all account access and sensitive operations.

Bug Bounty Program

We reward security researchers who responsibly disclose vulnerabilities.

Encrypted Data

All sensitive data is encrypted at rest and in transit using industry standards.

Employee Security

Background checks, security training, and strict access controls for all staff.

Disaster Recovery

Comprehensive backup and recovery procedures to ensure business continuity.

Protect Your Account

While we take extensive measures to protect your assets, account security is a shared responsibility. Here's what you can do:

Use a strong, unique password for your account
Enable two-factor authentication (2FA)
Never share your login credentials with anyone
Be wary of phishing emails and fake websites
Keep your devices and software up to date
Report suspicious activity immediately

Report a Security Issue

If you discover a security vulnerability or suspect unauthorized access to your account, please contact us immediately. We take all security reports seriously.

Contact Security Team