Security you can verify
Funds segregated. Data encrypted. Audited 24/7. Here's exactly how we keep your account safe.
Segregated funds
Customer balances are held separately from operating capital with tier-1 banks and qualified custodians.
Two-factor auth
TOTP-based 2FA with one-time recovery codes. Strongly recommended on every account.
Withdrawal whitelist
Lock withdrawals to pre-approved addresses. Changes require email confirmation + cooldown period.
Encryption everywhere
TLS 1.3 in transit. AES-256 at rest. Hardware-backed key management for critical secrets.
Continuous monitoring
Anomaly detection on logins, transfers, and trading patterns. Suspicious activity is auto-flagged.
Independent audits
Annual penetration tests and quarterly compliance audits by independent third-party firms.
Found a vulnerability?
We run a responsible-disclosure programme. Please email us with reproduction steps before any public disclosure. Eligible reports receive a bounty and credit in our security hall of fame.