YOUR KEYS, YOUR COINS
We will never ask for a private key to any of your wallets, nor do we want to store them.
When connecting to an exchange, we only receive the permissions you grant to us. If you don't want to use a feature, simply disable the setting on your API key.
Your sensitive information is encrypted using the AES-256 standard with a key unique to each encrypted field. AES is the first and only publicly accessible cipher approved by the U.S. National Security Agency (NSA) for top secret information.
Additionally, we only send and receive data over secure connections like TLS.
We use multiple layers of security to safeguard your information, requiring two-factor authentication as well as email verification before enabling exchange connections or trading.
IP whitelists and FIDO/U2F authentication are also on the roadmap to take your security to the next level.
We are a small team but we care deeply about your safety and security. If you find a bug or a security oversight in the app, we will be eager to solve the problem with you.
We promise to be fully transparent about any possible exploit or breech discoveries as they may arise.