how it works
when you create a wallet:- private key is encrypted immediately with AES-256-GCM
- encrypted keys are stored in our database
- keys are decrypted only at the moment of transaction signing
- after signing, the decrypted key is discarded from memory
storage
- encrypted at rest - keys are never stored in plaintext
- decrypted on-demand - only when you execute a trade
- your telegram ID - used as part of the encryption key derivation
best practices
backup your keys
backup your keys
use the export key function in wallets to save your private keys somewhere safe. store them offline.
don't keep large amounts
don't keep large amounts
keep only what you need for active trading. move profits to a hardware wallet or exchange.
check before you trade
check before you trade
always verify token contract addresses before buying. we show you info but can’t guarantee a token is legitimate.
never share your key
never share your key