Security & Compliance
Security is the product.
Recovery Index is built with the same controls used by regulated banks and custodians — from HSM-backed key management to continuous SOC monitoring.
Encryption everywhere
AES-256 at rest, TLS 1.3 in transit, envelope encryption via AWS KMS.
Audited controls
SOC 2 Type II, ISO 27001, and PCI DSS Level 1 controls in production.
Continuous monitoring
Chainalysis and rule-based transaction monitoring, 24/7 SOC.
Strong authentication
Passkeys, WebAuthn, TOTP, biometric MFA, and device attestation.
Isolation by design
Segregated customer funds and per-tenant key material.
Compliance program
Global AML/KYC program with Onfido and sanctions screening.
Attestation
SOC 2 Type II
Attestation
ISO 27001
Attestation
PCI DSS Level 1