🔒 Security & Privacy

Your safety is our top priority

Our Security Commitment

At STAKS, we employ industry-leading security measures to protect your data and ensure safe trading. As a non-custodial platform, we never hold your cryptocurrency or private keys, providing an additional layer of security.

Security Features

🔐 End-to-End Encryption

  • All data transmitted between your device and our servers is encrypted using TLS 1.3
  • Sensitive data is encrypted at rest using AES-256 encryption
  • Zero-knowledge architecture ensures we cannot access your private information

👤 Multi-Factor Authentication

  • Two-factor authentication (2FA) via SMS or authenticator apps
  • Biometric authentication (Face ID, Touch ID, fingerprint)
  • Device verification for new login attempts
  • Session management and automatic logout

🏦 Non-Custodial Architecture

  • STAKS never holds your cryptocurrency or funds
  • All assets remain with regulated broker partners
  • You maintain full control of your private keys
  • No single point of failure for asset storage

🛡️ Advanced Security Measures

  • Regular security audits by third-party experts
  • Penetration testing and vulnerability assessments
  • Real-time fraud detection and prevention
  • DDoS protection and rate limiting
  • Secure API endpoints with authentication

Privacy Protection

Data Minimization

We collect only the minimum data necessary to provide our services. We never sell your personal information to third parties.

Your Privacy Rights

  • Right to access your personal data
  • Right to correct inaccurate information
  • Right to delete your data (right to be forgotten)
  • Right to data portability
  • Right to opt-out of marketing communications

Compliance

STAKS complies with major privacy regulations including:

  • GDPR (General Data Protection Regulation) - EU
  • CCPA/CPRA (California Consumer Privacy Act) - USA
  • LGPD (Lei Geral de Proteção de Dados) - Brazil
  • PIPEDA (Personal Information Protection) - Canada

Best Practices for Users

Protect Your Account

  • Use a strong, unique password (12+ characters with mixed case, numbers, symbols)
  • Enable two-factor authentication immediately
  • Never share your password or 2FA codes with anyone
  • Use biometric authentication when available
  • Keep your app updated to the latest version

Recognize Phishing Attempts

  • STAKS will never ask for your password via email or phone
  • Always verify the sender's email address
  • Be cautious of urgent requests or threats
  • Check URLs carefully before clicking links
  • Report suspicious communications to privacy@staks.in

Secure Your Device

  • Keep your operating system and apps updated
  • Use device encryption and screen lock
  • Avoid using public Wi-Fi for trading
  • Install reputable antivirus software
  • Be cautious when downloading apps or files

Incident Response

In the unlikely event of a security incident:

  • We will notify affected users within 72 hours
  • We will provide clear information about the incident and impact
  • We will offer guidance on protective measures
  • We will work with authorities and security experts to investigate
  • We will implement additional safeguards to prevent future incidents

Regulatory Compliance

STAKS and our broker partners comply with:

  • Know Your Customer (KYC) requirements
  • Anti-Money Laundering (AML) regulations
  • Counter-Terrorist Financing (CTF) laws
  • Financial crimes enforcement network (FinCEN) guidelines
  • Securities and Exchange Commission (SEC) regulations where applicable

Third-Party Security

We carefully vet all third-party services and partners:

  • All broker partners are licensed and regulated
  • Cloud infrastructure providers meet SOC 2 Type II standards
  • Payment processors are PCI DSS compliant
  • Analytics providers comply with privacy regulations
  • Regular audits of third-party security practices

Bug Bounty Program

We welcome responsible disclosure of security vulnerabilities. If you discover a security issue, please report it to privacy@staks.in with details about the vulnerability.

We commit to:

  • Acknowledge your report within 48 hours
  • Investigate and validate the issue
  • Keep you informed of our progress
  • Credit you for the discovery (if desired)
  • Reward significant findings through our bug bounty program

Contact Security Team

For security concerns or to report vulnerabilities:

📧 Email: privacy@staks.in

Subject line: "Security Issue" or "Vulnerability Report"

Security Summary

We use bank-level encryption, never hold your crypto, and comply with global privacy regulations. Enable 2FA, use strong passwords, and report suspicious activity to privacy@staks.in.