Security

Bank-grade protection for your assets and your data.

Standard

AES-256 & TLS 1.3

Security isn't a feature — it's the foundation of everything we build.

We apply a defence-in-depth approach: multiple independent layers of protection so that no single failure can put your assets at risk. Below is an overview of the controls that keep KaiBank secure.

256-bit encryption

Data in transit is protected with TLS 1.3, and data at rest is encrypted with AES-256. Sensitive material is isolated and never logged in plain text.

Cold storage custody

The overwhelming majority of client assets are held in geographically distributed cold storage with multi-signature controls.

Two-factor authentication

Every account supports app-based 2FA and step-up verification for sensitive actions like withdrawals and profile changes.

Hardened infrastructure

Workloads run on isolated, access-controlled cloud infrastructure with least-privilege permissions and full audit logging.

24/7 monitoring

Automated systems and a dedicated team watch for anomalous activity around the clock, with real-time alerting on suspicious behaviour.

Independent audits

Our systems and smart-contract integrations undergo regular third-party security reviews and penetration testing.

Keeping your account safe

  • Enable two-factor authentication on your account.
  • Use a unique, strong password you don't reuse elsewhere.
  • Never share your login codes — KaiBank will never ask for them.
  • Always check you're on kaibank.io before signing in.

Found a vulnerability?

We welcome responsible disclosure. Report security issues to our team and we'll respond promptly.

security@kaibank.io