Security
Bank-grade protection for your assets and your data.
Standard
AES-256 & TLS 1.3
Security isn't a feature — it's the foundation of everything we build.
We apply a defence-in-depth approach: multiple independent layers of protection so that no single failure can put your assets at risk. Below is an overview of the controls that keep KaiBank secure.
256-bit encryption
Data in transit is protected with TLS 1.3, and data at rest is encrypted with AES-256. Sensitive material is isolated and never logged in plain text.
Cold storage custody
The overwhelming majority of client assets are held in geographically distributed cold storage with multi-signature controls.
Two-factor authentication
Every account supports app-based 2FA and step-up verification for sensitive actions like withdrawals and profile changes.
Hardened infrastructure
Workloads run on isolated, access-controlled cloud infrastructure with least-privilege permissions and full audit logging.
24/7 monitoring
Automated systems and a dedicated team watch for anomalous activity around the clock, with real-time alerting on suspicious behaviour.
Independent audits
Our systems and smart-contract integrations undergo regular third-party security reviews and penetration testing.
Keeping your account safe
- Enable two-factor authentication on your account.
- Use a unique, strong password you don't reuse elsewhere.
- Never share your login codes — KaiBank will never ask for them.
- Always check you're on kaibank.io before signing in.
Found a vulnerability?
We welcome responsible disclosure. Report security issues to our team and we'll respond promptly.