In the event of a failure of any of our systems, including those provided by a third party, your account may in extreme circumstances be subject to a loss. For example, in the unlikely event that the Exchange or a third party custodian that holds your assets is subject to a cyber breach, there could be a theft of assets held in one or more client accounts. To manage and reduce these types of risk, we have put in place mitigating counter-measures. We have set these out below for information to the extent that they are applicable.
The mitigation measures set out below are for your information only. These measures only serve to mitigate failures and do not guarantee against a loss. We do not in any way represent that losses will be recoverable.
|
Risk |
Mitigation |
|
DDOS attack |
A third party monitors incoming messages for malicious content. We have load balancers with many custom rules to automatically ban IPs when they are not respecting our rate limits. |
|
Server failure |
We have backup servers that we switch to in the event of a server failure. |
|
Cyber breach |
We carry out regular penetration testing to ensure that we are able to identify and cover any system vulnerabilities. We also employ state of the art cyber breach monitoring prevention software, which is updated regularly. |
|
Wallet hack |
In addition to penetration testing, we automatically move Virtual Assets between hot, warm and cold wallets to ensure that risk is separated in the event of a hack. [We keep only a minimum amount of Virtual Assets in hot wallets, and maintain the majority of client Virtual Assets in cold wallet storage.] |
|
Data loss |
We maintain regular backups of all business and client data on the Exchange. |
|
Failure of the trading system |
We have in place business continuity and disaster recovery policies that will be activated in the event of a failure of the trading system. |