Security
No vague "bank-grade security" marketing language here — this is exactly what happens, and when, for every sensitive action on this platform.
Transaction PIN
A 6-digit PIN, completely separate from your login password, is required before any transfer, withdrawal, or account change goes through. Even with your password compromised, your PIN is a second, independent barrier.
Email verification (OTP) on external transfers
Local and international transfers require a one-time 6-digit code sent to your registered email before they complete — internal transfers between accounts on this platform use your PIN instead, since the funds never leave the system.
New device alerts
Every sign-in is checked against devices we've seen before. Something new gets flagged immediately, so you know right away if it wasn't you.
Rate limiting and lockouts
Repeated incorrect PIN or verification-code attempts trigger a temporary lockout rather than allowing unlimited guesses — the same protection real banking systems use against automated attacks.
Encrypted at rest
Sensitive stored values — including card numbers and mail credentials — are encrypted in the database, not held as plain text.
Full activity log
Every account action, yours and any admin action taken on your behalf, is logged with who did it and when — nothing happens invisibly.
We're glad to walk through any of it in more detail.
Contact us