DeFi Guardian shield logoDeFi Guardian
Sign Up Free
Trust & Security

We never touch your funds

DeFi Guardian is fully non-custodial. We read public on-chain data to monitor your positions and alert you to risk — nothing more. Here's exactly what that means.

Non-custodial

Your keys and funds stay in your wallet. We have no technical ability to move them.

Read-only access

We monitor public on-chain data via RPC endpoints. No transaction signing authority. Ever.

Nothing secret stored

No passwords, no private keys, no seed phrases. You sign in with your wallet — there is nothing for us to leak.

Data Access

What we can and cannot see

What we access

  • Public wallet address

    The address you sign in with — the same one anyone can see on Etherscan.

  • Public on-chain positions

    Position data read from public RPC endpoints. No different from what DeBank or Zapper see.

  • Email (if provided)

    Used only to deliver alerts and billing receipts. Never sold, never shared.

  • Subscription record

    Your tier, billing history, and USDC payment transaction hashes.

What we cannot access

  • Private keys
  • Seed phrases
  • Wallet contents you have not publicly transacted with
  • Permissions to move, sign, or transfer on your behalf
  • Hardware wallet PINs or biometric data
  • Browsing history outside our own site

Technically impossible, not just policy. Our systems have no mechanism to sign transactions, move funds, or derive keys from anything you share with us.

On-chain Code

Smart contract status

Today

Monitoring is read-only — no smart contracts deployed

All current Guardian features (position monitoring, risk scoring, alerts, simulations, AI analysis) operate entirely off-chain. We query public RPC endpoints to read blockchain state. No Guardian-authored smart contracts are deployed or interact with your wallet today.

Q2 2026

Auto-execution contracts

The upcoming auto-execution feature requires on-chain contracts. These contracts will be audited by a reputable third-party security firm before mainnet deployment. We will publish the audit report and deployed addresses here before the feature is enabled.

  • Audit completed and published publicly before mainnet launch
  • Contracts open-sourced with verified source on block explorers
  • User-revocable approvals — you can disable auto-execution at any time
  • Non-custodial by design — Guardian never holds collateral or debt

Authentication

How sign-in works

Sign-In With Ethereum (SIWE)

You authenticate by signing a human-readable message with your wallet. We never see or store your private key. The signature proves ownership of the address without exposing anything secret.

Encrypted session cookies

Sessions are stored in server-signed, HTTP-only, Secure cookies. They cannot be read by JavaScript or third-party scripts, and expire after inactivity.

Rate limiting

All authentication and API endpoints are rate-limited per-IP and per-user to mitigate brute force, credential stuffing, and enumeration attacks.

No password required

Because SIWE replaces passwords with wallet signatures, there is no password database to breach and no credential to phish.

Infrastructure

How your data is handled

Data storage

Managed PostgreSQL cluster hosted on SOC 2 Type II certified cloud infrastructure, deployed in US regions. All data encrypted at rest using AES-256.

Network security

TLS 1.3 for all traffic. HTTPS enforced site-wide with HSTS preload. Strict Content Security Policy with per-request nonces. All internal services isolated behind private networks.

Access controls

Administrative access is protected by strong 2FA on all accounts. Production database access is restricted to authorized operators and every query is logged.

Backups & availability

Point-in-time recovery for 7 days; nightly encrypted snapshots retained for 30 days. Automated failover on managed database infrastructure. Uptime status published at /status.

Data retention

Position monitoring data retained for the lifetime of your subscription plus 30 days. Account deletion is self-service and removes all personal data within 72 hours.

Jurisdiction

Primary data residency: United States. We comply with GDPR data subject rights (access, portability, deletion) for all users regardless of region.

Responsible Disclosure

Found a vulnerability?

We welcome security researchers. If you discover a vulnerability — in our application, API, infrastructure, or (once deployed) smart contracts — please report it to us privately. We commit to acknowledging reports within 48 hours and resolving validated issues on a priority track.

Contact

security@defiguardian.fi

Initial response

Within 48 hours

Bounty range

$50 – $5,000 USDC

Based on severity

Guidelines

  • Test only against your own accounts — do not access, modify, or exfiltrate other users' data.
  • Do not run automated scanners that degrade service quality for other users.
  • Give us reasonable time to patch before public disclosure (standard 90-day window).
  • Good-faith research performed under these guidelines will not result in legal action.

Transparency

What we commit to publish

  • Live service status — real-time uptime and incident history at /status
  • Postmortems for every incident — public writeup within 5 business days for any outage or data issue.
  • Audit reports — full smart contract audit reports published here before mainnet deployment.
  • Privacy & terms — current policies at /privacy and /terms. Changes announced via email at least 15 days before taking effect.

Questions we haven't answered?

Security reviews from prospective enterprise customers or DAOs are always welcome. Reach us at security@defiguardian.fi.

Start FreeSee demo