Security Practices
Security practices are an essential concern when working with digital assets. Accordingly, through the careful assessment of all industry benchmarks and hardware solutions, our team at Enigma can ensure that we only follow industry best practices for optimized security.
Digital Asset Security
Most of our customers’ digital assets are held in our offline vaulted storage system (i.e. in “Cold Storage”), with only a small portion held in our online wallet (“Hot Wallet”). All transactions in our environment require multi-factor authentication. Our hardware is sourced of diverse manufacturers to guard against supply-chain risks. On the cybersecurity front, we partner with enterprise vendors to mitigate potential Distributed Denial-of-Service (DDOS) attacks. In addition, we use Multi-Signature Technology (“Multisig”) to provide both security against attacks and tolerance for losing access to a key or facility, eliminating single points of failure.
Financial Security
All customer USD fiat funds are held in an omnibus account at an FDIC-insured bank located in the United States. Furthermore, all customer fiat funds are completely segregated and legally distinct from our business and operating accounts.
Internal Controls
We understand that sometimes the weakest chain in the link is the human factor. Consequently, we have initiated a series of internal processes and controls to maximize security. Most notably, all Enigma Securities employees undergo criminal and credit background checks, as well as being subject to recurrent background checks throughout their employment with us. In addition, we require multiple signatories and verifications in order to transfer funds out of Cold Storage. Finally, we make sure that our offices do not store or contain anything of value, with all private keys stored offsite in secure facilities.