SECURITY

Enterprise-Grade Security Measures

Your security is our top priority. Learn how Guac protects your data, assets, and privacy with advanced encryption and security protocols.

How We Protect Your Data & Assets

At Guac, we implement multiple layers of security to ensure your data and assets remain protected at all times. Our security infrastructure is built on industry best practices and continuously updated to address emerging threats.

API Key Encryption

Your exchange API keys are among your most sensitive data. Here's how we protect them:

  • AES-256 Encryption: We use Advanced Encryption Standard (AES) with 256-bit keys, the same encryption standard used by governments and financial institutions worldwide.
  • Secure Key Management: Encryption keys are securely managed and rotated regularly, with access strictly limited to essential personnel.
  • No Plain Text Storage: Your API secrets are never stored in plain text at any point in our systems.
  • Minimal Permission Requests: We only request the permissions necessary for trading (read and trade), never withdrawal permissions.
API Key Input
AES-256 Encryption
Secure Storage

Social Trading Security

Our social trading features are designed with privacy and security in mind:

  • Privacy Controls: Granular control over what trading information is shared with the community.
  • Secure Copy Trading: Copy trading executes through our secure API infrastructure without sharing your API keys with other users.
  • Trader Verification: Verified badges for trusted traders with established track records.
  • Content Moderation: AI-powered and human moderation to prevent scams and misleading information.

Additional Security Measures

Multi-Factor Authentication

Secure your account with 2FA using authenticator apps or SMS verification for an additional layer of protection.

IP Whitelisting

Restrict API access to specific IP addresses for enhanced security against unauthorized access attempts.

Privacy Protection

Strict data privacy policies and compliance with global regulations to protect your personal information.

Secure Development

Rigorous code reviews, penetration testing, and security audits throughout our development process.

Security Best Practices

While we implement robust security measures, we recommend following these best practices to further enhance your security:

01

Use Strong, Unique Passwords

Create complex passwords that are unique to your Guac account and change them regularly.

02

Enable 2FA Everywhere

Enable two-factor authentication on both your Guac account and all connected exchanges.

03

Restrict API Permissions

When creating API keys on exchanges, only grant the minimum permissions needed.

04

Monitor Account Activity

Regularly review your account activity and enable notifications for important actions.