Security & Compliance Policy

1. Our Commitment 2. Data Security 3. AI and Data Handling 4. Compliance 5. Incident Response 6. Your Role 7. Third-Party Services 8. Continuous Review 9. Contact

Security & Compliance Policy

Last updated: June 20, 2025

At Obsidian’s Lab, security, privacy, and compliance are core to our mission. We are committed to building resilient, ethical tools that empower creators, traders, and communities in the Web3 and crypto ecosystem — without compromising trust.

This policy explains our approach to security and compliance across all our services, including Obsidian Bot, Commeta, Let Me In, Volume Booster, and future applications.

1. Our Commitment

  • User-first security: We design systems with privacy and security as default principles.
  • Transparency: We communicate our security practices clearly and honestly.
  • Continuous improvement: We regularly review and enhance our security posture.

2. Data Security

We take appropriate technical and organizational measures to safeguard your data:

  • Encryption: Data is encrypted in transit (TLS/HTTPS) and, where appropriate, at rest.
  • Access controls: Access to production systems and data is strictly limited to authorized personnel on a least-privilege basis.
  • Infrastructure: We rely on reputable providers for cloud hosting, storage, and AI processing, ensuring industry-standard protections.
  • Secrets management: API keys, private keys, and credentials are stored securely and never hardcoded.

We never store private keys, wallet seed phrases, or other sensitive crypto credentials from users.

3. AI and Data Handling

When you use AI-powered features:

  • We may securely log input and output data to improve service quality, detect abuse, and enhance models.
  • Data is retained only as long as necessary and is subject to strict access controls.
  • We do not use your data to train third-party models or for unrelated purposes.

4. Compliance

While we are not a regulated financial entity, we aim to align with recognized best practices:

  • Privacy frameworks: Our policies and practices are informed by GDPR, CCPA, and similar data protection standards.
  • Blockchain integrity: We integrate with networks (e.g., Solana) in ways that respect on-chain security principles. We do not alter or manipulate blockchain data.

We encourage users to understand their own compliance obligations when using blockchain technologies.

5. Incident Response

We have procedures in place to:

  • Detect, contain, and mitigate security incidents.
  • Notify affected users promptly when appropriate.
  • Analyze incidents post-mortem to prevent recurrence.

If you identify a security issue, please report it immediately to [email protected].

6. Your Role

Security is a shared responsibility. We encourage you to:

  • Use strong, unique credentials where applicable.
  • Protect your wallet private keys and seed phrases (we will never ask for these).
  • Report suspicious activity to us.

7. Third-Party Services

We choose our providers carefully and expect them to adhere to high security standards. However, we are not responsible for security practices of external services (e.g., wallets, exchanges, third-party APIs). Please review their policies.

8. Continuous Review

Security threats evolve. We continuously monitor, test, and improve our systems to meet new challenges.

9. Contact

If you have questions about our security and compliance practices, or wish to report a concern:

[email protected]
https://obsidianslab.dev

By using our services, you acknowledge and accept our security and compliance practices as described in this policy.

Built for crypto. Designed for community. Fueled by innovation.

Home Commeta About Us Our Token
Terms of service Privacy policy Cookie Policy Security & compliance
Documentation Blog Investors Partners
footer stone Image

© 2025 Obsidian's Lab. All rights reserved.