Security¶
QuantFin Pro is designed with a zero-custody, zero-trust architecture. Your assets remain in your control at all times.
No Private Keys - Ever¶
Your Keys Stay With You
QuantFin Pro does NOT accept, store, or have access to your private keys. Period.
Unlike other trading platforms that require you to deposit funds or share private keys, QuantFin Pro uses pure wallet authentication through BlueFin's official SDK. Here's what that means:
- No private keys are ever transmitted to our servers
- No confidential information is stored on our infrastructure
- No custody of your assets - your funds remain in your wallet
- No database of sensitive credentials - we simply don't have them
How Authentication Works¶
QuantFin Pro uses BlueFin's native wallet connection system:
- Connect Your Wallet: Use Sui Wallet, Martian, or any compatible wallet
- Sign a Message: Your wallet signs a message to prove ownership (no transaction, no gas)
- BlueFin Auth Token: BlueFin issues a temporary auth token for API access
- Trade Securely: All orders are signed locally by your wallet
┌─────────────────┐ ┌─────────────────┐ ┌─────────────────┐
│ Your Wallet │────▶│ QuantFin Pro │────▶│ BlueFin │
│ │ │ │ │ │
│ Private Key │ │ NO KEYS STORED │ │ Executes Trades │
│ Stays Here │ │ Just relays │ │ │
└─────────────────┘ └─────────────────┘ └─────────────────┘
What We Store¶
Here's exactly what QuantFin Pro stores:
| Data | Stored? | Purpose |
|---|---|---|
| Private Keys | NO | Never collected |
| Seed Phrases | NO | Never collected |
| Wallet Address | Yes | Identify your trading session |
| Trading Config | Yes | Your bot settings (grid levels, etc.) |
| Trade History | No | Stored on BlueFin, not with us |
Risk Assessment¶
What QuantFin Pro CANNOT Do:¶
- ❌ Access your private keys
- ❌ Move funds from your wallet
- ❌ Withdraw your assets
- ❌ Trade without your connected wallet
- ❌ Access your funds if you disconnect
Risks You Should Understand:¶
Trading Risks
The only risk when using QuantFin Pro is algorithmic trading risk:
- Market volatility can cause losses
- Grid trading strategies can result in drawdowns
- Leverage amplifies both gains and losses
- Liquidation is possible with leveraged positions
There is NO custody risk - we cannot lose, steal, or mismanage your funds because we never have access to them.
Token Gate Security¶
Access to QuantFin Pro requires holding $100 USD worth of PUMPKIN tokens (or being on the whitelist). This is verified by:
- Checking your wallet's on-chain PUMPKIN balance
- Calculating current USD value using live price data
- Granting access if you meet the requirement
Your token balance is checked on-chain - we never ask for or store any sensitive information to verify this.
Best Practices¶
- Use a Dedicated Trading Wallet: Consider using a separate wallet for trading activities
- Monitor Your Positions: Use the dashboard to track your bot's activity
- Start Conservative: Begin with lower leverage and exposure limits
- Enable Graceful Stop: Use graceful stop to close positions before stopping the bot
- Secure Your Wallet: Use hardware wallets or secure browser extensions
Wallet Security¶
While QuantFin Pro doesn't handle your keys, you should still protect your wallet:
- Use reputable wallets: Sui Wallet, Martian Wallet, or hardware wallets
- Enable security features: 2FA, biometrics, or hardware confirmation
- Verify connections: Always check you're connecting to the official QuantFin Pro site
- Revoke unused connections: Periodically review and revoke wallet connections you don't use
Questions?¶
If you have any security concerns, reach out:
- Twitter/X: @dexalgo
- Discord: Join our community for support
- Email: Contact via our official channels
Summary¶
| Feature | QuantFin Pro |
|---|---|
| Private Key Required | NO |
| Custody of Funds | NO - Non-custodial |
| Data Stored | Wallet address + config only |
| Risk Type | Trading risk only |
| Authentication | BlueFin native wallet auth |