Security
Built secure
from the ground up.
Player trust is paramount. Our platform undergoes continuous security audits and follows industry best practices for smart contract and infrastructure security.
Security Audits
Trail of Bits
Smart Contracts
DateJanuary 2026
Findings0 Critical, 2 Medium (Resolved)
Halborn Security
Backend Infrastructure
DateDecember 2025
Findings0 Critical, 1 Medium (Resolved)
OpenZeppelin
Full Platform Review
DateQ1 2026
FindingsOngoing
Immunefi Bug Bounty
Public Bug Bounty
DateOngoing
FindingsUp to $50K rewards
Security Measures
Smart Contract Security
- Audited by multiple firms
- Formal verification
- Upgradeable with timelock
- OpenZeppelin standards
Infrastructure Security
- SOC 2 Type II compliance
- Encrypted at rest and transit
- WAF and DDoS protection
- 24/7 monitoring
User Security
- No private key custody
- Hardware wallet support
- Session management
- Rate limiting
Compliance & Privacy
Data Protection
- GDPRFull compliance with EU data protection regulations
- CCPACalifornia Consumer Privacy Act compliance
- COPPAChildrens Online Privacy Protection compliance
- Data MinimizationWe only collect essential data
Ad Network Compliance
- IAB StandardsInteractive Advertising Bureau guidelines
- VAST/VPAIDIndustry-standard video ad protocols
- Brand SafetyContent verification and filtering
- Ad Fraud PreventionInvalid traffic detection and blocking
Bug Bounty Program
Up to $50,000 in rewards
Help us keep the platform secure. We reward responsible disclosure of security vulnerabilities through our Immunefi bug bounty program.
CriticalUp to $50,000
HighUp to $15,000
MediumUp to $5,000
LowUp to $1,000
In Scope
- • Smart contracts on Immutable zkEVM
- • API endpoints and authentication
- • Web application vulnerabilities
- • SDK security issues
Out of Scope
- • Third-party services
- • Social engineering
- • Physical security
- • Denial of service attacks
Security Concerns?
If you've discovered a security vulnerability, please report it responsibly.