Security & Compliance
Last updated
Last updated
ZOLBO’s security and compliance strategy is designed to ensure that user assets are protected while maintaining a streamlined and accessible experience. As a non-custodial platform, ZOLBO does not directly handle user funds, which eliminates the need for complex regulatory compliance typically associated with financial institutions, such as KYC (Know Your Customer) or AML (Anti-Money Laundering) procedures. Instead, ZOLBO focuses on maintaining strong security protocols to protect user data and ensure compliance with any relevant local regulations regarding platform operations.
ZOLBO operates on a non-custodial model, meaning the platform never holds user funds directly. Users maintain control of their assets within linked exchange accounts, with ZOLBO providing portfolio management via secure API connections. This approach significantly reduces the risk of asset loss or exposure to hacks, as ZOLBO never has access to private keys or full control over user assets.
| Feature | Description |
|---|---|
ZOLBO uses secure API connections to manage user portfolios across linked exchanges. Strong encryption protocols ensure that API keys are protected from unauthorized access, providing an additional layer of security. However, exchange-related issues can sometimes result in API connections being severed, which may prevent ZOLBO from managing portfolios effectively and lead to potential user losses.
To mitigate this risk, ZOLBO continuously monitors exchange API updates and status notifications, performing eyeball checks on all API-related notices. In the event that an API connection is disrupted due to exchange issues, ZOLBO takes immediate action to alert users. Notifications are sent via email and push alerts, ensuring that users are aware of the disruption and can take action to avoid any potential portfolio mismanagement.
| Feature | Description |
|---|---|
This proactive approach ensures that ZOLBO can respond swiftly to any API-related issues, safeguarding users’ portfolios from the risks associated with connection disruptions.
Since ZOLBO does not handle user funds directly, there is no need for complex KYC (Know Your Customer) or AML (Anti-Money Laundering) procedures. ZOLBO operates purely as a non-custodial, discretionary management service, where users remain in control of their assets at all times. Account creation can be done simply through third-party login options, such as Google.
| Feature | Description |
|---|---|
User Control
Users maintain full control over their assets, with ZOLBO managing only portfolio instructions through API.
Reduced Risk
By not holding custody of funds, ZOLBO minimizes the risks associated with security breaches or fraud.
Encryption
API keys are stored using industry-standard encryption, ensuring sensitive information is secure.
Permission Management
ZOLBO requests only trading permissions, not withdrawal access, which further reduces risk.
Tokenized Access
ZOLBO uses tokenized authentication to manage access, ensuring API keys are never exposed.
API Monitoring
ZOLBO constantly monitors exchange API-related updates through eyeball checking to ensure continued functionality.
Disruption Alerts
In the event of an API disconnection, ZOLBO immediately sends email and push notifications to users, minimizing potential losses.
No KYC/AML
Users are not required to undergo KYC/AML verification, as ZOLBO does not handle financial transactions.
Simple Account Creation
Users can create accounts easily using Google or other third-party login methods, lowering the barrier to entry.