Your Security is
Our Top Priority
Since Inlock’s inception, we had no security breaches, no data leaks and no client assets were ever lost or stolen. Our team has developed top-tier security & cyber defense processes since begin the moment you open an Inlock account. You can have peace-of-mind that your crypto assets are always safe with us.
Unallocated crypto assets are stored in Fireblock wallets, trusted by the largest institutional players.
Multi-level Safeguards to
Protect Your Account & Your Crypto Assets
Biometric Identification
Ensuring complete account-level security
Two Factor Authentication
Notifying you about every single transaction
24/7 Human Support
Making sure that you can get help swiftly
Complex Behaviour
Detecting and blocking suspicious activity on your account
Fully Automated Business Processes
Removing human errors
Bug-Bounty Program
Rewarding our community for finding any vulnerabilities, bugs or issues
Collaterals Stored in Cold Wallets
Protecting your collateral with the highest level of security
Certified for Service Organization Controls (SOC)
Adhering to the five security principles of privacy, security, confidentiality, availability, processing integrity
Regulatory Compliant AML/KYC Procedures
Fulfilling all AML/KYC requirements by EU FIU
Extra Controls to Protect Your Assets
We implemented additional safeguards to protect your assets. Their main purpose is to ensure that even in case an account compromise happens, the unauthorized party can’t transfer your assets out of your Inlock account and you can control your account easily.
Withdrawal Authorization with Email Validation
All withdrawal requests must also be confirmed via e-mail. The email will contain all important details (transfer address, amount, etc.), so if your computer is attacked by crypto-specific malware, you will still have control to prevent a hijacked transfer.
Account Security Changes Block Withdrawals for 24hrs
When any changes are made to your account security (password reset, 2FA reset, 2FA on/off switch, etc.) all withdrawal address will be locked for 24 hours to ensure that your account is not being taken over by an unauthorized party. All emails concerning account security contain an “Account Lock” button which can be pressed to immediately lock your account completely and sign out all clients who are logged in.
Locking Newly Recorded Addresses for 24hrs
Newly added withdrawal addresses will be locked for 24hrs. This way even if an attacker gains access to your account and obtains your 2FA code, they will not be able to immediately transfer anything out of it.
Recall of Unauthorized Withdrawals
Every withdrawal notification email includes a cancel button next to the approval. If you notice a withdrawal that you did not initiate, you can use this recall button. The withdrawal is possible until the actual transaction is completed at the latest until the transaction is executed on the blockhain.