🔐Security Measures

Our Top Priority

Security is a top priority for MimicGotchi. While the bot requires access to users' private keys for specific functionalities, the project team takes extensive measures to safeguard user funds and data.

When users provide their private keys, there is a potential security risk, as the bot technically gains control over their funds. To mitigate this, MimicGotchi follows industry best practices, ensuring that platform does not store or retain users' private keys in a readable format.

Game wallets are primarily intended for early access registration, NFT minting, and future in-game activities. To minimize potential risks, users are encouraged not to maintain substantial amounts of funds in their game wallets. It is recommended to adopt a "transfer as necessary" approach, adding and retaining funds in game wallets only for specific planned activities. Users should regularly assess their wallet balances and promptly transfer any excess funds to a more secure wallet.

Where are the private keys stored, and how are they protected?

Private keys are stored on a separate encrypted server, accessible only to the MimicGotchi bot. The storage system employs multiple layers of security, including marshaling, hashing, and conversion.

What is the role of marshaling, hashing, and conversion in private key protection?

Marshaling involves packaging data for secure storage, hashing transforms the data into a one-way, non-reversible string, and conversion further scrambles the data into an unreadable format. These processes collectively ensure the highest level of protection for users' private keys.

Does MimicGotchi store private keys in any readable format?

No, MimicGotchi does not store private keys in a readable format. The platform utilizes secure encryption and storage practices to protect user information.

Can users request their private keys later?

MimicGotchi has a strict policy of not retrieving or providing private keys once they are generated or provided. This policy adds an extra layer of security, ensuring that only the account owner has access to their private key.

Why doesn't MimicGotchi provide private keys when an account is created?

MimicGotchi follows a security-first approach, and for the protection of user funds and sensitive information, private keys are not provided upon account creation.

What is the reasoning behind not giving private keys initially?

The decision to withhold private keys upon account creation is rooted in security considerations. Providing private keys immediately poses a potential risk if not handled with extreme care. By not providing private keys initially, MimicGotchi minimizes the risk associated with unauthorized access to user funds.

PreviousRegistrationNextWithdraw funds

Last updated