Security Overview

How MoniPay protects your funds and data.

At MoniPay, security is not a feature — it's the foundation. We believe that for crypto to go mainstream, it must be more secure than the traditional banking system while being just as easy to use.

The Non-Custodial Foundation

The most important security feature of MoniPay is that we never hold your funds. Your private key is generated on your device and encrypted with your PIN.

What MoniPay Can See

  • Your public MoniTag.
  • Your public wallet address.
  • Your transaction history (which is public on the blockchain).

What MoniPay CANNOT See

  • Your raw private key.
  • Your 6-digit PIN.
  • The contents of your encrypted cloud backup.

Security Layers

  1. Client-Side Encryption: Keys are encrypted before they ever leave your device.
  2. Authenticated Requests: Every API call is verified to ensure it comes from an authorized source.
  3. Infrastructure Validation: Our relayers perform multiple checks before submitting transactions to the blockchain.
  4. On-Chain Enforcement: The final security layer is the smart contract, which only executes transactions with a valid cryptographic signature.

Responsible Disclosure

If you discover a security vulnerability, please report it to security@monipay.xyz. We maintain a bug bounty program for valid reports.

View our security.txt