πŸ”Security & Legal

Audits, Protections, and Policy Commitments

Security and regulatory transparency are foundational to BrewDEX. As a cross-chain financial protocol dealing with on-chain assets and user interactions, we prioritize protecting users, contracts, and governance integrityβ€”while maintaining compliance with global best practices in decentralized operations.

This section covers our approach to security audits, multisig operations, responsible disclosure, and key legal disclaimers.

🧯 Bug Bounty Program

We incentivize ethical security researchers via a public Bug Bounty Program hosted on Immunefi. Rewards are paid in BRE or stablecoins, and tiers range from UI issues to critical vulnerabilities affecting funds.

All reports must follow responsible disclosure guidelines and will be reviewed by the core team within 72 hours.

🧰 Multisig Treasury & Governance Keys

Treasury and protocol upgrades are managed through a Gnosis Safe Multisig, held by a mix of core contributors and DAO signers.

Asset/Control Area
Multisig Governance

DAO Treasury Wallet

3-of-5 signers

Protocol Upgrades

4-of-7 signers

Emergency Pause Keys

Time-locked control

Future upgrades may include on-chain governance for direct BRE-holder control.

πŸ“œ Legal & Jurisdiction Disclaimer

BrewDEX is a decentralized, permissionless platform deployed via open-source smart contracts. It does not operate as a registered financial institution, nor does it offer custodial services, investment advice, or asset guarantees.

Usage Restrictions:

  • BrewDEX is not available to users in jurisdictions subject to economic sanctions or legal prohibitions (e.g., OFAC countries).

  • The protocol is non-custodial: users retain full control over their assets at all times.

  • Users are responsible for tax compliance and regulatory obligations in their own jurisdictions.

πŸ” Data Privacy & Ethics

  • No personal data (email, name, phone) is required to use BrewDEX.

  • Wallet addresses and transaction data remain fully on-chain and under user control.

  • Analytics and telemetry (if used) will be opt-in and privacy-preserving (e.g., anonymized Mixpanel, Plausible).

We align with the values of Web3: sovereignty, transparency, and open access.

🧠 Reminder

Using DeFi protocols carries risk. BrewDEX cannot recover lost funds due to user error, gas fee misconfiguration, private key compromise, or malicious dApps.

Please:

  • Use a hardware wallet for large transactions

  • Double-check addresses before bridging

  • Avoid clicking suspicious links claiming to be BrewDEX

PreviousRoadmapNextTerms of Use

Last updated