Harpie is not a decentralized company; we're a US-based company. This makes us liable to any laws and regulations enforced by the USA. Harpie is also financially backed by leading companies in the crypto sector, like Coinbase Ventures and OpenSea.

We've built Harpie's tech with a great amount of care. Three core principles have guided our design:

Harpie avoids custodianship by never allowing ourselves to withdraw users' stored tokens from our Vault. Users must explicitly designate a wallet address that's able to withdraw their stored assets. This layer of security makes sure that the most vulnerable side of smart contracts, token transfers, are airtight. Read more.

A large issue in smart contract security is the usage of mutable (changeable) variables. Harpie's contracts have immutable code and immutable address parameters. This ensures that users know exactly where their assets are being sent at all times.

Because Harpie is not a decentralized protocol, we utilize admin addresses to handle essential functions, like calling frontrunning functions and reducing user fees. We've designed the system to have multiple admin roles, with each of these admin roles designed to be controlled by different parties and check-and-balance one another.

Emergency roles exist to further augment this set of checks-and-balances. By doing so, we reduce the possibility and nullify the damages of any admin address hijacking.