How is My Wallet Secured?
When you sign up for Bleap, we use PortalHQ to generate an MPC (Multi-Party Computation) key for you. This key consists of two separate parts:
One part is stored on your device (parent).
The other part is stored securely on PortalHQ’s side.
Each time you sign a transaction, these two parts are temporarily combined to authorize it. This means that even if someone steals the part stored on your device, they cannot use it alone to access your funds.
How Does My Password Work?
When your wallet is created, a randomly generated password is assigned to you.
Bleap does NOT store this password.
It is only saved on your device, email, and cloud storage.
However, this password is not your key. Instead, we use it to encrypt your key and store the encrypted version on a dedicated server. This way, even if someone gains access to the encrypted key, it remains useless without your password.
Can Someone Else Access My Wallet?
No, only you can access your wallet because:
✅ Your key is split into two parts (one on your device, one on PortalHQ).
✅ Your password is not stored by Bleap, only by you.
✅ Your key is encrypted and useless without your password.
Even if someone gains access to your device or encrypted key, they cannot access your funds without your password.
Is My Wallet Non-Custodial?
Yes, Bleap is a non-custodial wallet, meaning only you have access to your funds. Neither Bleap nor PortalHQ can move or recover your funds without your password.
How Do I Keep My Wallet Secure?
🔒 Store your password securely (we suggest completing the in-app backup).
🔒 Enable app authentication (PIN and/or biometric).
🔒 Be cautious of phishing attempts—Bleap will never ask for your password, so never share it.