Security

Neutral Trade's security approach operates across three layers: audited smart contract infrastructure, institutional custody for off-exchange CEX positions, and operational controls that prevent unilateral action by any single party.

Smart Contract Audits

The vault infrastructure (Neutral Strategy Vaults) underpinning all Neutral Trade strategies has been independently audited by three security firms. Reports are publicly available.

Audits assess code for vulnerabilities, economic design flaws, and unintended behaviours. They do not eliminate all risk, see Risk Warnings and Disclaimers for a full disclosure.

Institutional-Grade Custody

How your assets are held depends on where the strategy executes.

On-chain positions — Fordefi MPC

For all on-chain vault operations and Solana-side management, Neutral Trade uses Fordefi, an institutional MPC (Multi-Party Computation) wallet infrastructure. Private keys are never stored in a single location, and all transactions require multi-party approval before they can be executed. This protects the Neutral Strategy Vaults and all on-chain capital movements from both external attack and internal misuse.

Centralised exchange positions — Copper and Ceffu

For strategies that execute on centralised exchanges, Neutral Trade uses Copper (ClearLoop) and Ceffu (MirrorX) for off-exchange custody and settlement. This means assets are held with the custodian, not on the exchange's balance sheet, during trading. If an exchange were to become insolvent, assets held through Copper or Ceffu would remain with the custodian rather than being exposed to the exchange's liabilities.

Copper and Ceffu custody applies only to strategies with centralised exchange execution legs. It does not apply to on-chain or DeFi positions.

Operational Security

Multi-party approvals Critical operations, including vault configuration changes, whitelisting new addresses, and policy updates, require approval from multiple authorised team members. No single individual can take unilateral action on user funds.

Least privilege access Team members have access only to the systems required for their role. Access is reviewed regularly and revoked when no longer needed.

Vault-Level Protections

Beyond custody and audits, the vault smart contracts themselves include several built-in protections. NAV manipulation controls, transaction batching to prevent MEV exploitation, a 24-hour timelock on parameter changes, and an emergency circuit breaker. These are explained in plain language on the Vault Protections page.

Risk Disclosures

While we take every precaution to protect your funds, no security framework eliminates all risk. It is important to understand that investing in DeFi carries inherent risks. Please read our Risk Warnings and Disclaimers Statement carefully before depositing.

Neutral Trade – Building the Future of Yield