How Your Wallet is Secured
SharkBlock keeps you in full control of your funds while allowing automated trading.
Security Overview
| Component | Who Controls |
|---|---|
| Private keys | You (via Privy) |
| Trading delegation | You (grant / revoke anytime) |
| Funds | Always in your wallet |
Key principle: SharkBlock never has access to your private keys. We use a delegation system that lets you grant trading-only permission while keeping ownership and withdrawal control.
Layer 1 — Privy Authentication
Login Options
Sign in to SharkBlock with any of these methods (all handled by Privy):
Email / passwordless
- Email (magic link)
- SMS (one-time code)
- Passkey (biometric)
Social
- Twitter (X)
- Farcaster
- Discord
External wallet
- Phantom
- Solflare
- Any Solana-compatible wallet
Embedded Wallets
If you sign in with email, SMS, passkey or social, Privy creates a non-custodial embedded wallet for you:
- Non-custodial: keys are encrypted and only you can authorize use
- No seed phrase to manage: re-authenticate with your login method to regain access
- Enterprise-grade infrastructure: Privy is SOC 2 Type II certified
- Exportable: you can export your private key from Settings any time
Privy’s Track Record
- SOC 2 Type II certified
- Audited by leading security firms
- Used by major Web3 applications
- Backed by Andreessen Horowitz, Sequoia Capital and other top investors
📚 Privy security documentation
Layer 2 — Trading Delegation
To run an automated bot, you grant SharkBlock permission to execute trades on your behalf — and only that.
How Delegation Works
- You create a Delegated (live) bot
- You grant delegation — a one-time signature
- SharkBlock executes buys and sells according to your strategy
- You revoke delegation in Settings anytime — it stops immediately
What Delegation Allows
✅ SharkBlock can submit buy and sell swaps for your strategy’s tokens
What You Always Control
| Action | Who can do it |
|---|---|
| Withdraw funds | Only you |
| Change login credentials | Only you |
| Set / change strategy rules | Only you |
| Enable / disable bot | Only you |
| Grant / revoke delegation | Only you |
| Export private key | Only you |
Revoking Access
You can revoke SharkBlock’s trading permission at any time:
- Go to Settings
- Open the wallet’s Delegation section
- Toggle delegation off
- Done — SharkBlock can no longer execute trades on this wallet
When you revoke:
- The bot immediately loses trading permission
- Open positions remain — you manage them manually
- Your funds stay in your wallet
- You can re-grant delegation later if you change your mind
Why This Architecture?
True Self-Custody
Private keys never leave Privy’s infrastructure. SharkBlock operates through delegation, not key access.
Granular Control
Delegation grants trading rights only — never withdrawal, never login changes.
Instant Revocation
One click and it’s done. No waiting, no approvals.
Best Practices
Protect Your Account
- Use a strong, unique password for your email
- Enable 2FA on your social accounts (Google, Twitter, etc.)
- Never share your login credentials
Monitor Activity
- Review your trading history regularly
- Keep wallet notifications enabled
- Check your positions at least once a day if you have live bots
When in Doubt
- Disable your bot if you notice unexpected activity
- Revoke delegation if you’re concerned about security
- Reach out to support
Summary
| Layer | Technology | Purpose | Your Control |
|---|---|---|---|
| Authentication | Privy | Secure login & embedded wallet | ✅ Full |
| Key Management | Privy embedded wallet | Private-key security | ✅ Only you (and exportable) |
| Trading | Delegation system | Automated execution | ✅ Grant / revoke anytime |
| Funds | Your wallet on Solana | Custody | ✅ Only you can withdraw |
Your keys, your crypto, your rules. 🦈🔐