Risk Disclosure Policy

1. Market and Price Volatility

Digital assets, including cryptocurrencies, are subject to extreme price fluctuations and market volatility. The value of digital assets can increase or decrease rapidly and unpredictably, and past performance is not indicative of future results. Users may experience substantial or total loss of their invested capital.

2. Cybersecurity and Technology Risks

The security of digital assets depends on the integrity of cryptographic protocols, software, hardware, and network infrastructure. Risks include, but are not limited to: - Unauthorized access, hacking, or theft of private keys or wallet credentials; - Malware, phishing, or other cyberattacks targeting users or the Platform; - Vulnerabilities in smart contracts, blockchain protocols, or third-party integrations; - Service interruptions or data loss due to system failures, bugs, or technical errors.

While IronBit implements robust security measures, no system is immune to cyber threats or technical failures.

3. Regulatory and Legal Risks

The legal and regulatory environment for digital assets is rapidly evolving and may vary by jurisdiction. Risks include: - Changes in laws, regulations, or government policies that may restrict, prohibit, or otherwise impact the use, transfer, or custody of digital assets; - Regulatory actions that may require IronBit to modify, suspend, or terminate certain services; - Uncertainty regarding the classification and treatment of digital assets under applicable law.

Users are responsible for understanding and complying with all laws and regulations applicable to their activities.

4. Operational Risks

Operational risks may arise from the internal processes, personnel, or systems of IronBit or its service providers. These include: - Errors or delays in processing transactions, deposits, or withdrawals; - Failures in internal controls, compliance procedures, or risk management systems; - Disruptions due to force majeure events, such as natural disasters, political instability, or pandemics.

5. Counterparty and Third-Party Risks

IronBit may rely on third-party service providers, such as liquidity providers, custodians, or technology vendors, to deliver certain features. Risks include: - Insolvency, default, or failure of third-party providers; - Delays or losses resulting from third-party actions or omissions; - Limited recourse in the event of third-party failure.

6. Technology and Blockchain Risks

The operation of digital assets depends on underlying blockchain networks, which may be subject to: - Network congestion, delays, or failures in transaction processing; - Forks, rollbacks, or changes to consensus mechanisms that may affect asset availability or value; - Irreversibility of blockchain transactions, which may result in permanent loss if errors occur.

7. Other Risks

Additional risks may include, but are not limited to: - Loss of access to accounts or assets due to forgotten credentials or loss of authentication devices; - Exposure to fraud, scams, or deceptive practices by third parties; - Taxation or reporting obligations arising from digital asset transactions.

Users should recognize that the risks described above may interact or compound, and that new or unforeseen risks may emerge as the digital asset ecosystem evolves.

1. Understanding and Acceptance of Risks

• Users must carefully review this Risk Disclosure Policy and ensure they fully understand the nature and extent of the risks described herein.
• Users are responsible for remaining informed about the evolving risks associated with digital assets, blockchain technology, and the regulatory environment.

2. Conducting Due Diligence

• Users are expected to conduct their own independent research and due diligence before engaging in any transaction or utilizing any service offered by IronBit.
• Users should seek independent legal, financial, or tax advice as appropriate to their individual circumstances and jurisdiction.

3. Safeguarding Access Credentials

• Users are solely responsible for maintaining the confidentiality and security of their account credentials, private keys, authentication devices, and any other means of accessing the Platform.
• IronBit is not liable for any loss or unauthorized access resulting from the user’s failure to adequately protect their access information.

4. Compliance with Laws and Regulations

• Users are responsible for ensuring that their use of IronBit complies with all applicable laws, regulations, and reporting obligations in their jurisdiction.
• Users must not use the Platform for any unlawful, fraudulent, or prohibited activities.

5. Monitoring Account Activity

• Users are expected to regularly monitor their account activity and promptly report any suspicious, unauthorized, or erroneous transactions to IronBit’s support team.
• Users should cooperate fully with any investigations or compliance reviews initiated by IronBit in connection with risk management or regulatory obligations.

6. Acceptance of Platform Limitations

• Users acknowledge and accept the technical, operational, and legal limitations of the Platform as described in this Policy and related user agreements.
• Users understand that certain risks may be outside the control of IronBit, including but not limited to market volatility, third-party failures, and regulatory changes.

1. Technical and Operational Limitations

• No Guarantee of Uninterrupted Service: IronBit strives to provide continuous access to its services; however, the Platform may experience interruptions, delays, or downtime due to maintenance, technical failures, cyberattacks, or other unforeseen events. IronBit does not guarantee uninterrupted or error-free operation of the Platform.
• Security Measures: While IronBit implements industry-standard security protocols to protect user assets and data, no system is immune to cyber threats, unauthorized access, or technical vulnerabilities. Users acknowledge that absolute security cannot be guaranteed.
• Irreversibility of Transactions: Digital asset transactions, once confirmed on the relevant blockchain, are generally irreversible. IronBit cannot reverse, cancel, or modify transactions that have been broadcast to the blockchain, even in cases of user error or unauthorized activity.

2. Reliance on Third-Party Providers

• Third-Party Services: IronBit may utilize third-party service providers, including but not limited to liquidity providers, custodians, technology vendors, and compliance solution providers, to deliver certain features and functionalities. The performance, reliability, and availability of these services are outside the direct control of IronBit.
• No Endorsement or Guarantee: IronBit does not endorse, guarantee, or assume responsibility for the accuracy, completeness, or reliability of information, services, or products provided by third parties. Any reliance on third-party services is at the user’s own risk.
• Third-Party Failures: In the event of insolvency, default, or operational failure of a third-party provider, users may experience delays, losses, or disruptions in service. IronBit’s liability in such circumstances is limited as set forth in the user agreement and this Policy.

3. Platform Guarantees and Exclusions

• No Investment Advice: IronBit does not provide investment, legal, tax, or financial advice. All information and materials provided through the Platform are for informational purposes only and should not be construed as a recommendation or endorsement of any digital asset or transaction.
• No Guarantee of Asset Value or Availability: IronBit does not guarantee the value, liquidity, or continued availability of any digital asset supported on the Platform. Asset listings and supported features may be modified, suspended, or removed at any time without prior notice.
• Exclusion of BTC Transaction History Tracking: Due to technical limitations, IronBit does not track or verify the transaction history of Bitcoin (BTC) or other assets where such tracking is not feasible. Users are solely responsible for ensuring the legitimacy and compliance of their assets.

4. Limitations of Recovery Support

• Scope of Recovery Assistance: IronBit may offer support to users affected by crypto-related fraud through integration with third-party recovery tools or services. However, IronBit does not guarantee the success, timeliness, or outcome of any recovery efforts.
• No Guarantee of Fund Recovery: The recovery of lost or stolen digital assets is inherently uncertain and may be subject to legal, technical, or jurisdictional constraints. IronBit’s role is limited to providing access to available tools and support, without assuming responsibility for the recovery process or its results.

5. Limitation of Liability

No Liability for Certain Losses: To the maximum extent permitted by law, IronBit disclaims all liability for any direct, indirect, incidental, consequential, or special losses or damages arising from:

• Use or inability to use the Platform;
• Reliance on information or services provided by IronBit or third parties;
• Technical failures, security breaches, or unauthorized access;
• Regulatory changes or legal restrictions affecting digital assets or services;
• Any other circumstances beyond the reasonable control of IronBit.

1. Security Protocols

• Encryption and Data Protection: All sensitive user data, including personal information and private keys, is protected using industry-standard encryption both in transit and at rest. Access to critical systems is restricted through multi-factor authentication and role-based access controls.
• Infrastructure Security: The Platform’s infrastructure is regularly tested for vulnerabilities through penetration testing, security audits, and continuous monitoring. Firewalls, intrusion detection systems, and anti-malware solutions are deployed to prevent unauthorized access and mitigate cyber threats.
• Wallet Management: Custodial wallets are managed using secure, segregated storage solutions, with private keys stored in hardware security modules (HSMs) or equivalent secure environments. Operational procedures are in place to minimize the risk of key compromise or unauthorized transactions.

2. Anti-Money Laundering (AML) and Sanctions Compliance

• Real-Time Screening: All users and transactions are subject to real-time AML and sanctions screening against relevant international lists. This includes onboarding checks, ongoing monitoring, and transaction-level reviews to detect and prevent illicit activity.
• Enhanced Due Diligence: Users identified as higher risk, or transactions exhibiting suspicious characteristics, are subject to enhanced due diligence and additional verification procedures.
• Escalation and Reporting: Any positive matches or suspected violations are escalated to the Compliance Officer for investigation. Where required, suspicious activity is reported to the appropriate authorities in accordance with law and international standards.
• Staff Training: All relevant personnel receive regular training on AML, sanctions compliance, and the identification of suspicious activity.

3. Internal Controls and Compliance Procedures

• Segregation of Duties: Key operational functions are segregated to prevent conflicts of interest and reduce the risk of internal fraud or error.
• Audit and Oversight: Regular internal and external audits are conducted to assess the effectiveness of risk management controls, compliance with policies, and adherence to legal requirements.
• Policy Review: All risk management policies, including this Risk Disclosure Policy, are reviewed and updated at least annually or in response to significant changes in the regulatory environment or business operations.

4. Third-Party Risk Management

• Due Diligence: IronBit conducts thorough due diligence on all third-party service providers, including liquidity providers, custodians, and technology vendors, to assess their security, reliability, and compliance posture.
• Contractual Safeguards: Agreements with third parties include provisions requiring adherence to security standards, data protection, and compliance with applicable laws and regulations.
• Ongoing Monitoring: The performance and risk profile of third-party providers are monitored on an ongoing basis, with contingency plans in place to address potential failures or disruptions.

5. Incident Response and Business Continuity

• Incident Response Plan: IronBit maintains a documented incident response plan to address security breaches, system failures, or other emergencies. The plan includes procedures for containment, investigation, notification, and remediation.
• Business Continuity Planning: Measures are in place to ensure the continuity of critical services in the event of operational disruptions, including data backups, redundant systems, and disaster recovery protocols.

6. User Education and Support

• Risk Awareness: IronBit provides users with educational materials and guidance on the risks associated with digital assets, safe security practices, and how to recognize and avoid scams or fraudulent activity.
• Support Services: A dedicated support team is available to assist users with security concerns, account recovery, and reporting of suspicious activity.

7. Continuous Improvement

• Monitoring and Review: Risk management measures are continuously monitored and evaluated for effectiveness. Feedback from users, regulatory developments, and emerging threats are incorporated into ongoing improvements of the Platform’s risk management framework.

1. No Guarantee of Performance or Results

• IronBit does not guarantee the uninterrupted, error-free, or secure operation of the Platform or any of its services. Access to the Platform may be subject to delays, interruptions, or failures beyond the control of IronBit.
• The availability, value, and liquidity of digital assets are not guaranteed. IronBit does not warrant that any digital asset will retain value, remain supported, or be available for withdrawal or conversion at any time.

2. Limitation of Liability

To the maximum extent permitted by applicable law, IronBit, its affiliates, directors, officers, employees, agents, and contractors shall not be liable for any direct, indirect, incidental, consequential, special, punitive, or exemplary damages, including but not limited to:

• Loss of funds, profits, revenue, or data;
• Loss or theft of digital assets due to unauthorized access, hacking, or cyberattacks;
• Losses resulting from market volatility, price fluctuations, or changes in asset value;
• Losses or damages arising from technical failures, system errors, or service interruptions;
• Losses due to regulatory changes, legal restrictions, or government actions affecting digital assets or the Platform;
• Losses or damages resulting from reliance on information, services, or products provided by third parties, including but not limited to liquidity providers, custodians, or technology vendors;
• Losses resulting from user error, including but not limited to incorrect transaction details, loss of access credentials, or failure to comply with security recommendations.

3. No Investment, Legal, or Tax Advice

• IronBit does not provide investment, legal, tax, or financial advice. All information and materials made available through the Platform are for informational purposes only and should not be construed as a recommendation or endorsement of any digital asset, transaction, or strategy.
• Users are solely responsible for obtaining independent advice and making informed decisions regarding their use of the Platform and digital asset transactions.

4. Exclusion of Certain Warranties

• IronBit expressly disclaims all warranties, express or implied, including but not limited to warranties of merchantability, fitness for a particular purpose, title, and non-infringement.
• No oral or written information or advice provided by IronBit or its representatives shall create any warranty not expressly stated in this Policy or the user agreement.

5. Third-Party Services and Content

• The Platform may provide access to, or integrate with, third-party services, products, or content. IronBit does not control, endorse, or assume responsibility for the accuracy, reliability, or legality of any third-party information or services.
• Any reliance on third-party services or content is at the user’s own risk, and IronBit disclaims all liability for losses or damages arising from third-party actions, omissions, or failures.

6. Force Majeure

• IronBit shall not be liable for any failure or delay in performing its obligations under the user agreement or this Policy due to circumstances beyond its reasonable control, including but not limited to natural disasters, war, civil unrest, regulatory actions, or technological failures.

7. Binding Effect

• These disclaimers are binding upon all users of IronBit and apply to the fullest extent permitted by law. Certain jurisdictions may not allow the exclusion or limitation of liability for certain types of damages; in such cases, IronBit’s liability shall be limited to the maximum extent permitted by applicable law.

1. Evolution of Risks

• The nature, scope, and severity of risks described in this Policy may change as the digital asset ecosystem develops, new threats emerge, or regulatory frameworks are updated.
• Users should be aware that additional risks not currently identified in this Policy may arise in the future, and that existing risks may be mitigated or exacerbated by changes in the operating environment.

2. Policy Updates

• IronBit reserves the right to amend, update, or revise this Risk Disclosure Policy at any time to reflect changes in applicable laws, regulations, industry standards, or the Platform’s services and features.
• Material changes to this Policy will be communicated to users through appropriate channels, which may include email notifications, in-platform alerts, or updates posted on the IronBit website.
• The effective date of the most recent version of this Policy will be indicated at the beginning of the document.

3. User Notification and Continued Use

• Users are responsible for regularly reviewing this Policy to stay informed of any updates or changes.
• Continued access to or use of the Platform following the publication of an updated Policy constitutes acceptance of the revised terms and disclosures.
• If users do not agree with any changes to this Policy, they should discontinue use of the Platform and may contact IronBit for further clarification or to close their account.

1. Governing Law

This Risk Disclosure Policy, together with all rights, obligations, and disputes arising from or relating to the use of IronBit, shall be governed by and construed in accordance with the laws of Poland, without regard to its conflict of law principles. The application of any mandatory consumer protection laws of the user’s jurisdiction is not excluded to the extent such exclusion is not permitted by law.

2. Dispute Resolution Procedures

In the event of any dispute, controversy, or claim arising out of or relating to this Policy, the user agreement, or the use of IronBit, the following procedures shall apply:

3. Notice of Dispute

Any notice of dispute must be provided in writing and delivered to IronBit at compliance@ironbit.io, specifying the nature of the dispute, the relief sought, and any relevant supporting documentation.

4. Severability

If any provision of this section is found to be invalid or unenforceable under applicable law, such provision shall be severed, and the remaining provisions shall remain in full force and effect.