How Are My Funds Protected?

Your money is held in your own account — not by Peanut. Only you can move your funds, using your device's biometric authentication (fingerprint or face). Peanut never has access to your keys or your money. Even if Peanut's servers go down, your funds remain accessible.

How It Works

Your Peanut account is backed by a personal smart account on the Arbitrum network. Your private key is generated from your device's biometric (fingerprint or face), sealed in your device's Secure Enclave, and never sent to Peanut's servers. Every transaction requires your biometric authentication — no one can move your funds without your physical device and your fingerprint or face.

What Peanut Cannot Do

  • Cannot access your funds — your money is in your own account, not Peanut's
  • Cannot freeze your account — there is no mechanism for Peanut to block your access
  • Cannot reverse transactions — completed transactions are final
  • Cannot see your identity documents — verification is handled by a certified third-party provider; Peanut only receives a yes-or-no result

What Happens If Peanut Goes Down

Your funds are safe. Your account exists independently on the Arbitrum network. If Peanut's app becomes unavailable, you can access your funds directly using any compatible wallet application — you are not locked in.

Authentication

Peanut uses passkey authentication — no passwords, no traditional two-factor authentication. Your passkey is:

  • Generated from your device's biometric (fingerprint or face)
  • Sealed in your device's Secure Enclave — never exported, never touches Peanut's servers
  • Synced across devices via iCloud Keychain (Apple) or Google Password Manager (Android)

Every transaction requires a fresh biometric verification. Someone would need physical access to your device and your fingerprint or face to authorize any action.

Identity Verification

Verification is handled by a certified third-party provider (SOC 2 Type 2, GDPR-compliant, ISO 27001). Your identity documents are stored by this provider, not by Peanut. Peanut only receives status of your kyc verirication.

Data Protection

  • GDPR compliant — you can request data deletion at any time
  • No data sharing — your data is not shared with third parties beyond what is required for transactions and verification
  • Encryption — passkey uses NIST P-256 Elliptic Curve cryptography

FAQ

Are my funds insured?+

Your funds are held in your own account, not pooled by Peanut. Because Peanut does not hold your money, traditional deposit insurance does not apply. However, your funds are protected by the security model described above — only you can move them.

Can someone steal my funds if they have my phone?+

They would also need to pass your biometric authentication (fingerprint or face scan). Without your biometric, the passkey cannot be used. If your phone is stolen, contact support immediately.

What if I lose my passkey?+

Your passkey syncs across devices via iCloud Keychain (Apple) or Google Password Manager (Android). If you lose all devices and cannot recover the passkey, contact support for account recovery — you will re-verify your identity with the same document you originally used.

Can Peanut reverse a transaction I made by mistake?+

No. Completed transactions are final and cannot be reversed by Peanut. If you sent funds via a Peanut Link that has not been claimed yet, you can reclaim them. For other issues, contact support.

Does Peanut comply with regulations?+

Peanut's fiat operations are handled by licensed financial partners who comply with local regulations, including sanctions screening. Peanut itself is developed by Squirrel Labs Ltd, based in London.

Chat with Support