MPC wallet,
key management & policy engine

Control over keys. Control over operations.
Zero third-party reliance.

Book a demoSee treasury
The Vault
01 MPC wallet & key management

Your keys never exist in one place

Private keys are the most sensitive component of digital assets. The Vault protects them through multiple independent layers, supported across all deployment models.

01.

MPC Cryptography

The Vault uses true threshold MPC, a T-of-N signature scheme where each private key is split into shares distributed across client devices and TEE-secured servers. The key is never assembled in full at any single point, eliminating the risk of theft even in the event of a breach.

02.

TEE Technology

Trusted Execution Environment (TEE) provides hardware-level isolation for key operations. Even if the surrounding server infrastructure is compromised, operations inside the TEE remain protected, and key shares cannot be extracted.

03.

Your Sole Control

Private keys are generated and stored within the client’s own perimeter. The Vault infrastructure never has unilateral access to keys or the ability to sign transactions without client authorisation.

Multi-party computation wallet architecture is supported across all three deployment models, In-house, Cloud and Hybrid, with the same security guarantees at every level.

01. Approval Policies 02. Spending Limits 03. Address Whitelists 04. Enterprise Policy Engine 05. Role-based Permissions 06. Flexible Rule Configuration

Rule-based workflows for transaction authorisation. Define who approves what, under which conditions, and with what quorum requirement — for every wallet and operation type.
02 Policy engine

A policy engine that governs every fund movement

Structural governance enforced before any key share activates.

03 Approval workflows

Step-by-step: how every transaction is governed

A multi-user wallet only delivers security if the approval process is strictly enforced.

01. Policy Setup

Admins configure rules, limits, and quorums.

02. Initiation

Authorised user creates a request. Initiators cannot approve.

03. Validation

Auto-check against predefined rules. Non-compliant requests are instantly rejected.

04. Approval

Routed to designated approvers based on policy quorum.

05. Signing

MPC key shares sign across devices and TEE servers.

06. Execution

Submitted to the blockchain.

04 Audit trail & attribution

Complete visibility across every wallet and operation

Audit-ready architecture with deep operational visibility built for regulated environments.

Comprehensive audit trail

Every operation captures initiator, approvers, timestamps, and device identifiers.

End-to-end monitoring

Full visibility across all wallets for compliance and finance teams.

Cryptographic integrity

Tamper-resistant databases ensure audit logs cannot be altered retroactively.

Complete attribution

Nothing is anonymous. Every decision is tracked to a specific user & device.

05 Deployment control

Same security architecture, deployed your way.

Choose where The Vault runs. The MPC key management and policy engine operate identically in every configuration.

Talk to the team
    • Deployed on client infrastructure
    • Zero external dependencies
    • All keys and data within client perimeter
    • Closed architecture minimises external exposure
    • Hosted and operated by The Vault
    • No infrastructure to run
    • Rapid onboarding
    • Identical MPC and policy engine
    • White-label custody for your clients
    • Regulated AML and KYC operations
    • Travel Rule compliance included
    • Enterprise SLAs
06 Contact

Security that belongs to you, not your vendor.

The only platform combining true threshold MPC, a configurable policy engine, and full deployment flexibility, with no third-party key access.

Book a demo See treasury