Kronos is built for people who actually use their money — gig workers, freelancers, independent earners. That means the people running it (us) take real responsibility for keeping it safe. Here's exactly how that works, in plain English.
Your USD is held as USDB — a US-dollar-pegged stablecoin issued by Bridge.xyz, our money-movement and custody partner. Bridge settles balances at Lead Bank, a regulated US banking sponsor, which provides FDIC pass-through insurance up to $250,000 per qualified beneficiary. You can move USD in and out as standard ACH at any time, and every credit and debit reflects on Bridge's books in real time.
Your crypto wallet is non-custodial. Keys derive on your device from a 12-word recovery phrase that never leaves it — not to our servers, not to Bridge's, not anywhere. We can't move your crypto and we can't recover it for you. That's the point. Back up your phrase from Profile → Secret Phrase the day you sign up, and store it somewhere a fire or a stolen phone can't reach.
The Kronos card is issued through a regulated US card-issuing partner. We're currently evaluating Stripe Issuing, Lithic, Highnote, and Episode Six and will publish the chosen partner here once contracts are signed. Every card authorization routes through the issuer's real-time decisioning before ever reaching your USDB balance — the issuer is the network-of-record for fraud monitoring, dispute handling, and Reg E compliance.
AES-256 at rest, TLS 1.3 in transit. Your secret crypto phrase and any private keys are stored only in your device's secure enclave (Keychain on iOS, Keystore on Android) — never in plain text, never on our backend. Sensitive fields like full account numbers are stored encrypted and decrypted only at the moment of use.
Every money-movement action — sends, withdrawals, card payouts, P2P transfers — is gated behind a fresh biometric (Face ID, Touch ID) or one-time passcode prompt before it leaves the app. There are no exceptions. Our fraud system also applies first-send caps to new recipients and new linked banks: a brand-new external account can't be drained in the first 24 hours.
Identity verification is run through Persona at signup, with sanctions and PEP screening on every account on an ongoing basis. Every external bank debit captures a NACHA-compliant authorization snapshot — the date you authorized it, the IP, and the exact disclosure text shown — which we keep on file in case a transfer is ever disputed. You can pull your own authorization records from any transaction's detail page.
In-app support is backed by Freshdesk and lands with a real person. Our internal goal is a first response within 4 hours during business hours and 24 hours on weekends. For anything money-related, the in-app error card opens a ticket with the full context attached automatically — transfer ID, error code, app version, screen — so you never have to dig for it.
Email [email protected]. Reports of suspected vulnerabilities or unauthorized account activity trigger a same-day review. We do not run a public bug-bounty program yet but we acknowledge every report and credit researchers in our security log when fixes ship.