Compliance Policy

Last Updated: September 18, 2025

1. Introduction

At Fexege, we are committed to operating with integrity and in compliance with all applicable laws, regulations, and industry standards. This Compliance Policy outlines our approach to maintaining regulatory compliance and meeting the highest standards for hardware wallet security and customer protection.

We design, manufacture, and sell hardware wallets for secure cryptocurrency key storage only. We do not provide cryptocurrency exchange services, custodial storage, staking, or other financial services that would subject us to additional regulatory requirements.

2. Regulatory Framework

2.1 Hardware Device Compliance

Our hardware wallets comply with relevant regulations and standards for electronic devices, including:

  • Federal Communications Commission (FCC) requirements for electronic devices
  • Restriction of Hazardous Substances (RoHS) compliance for electronic equipment
  • CE Marking requirements for products sold in the European Economic Area
  • Waste Electrical and Electronic Equipment (WEEE) directive for responsible disposal

2.2 Data Protection and Privacy

We comply with applicable data protection and privacy regulations, including:

  • General Data Protection Regulation (GDPR) for customers in the European Union
  • California Consumer Privacy Act (CCPA) for California residents
  • Children's Online Privacy Protection Act (COPPA)

For detailed information about how we handle personal data, please refer to our Privacy Policy.

3. Product Security Standards

Our hardware wallets are designed to meet stringent security standards to protect our customers' digital assets:

3.1 Hardware Security

  • Common Criteria EAL5+ certified secure elements
  • FIPS 140-2 Level 3 compliant random number generation
  • Tamper-evident packaging and device design
  • Protection against side-channel attacks and physical tampering

3.2 Software Security

  • Open-source firmware with regular security audits
  • Secure boot process with cryptographic signature verification
  • Regular security updates and vulnerability patches
  • Implementation of industry best practices for cryptographic operations

3.3 Cryptographic Standards

  • Implementation of BIP-32, BIP-39, and BIP-44 standards for hierarchical deterministic wallets
  • Support for industry-standard cryptographic algorithms (ECDSA, Ed25519, etc.)
  • Compliance with NIST recommendations for cryptographic key generation and management

4. Business Ethics and Practices

4.1 Anti-Money Laundering (AML) Considerations

While we do not provide financial services that would directly subject us to AML regulations, we are committed to preventing the use of our products for illicit purposes. We:

  • Maintain records of our product sales as required by law
  • Cooperate with law enforcement agencies when legally required
  • Monitor for suspicious purchasing patterns

4.2 Know Your Customer (KYC) Approach

As a hardware wallet manufacturer selling physical devices, we are not required to implement full KYC procedures typical of financial institutions. However, we:

  • Collect necessary information to process orders and fulfill shipping requirements
  • Verify payment information to prevent fraud
  • Maintain appropriate records of customer transactions

4.3 Export Compliance

We comply with all applicable export control regulations, including:

  • U.S. Export Administration Regulations (EAR)
  • Screening against restricted party lists
  • Compliance with sanctions programs administered by the Office of Foreign Assets Control (OFAC)

5. Consumer Protection

5.1 Transparent Marketing

We are committed to transparent marketing practices that accurately represent our products and services:

  • Clear and accurate product descriptions
  • Transparent pricing and fee disclosure
  • No guarantees of investment returns or financial outcomes
  • Educational resources to help customers understand cryptocurrency security

5.2 Product Warranty and Support

We provide clear warranty terms and dedicated customer support:

  • One-year limited warranty on hardware defects
  • Technical support for device setup and usage
  • Transparent return and refund policies

5.3 Accessible Documentation

We provide comprehensive product documentation to ensure customers can use our products safely and effectively:

  • Setup guides and user manuals
  • Security best practices
  • Recovery procedures
  • Technical specifications and compatibility information

6. Security Incident Response

We maintain a robust security incident response plan to address potential vulnerabilities or security breaches:

  • Dedicated security team for vulnerability assessment and response
  • Responsible disclosure program for security researchers
  • Timely notification to affected customers in case of security incidents
  • Regular testing and improvement of security measures

7. Updates to This Policy

We review and update this Compliance Policy regularly to reflect changes in regulations, industry standards, and our business practices. We will notify customers of significant changes through our website or email communications.

8. Contact Information

For questions or concerns regarding our compliance policies, please contact:

Fexege Compliance Department

606 N Bell Ave, Denton, TX 76209

United States

Email: compliance@fexege.com

Phone: +1 (940) 484-8999