Greene Comply
Security

We never hold your money.

Greene Comply is a non-discretionary policy gate, not a bank. Where money moves, a regulated custodian holds it. Our job is to decide what's allowed and to prove what happened.

Posture

Non-custodial by design

No custody

Greene Comply never takes title to or holds customer funds. Where USDC settlement is involved, Circle acts as the regulated custodian.

Policy gate, not discretion

We evaluate each spend against rules you set and return approve, deny, or hold. We can’t initiate spend on our own.

Append-only audit

Every decision, freeze, and override is written to an immutable log and exportable for auditors in CSV or JSON.

Controls

Defense in depth

Scoped credentials

API keys and OAuth bearer tokens are scoped, hashed at rest, and rate-limited per key and per user.

Idempotent & replay-safe

Authorization is idempotent; a replayed request never double-settles, enforced at the database layer.

Least-privilege data

Row-level security scopes reads to the owner; the admin path bypasses RLS only for server-side, audited operations.

Disclosures

  • USDC settlement is currently testnet only. No real funds are at risk.
  • Agent transactions may execute without real-time human review unless approval thresholds are configured.
  • Nothing on this site is financial, legal, or tax advice.
  • Mainnet settlement is gated on counsel review and an explicit go.