This document (“Statement”) informs users of Portofóli about the potential risks associated with using our platform. It aims to ensure that users make informed decisions about their engagement with Portofóli’s services and understand the inherent risks involved.

Portofóli is a project providing the infrastructure and presenting a comprehensive product suite for users and developers to harness the expansive possibilities of Web3, combining a digital wallet that supports cryptocurrency trading, NFT management, and DApp exploration, and native token of the ecosystem (PRTO Coin). Our platform facilitates secure storage of cryptographic keys, enabling users to manage their assets and participate in decentralized finance (DeFi) applications, token swaps, and NFT transactions.

Regulatory uncertainty

Cryptocurrencies currently operate within an uncertain regulatory environment across multiple jurisdictions. Legislative and regulatory changes or actions at the local, regional, or international level may significantly impact their legality, taxation, and compliance requirements, subsequently affecting cryptocurrency networks, their users, and the market value of cryptocurrencies. These changes could affect the acceptance of cryptocurrencies by users, merchants, and service providers, potentially influencing their market price.

Furthermore, cryptocurrency markets and exchanges are not subject to the same regulatory controls or customer protections as traditional financial markets such as equities, options, futures, or foreign exchange. There is no guarantee that individuals or entities accepting cryptocurrencies as payment today will be allowed to continue to do so in the future.

Users should review Privacy Policy to understand platform operations, fees, and associated risks. It is your responsibility to ensure compliance with applicable laws and regulations governing cryptocurrencies in your jurisdiction.

Market adoption Risk

AS DESCRIBED IN THE TERMS OF SERVICE, THE PORTOFÓLI PLATFORM AND THE SERVICES ARE PROVIDED “AS IS”, AT YOUR OWN RISK, AND WITHOUT WARRANTIES OF ANY KIND.

You acknowledge that the stability of the Services may be influenced by factors beyond our control, including but not limited to hacking attempts, distributed denial-of-service attacks, and other security breaches. This stability may be affected by other various considerations, including but not limited to insufficient funding, fluctuations in the value of funding received, the departure of key team members, challenges in recruiting necessary personnel, insufficient public support, competitive pressures, or the failure of third-party service providers and partners to fulfill their obligations effectively. The contingency of the provision of the Services to you is subject to a range of external variables, and there is no assurance that the Services will be provided uninterruptedly and without error.

Risks Associated with Digital Assets

Cryptocurrency is a digital representation of value that functions as a medium of exchange, a unit of account, or a store of value, but it does not have legal tender status. Investment in cryptocurrencies comes with a number of risks, including volatile market price swings or flash crashes, market manipulation, and cybersecurity risks.

Cryptocurrencies are sometimes exchanged for FIAT currencies around the world, but they are not generally backed or supported by any government and lack support from tangible commodities like gold or silver. Unlike traditional currencies, they aren’t regulated by central banks, leaving them vulnerable during crises.

Prices of Digital Assets are highly volatile, meaning they can result in significant losses in a short period of time. In general, the value of Digital Assets is derived from the continued willingness of market participants to exchange fiat currency or Digital Assets for Digital Assets, which may result in the potential for permanent and total loss of value of a particular Digital Asset should the market for that Digital Asset disappear; Therefore, an individual Digital Asset product may drop in price and may under some circumstances even become valueless, disappear. You should not invest more than you can afford and are willing to lose.

In Addition, any individual cryptocurrency may change or otherwise cease to operate as expected due to changes made to its underlying technology, or changes resulting from an attack. These changes may include, without limitation, a “fork,” a “rollback,” an “airdrop,” or a “bootstrap.” Such changes may dilute the value of an existing cryptocurrency position and/or distribute the value of an existing cryptocurrency position to another cryptocurrency.

Moreover, transactions in Digital Assets require enhanced diligence as may be irreversible, and thus, may result in irrecoverable losses.

Specific Risks Associated with the PRTO Coin

The PRTO Coin (“Token”), the native token of the platform, may be highly volatile and subject to market fluctuations, influenced by factors such as market demand, technological advancements, regulatory developments, and macroeconomic trends. Moreover, the underlying technology of the Tokens may contain flaws, bugs, or disruptions that could impair their functionality. Additionally, the regulatory environment for virtual assets, blockchain technology, and decentralized networks is constantly evolving, potentially impacting the legal status, transferability, and value of the Tokens. The commercial success of the Tokens remains uncertain, and we assume no liability for regulatory changes or the failure of the Tokens to function as intended.

Investment in Digital Assets is susceptible to irrational (or rational) bubbles or loss of confidence, which could collapse demand relative to supply. You should do your own research and consult a financial adviser before investing in digital assets.

Security vulnerabilities

Blockchain and cryptocurrency systems are susceptible to security breaches such as hacking attempts, phishing attacks, and vulnerabilities in smart contracts or DApps.

Our platform, alongside cryptocurrencies and their associated wallets or spot exchanges, is susceptible to cybersecurity vulnerabilities. These include the risk of account compromise through various tactics such as payment fraud, phishing, or weak authentication mechanisms, potentially resulting in financial loss or identity theft.

Moreover, data breaches present a considerable risk, leaving user information vulnerable to theft or misuse. Additionally, users are targeted by phishing scams, malware attacks, and spoofing techniques aimed at obtaining sensitive information or gaining control over their devices.

Portofóli employs advanced identification mechanisms and robust security measures, including encryption and multi-signature support , to protect user funds and accounts. However, users must safeguard their private keys and exercise caution to prevent unauthorized access or loss of funds. The loss, theft or destruction of a private key may result in an irreversible loss of your cryptocurrency associated with it. The security of your login details and associated credentials, including but not limited to passwords, private and public keys, identifiers, passphrases, backup data, and other pertinent data, including those attributable to third-party apps and service providers is entirely your individual responsibility. You are obligated to maintain control over your security details to preclude unauthorized access, unauthorized use, loss, modification, alteration, theft, or breach of your security data.

Blockchain Technology

Portofóli leverages blockchain technology to provide secure wallet services and facilitate decentralized transactions. While blockchain enhances transparency and security, users must protect their private keys and exercise caution to prevent unauthorized access or loss of cryptocurrency.

Moreover, although blockchain is considered secure due to its cryptographic principles, vulnerabilities such as software bugs, coding errors, or flawed smart contracts can still be exploited by attackers.

Since blockchain is an independent public peer-to peer network and is not controlled in any way or manner by Portofóli, we shall not be responsible for any failure and/or mistake and/or error and/or breach which shall occur in the blockchain ecosystem or in any other networks in which tokens may be used and/or traded. You will be bound and subject to any change and/or amendments in the blockchain system and subject to any applicable law which may apply to the blockchain. We make no representation or warranty of any kind, express or implied, statutory or otherwise, regarding the blockchain functionality nor for any breach of security in the blockchain.

Additional unique risks to users may arise from forks in the blockchain. In such cases, the blockchain splits into two separate chains, which could cause confusion and potential loss of funds if transactions are not managed correctly across both chains.

Access and Operational Disruptions

Network issues, browser compatibility, or device-specific limitations may impact access to Portofóli services. We shall not be liable for any and all circumstances in which you experience a delay or an inability to access our services caused by network transmission problems or restrictions or any other problems outside our direct control, which include but are not limited to the strength of the mobile signal, network latency, or any other issues that may arise between you and any internet service provider, phone service provider or any other service provider.

Future Portofóli applications may require Users to download and install updates to the application or to their device’s operating system as such updates are made available. Failure to do so might lead to certain parts of the Services (including trading functions) becoming inaccessible to Users until such update has been successfully downloaded and installed. Performance issues and security risks may arise if our services are applied on devices with customized or otherwise non-standard operating software or as a result of other software installed on such devices.

Factors beyond our control, such as network congestion, software bugs, or blockchain forks, can affect the stability and functionality of Portofóli.

Users are responsible for maintaining updated software and hardware configurations to ensure optimal performance and security.

Reporting a Security Issue

For security concerns related to Portofóli, please contact our support team at support@portofoli.net. Responsible disclosure of vulnerabilities helps us maintain the integrity and security of our platform and protect our users.

Well-written reports in English will have a higher chance of being accepted. What to include:
– Visual evidence, such as images or video evidence substantiating the report/claim.

Include how you found the bug, the impact, and any potential remediation

What you may expect from us:

• A timely response to your email.
• An open dialog to discuss issues.
• Credit after the vulnerability has been validated and fixed.

Reports submitted in regards to the following topics or issues will not be processed:

• Scam & phishing attempts involving Portofóli services
• Lost or compromised secret phrases, keystore files or private keys
• Physical vulnerabilities
• Social Engineering attacks
• Functional, UI, and UX bugs such as spelling mistakes
• Descriptive error messages
• HTTP error codes/pages
• Solely crash dumps or another automated tool output errors Coordinated Responsible Disclosure Policy We ask security researchers to keep vulnerabilities and communications around vulnerability submissions private and confidential until a patch is developed to protect the Portofóli Services and its users.

  Please do:

• Allow the Portofóli team a reasonable amount of time to address security vulnerabilities
• Avoid exploiting any vulnerabilities that you discover
• Demonstrate good faith by not disrupting or degrading Portofóli services, products & data Portofóli pledges not to initiate legal action against researchers as long as they adhere to this policy.

  Responsible Disclosure Process

  Once a security report is received, the Portofóli team verifies the issue and establishes the potential threat. Patches to address the issues will be prepared and tested. Portofóli updates the utility token and NFT technology right away