Compliance

Last Updated: September 9, 2025

At Bogew, we are committed to maintaining the highest standards of regulatory compliance, security, and ethical business practices. This page outlines our approach to compliance and the standards we adhere to in the development and distribution of our hardware security products.

1. Regulatory Compliance

1.1 Data Protection and Privacy

We comply with applicable data protection and privacy regulations, including:

  • United States: California Consumer Privacy Act (CCPA), California Privacy Rights Act (CPRA), and other state privacy laws
  • International: We respect and accommodate the requirements of international privacy laws such as the General Data Protection Regulation (GDPR) for our customers in the European Economic Area

For more information about how we handle your data, please see our Privacy Policy.

1.2 Electronic Commerce Regulations

Our e-commerce operations comply with relevant consumer protection laws and regulations, including:

  • Federal Trade Commission (FTC) rules on fair business practices
  • Electronic Funds Transfer Act
  • Unfair, Deceptive, or Abusive Acts or Practices (UDAAP) prohibitions
  • State consumer protection laws

1.3 Import/Export Compliance

Our hardware devices are subject to certain export control regulations. We comply with:

  • U.S. Export Administration Regulations (EAR)
  • Customs regulations in countries where we ship our products
  • International trade agreements and restrictions

We maintain appropriate documentation and follow required procedures for the international shipment of our hardware products.

2. Security Standards and Certifications

2.1 Product Security Standards

Our hardware security devices are designed and developed in accordance with industry-recognized security standards and best practices:

  • Common Criteria: Our secure element components are certified under Common Criteria EAL5+ standards
  • FIPS 140-2: Our cryptographic modules adhere to Federal Information Processing Standard 140-2 requirements
  • ISO/IEC 27001: Our development processes follow information security management best practices

2.2 Vulnerability Disclosure Program

We maintain a responsible vulnerability disclosure program to identify and address potential security issues in our products:

  • Coordinated vulnerability disclosure policy
  • Bug bounty program for security researchers
  • Regular security audits by independent third parties

Security researchers can report vulnerabilities to security@bogew.com.

2.3 Supply Chain Security

We implement strict supply chain security measures to ensure the integrity of our hardware products:

  • Secure manufacturing facilities with restricted access
  • Component verification and authenticity checks
  • Tamper-evident packaging and secure shipping methods
  • Verification processes to detect potential tampering

3. Industry Standards and Best Practices

3.1 Cryptocurrency Industry Standards

Our products support and implement widely accepted cryptocurrency standards:

  • BIP32, BIP39, BIP44: Hierarchical deterministic wallet standards
  • ERC-20: Ethereum token standard
  • SegWit: Segregated Witness implementation
  • Other relevant blockchain protocol standards

3.2 Open Source Compliance

Where we use open source components in our products, we respect and comply with the relevant license terms:

  • Proper attribution for open source software
  • Compliance with license requirements
  • Contribution to open source projects that benefit the community

4. Business Ethics and Corporate Responsibility

4.1 Anti-Money Laundering (AML) and Know Your Customer (KYC)

While our hardware products themselves do not require AML/KYC procedures as they are physical devices rather than financial services, we are committed to preventing the use of our products for illicit purposes:

  • Monitoring of suspicious purchase patterns
  • Cooperation with law enforcement agencies when legally required
  • Educational content for users about legal and responsible use of cryptocurrency

4.2 Environmental Responsibility

We are committed to minimizing the environmental impact of our products:

  • RoHS (Restriction of Hazardous Substances) compliant components
  • WEEE (Waste Electrical and Electronic Equipment) compliant recycling programs
  • Minimized packaging waste and use of recyclable materials
  • Energy-efficient product design

4.3 Accessibility

We strive to make our products and services accessible to all users:

  • Web Content Accessibility Guidelines (WCAG) 2.1 compliance for our website
  • Accessible documentation and support materials
  • Ongoing improvements to product usability for users with disabilities

5. Compliance Updates and Governance

5.1 Compliance Monitoring and Updates

We maintain a proactive approach to regulatory changes and industry developments:

  • Regular review of applicable laws and regulations
  • Membership in industry associations to stay informed about best practices
  • Periodic updates to our compliance policies and procedures

5.2 Governance Structure

Our compliance program is overseen by dedicated personnel:

  • Chief Compliance Officer responsible for overall compliance strategy
  • Regular compliance reviews by executive management
  • Employee training on compliance matters
  • Documented policies and procedures for addressing compliance issues

6. Contact Information

If you have questions about our compliance policies or practices, please contact our Compliance Department:

Compliance Department
Bogew
12166 Old Big Bend Rd #303
Kirkwood, MO 63122
United States

Email: compliance@bogew.com
Phone: +1 (877) 203-2963

We are committed to addressing compliance concerns promptly and thoroughly.