# Security & No-KYC Policy ## No KYC Blocksmiths does not require identity verification from buyers or vendors. A wallet is all you need to transact on the platform. This is by design. The Web3 ecosystem is built on pseudonymous participation, and we believe a marketplace for Web3 tools should respect that principle. **What we do not collect:** * Government-issued ID * Proof of address * Tax identification numbers * Phone numbers **What we do collect:** * Email address (for account sign-in and order notifications) * Wallet addresses (for payments and payouts) * Order and transaction history (for dispute resolution) ## On-Chain Transparency All payments are made on public blockchains. Transaction hashes are recorded and linked to orders. Anyone can verify a payment occurred by looking up the transaction hash on a block explorer. This means payments are transparent and immutable — they cannot be altered or reversed after confirmation. ## Vendor Approval While we do not verify identity, vendors must be approved by an admin before they can sell. This is the platform's primary tool for maintaining quality and trust. Vendor approval is based on the quality and legitimacy of what they plan to sell, not who they are. ## Platform Security * User sessions are managed via NextAuth with encrypted session tokens * Passwords are hashed — plaintext passwords are never stored * Downloadable assets are access-gated — buyers can only download files for orders they have completed * License keys are unique per order and tied to buyer accounts ## Responsible Use Blocksmiths is a tool marketplace. Vendors are responsible for ensuring their products comply with applicable laws in their jurisdiction. The platform does not vet the legal status of tools sold here, but reserves the right to remove listings that violate platform guidelines or that facilitate clearly illegal activity. ## Reporting Issues If you discover a security vulnerability in the platform, please report it responsibly by contacting the admin team directly rather than disclosing it publicly. --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.blocksmiths.tech/platform/security-and-no-kyc-policy.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.