Trust
Audit & attestations.
Audits and attestations are part of building a credible operator. They are also widely misunderstood — and frequently overstated. This page describes what kinds of independent assurance Northvault works with, what each one is intended to prove, and what they cannot prove on their own.
Types of work
- Reserves attestation — point-in-time confirmation of on-chain balances and reserve composition
- Operational audit — independent review of operational controls (SOC 2 - style scope where applicable)
- Smart-contract review — third-party review of any custom on-chain code Northvault deploys
- Financial audit — independent audit of corporate financials at the entity level
What each does and does not prove
A reserves attestation does not test operational controls. An operational audit does not test counterparty solvency. A smart-contract review does not eliminate the possibility of an unrelated exploit. A financial audit speaks to the past, not the future. Used together, these reports raise the floor on credibility; used alone, any one of them can be a partial picture sold as a complete one.