Enhanced Security Measures: Navigating Our Response to the Recent Incident (February 24th, 2024)

Dear SocialPass Community,

We are writing to inform you of a privacy incident that occurred on the morning of February 24th (Eastern Standard Time), which concerns the security of your personal information.

What Happened

Our platform facilitates communication to attendees by allowing event organizers to send emails to ticket holders of specific tiers. Due to an error, emails intended for individual recipients were sent with all addresses visible in the CC field, inadvertently disclosing some email addresses to other attendees within the same ticket tier.

The root cause of this error was immediately identified and patched. Out of an abundance of caution, we have also disabled all sending of emails until proper quality assurance is in place across our entire product.

Important Clarifications

• No Action Required: At this moment, there is no immediate action required on your part.
• Limited to Email Addresses: Importantly, no other sensitive data such as wallet addresses, IP addresses, or anything else identifiable were involved in this incident. Your wallet remains 100% safe as well, as SocialPass has never, and will never, collect private keys.
• Phishing Alert: With your email address disclosed to fellow attendees, please be extra cautious of potential phishing attempts. SocialPass and its affiliates will never ask you to connect your wallet, nor request any transactions, via email.

Proactive Steps We Are Taking

This incident has highlighted a need for even more enhanced quality assurance measures. We are fully committed to ensuring the integrity of our platform and are taking immediate steps to prevent such an occurrence in the future:

• Boosting Quality Assurance: Elevating our platform's reliability and safety through significant investments in comprehensive QA services.
• Engaging with Audit Firms: We're partnering with top audit firms for ongoing, detailed code reviews, reinforcing our security framework.
• Integration with Delegate.xyz: To enhance your security, we're integrating Delegate.xyz
• Advancing Towards SOC Compliance: Our journey towards SOC compliance aims to set new standards in data handling and privacy
• Pausing New Features for Security: Focusing on security enhancements, we are temporarily halting new feature development to prioritize your safety.

Our Sincere Apology

As a team dedicated to Web3 we highly prioritize safety and security, we deeply apologize for any concern this may have caused.

Our team is dedicated to providing a secure and enjoyable experience for all users, and we regret falling short in this instance.

We are taking rigorous steps to enhance our platform's security and ensure such incidents do not recur. We value the trust you place in SocialPass and are committed to upholding the highest standards of privacy and security.

Should you have any questions or need further information, please feel free to reach out to our support team via the SocialPass support bot available in our Twitter bio here: https://Twitter.com/SocialPass_io

Thank you for your understanding and support as we navigate this challenge.

Together, we will continue to build a secure and trusted platform for our community.

Best regards,

Kevin
Chief Technology Officer,
SocialPass.io