Magic Link Sign-In
Passwordless email authentication
SOC 2 Compliant
Industry-leading security standards
No Private Keys
Read-only platform, your keys stay safe
Secure Sessions
Encrypted connections and secure storage
How Sign-In Works
Octav uses passwordless authentication via email magic links for a secure, convenient experience.Visit Octav
Go to beta.octav.fi
Enter Your Email
Enter your email address on the login page
Check Your Inbox
Look for an email from Octav with your magic link (check spam folder if needed)
Click the Magic Link
Click the link in the email to instantly sign in
You're In!
No password needed - you’re now signed in securely
Passwordless Authentication — Magic links eliminate the need for passwords, reducing the risk of password theft, phishing, and credential reuse.
Why Magic Links?
- Security Benefits
- User Experience
- How It Works
More Secure Than Passwords
No Password Reuse
Can’t reuse credentials from breached sites
No Weak Passwords
No risk of weak or guessable passwords
Phishing Resistant
Harder to phish than traditional credentials
Email Verification
Proves you control the email address
Magic Link Best Practices
Email Security
Email Security
Protect Your Email Account:
- Use a strong, unique password for your email
- Enable two-factor authentication on your email account
- Don’t share your email credentials
- Use a reputable email provider
Link Expiration
Link Expiration
Magic Links Expire:
- Links are valid for 15 minutes
- Each link can only be used once
- Request a new link if yours has expired
- Old links become invalid after use
- Return to beta.octav.fi
- Enter your email again
- Request a new magic link
- Check your inbox for the new link
Check the URL
Check the URL
Always Verify:
- Official domain: beta.octav.fi
- Look for HTTPS in the address bar
- Check for the padlock icon
- Bookmark the official site
- Suspicious domains (octav-login.com, octav.io, etc.)
- No HTTPS encryption
- Unusual email sender addresses
- Unexpected login requests
API Authentication
For developers integrating with the Octav API. API Authentication Methods:- API Keys - For server-to-server communication
- JWT Tokens - For client-side applications
Account Security
Read-Only Platform
Your Keys Stay Safe — Octav is a read-only portfolio tracker. We never ask for private keys or seed phrases, and we cannot execute transactions on your behalf.
- Your wallet addresses (that you provide)
- Public blockchain transaction data
- Token balances and positions
- Your private keys
- Your seed phrases
- Your exchange credentials
- Ability to move your funds
SOC 2 Compliance
SOC 2 Type 1
Design ComplianceSecurity controls properly designed
SOC 2 Type 2
Operational ComplianceSecurity controls operating effectively over time
- Industry-leading security standards
- Regular third-party security audits
- Comprehensive security controls
- Data protection best practices
- Continuous monitoring and improvement
Data Protection
- Data Encryption
- Privacy
- Your Rights
How We Protect Your Data
Encryption:- Data encrypted in transit (TLS 1.3)
- Secure data storage
- API keys encrypted at rest
- Secure communication protocols
- SOC 2 Type 1 & Type 2 certified
- Regular security audits
- Monitored 24/7
- Secure hosting infrastructure
Need Help?
Account Access Issues
If you’re having trouble signing in or accessing your account, please contact our support team.Check Your Email
Make sure the magic link hasn’t expired (15 minute limit)
Check Spam Folder
Magic link emails may sometimes end up in spam
Request New Link
Try requesting a new magic link if yours expired
Contact Support
If issues persist, email [email protected]