We’ve started the last phase of UX design and are now in full Front development mode, which is the last piece before the alpha. We’ve been thinking and designing a lot of fun specs that you guys will love. Soon in the development, we will share flows and ask you guys to help us with our UX research: it’s vital that we gather initial feedback from our user base to tweak and give the right direction to our product hypotheses and decisions.
We have been pursuing our Smart Contracts refactoring to make them user-centric instead of wallet-centric. That way we can manage user rights instead of wallet rights. E.g., any wallet belonging to a streamer won’t be allowed to stake on her bets. Therefore, no one can get or know a user’s wallet list. One can request a user’s rights and also get them by knowing an Ethereum address, but not the other way. That ensures our users some level of privacy.
Following email verification best practices, we have decided to implement the following workflow. Registered users are required to verify their email: at sign-up time, their email enters a pending state, waiting for confirmation until they open our confirmation email. Plus, each time a user changes her email, the new email goes to a pending state until confirmation for an email update, while letting her sign in with her old email. For a long time, we’ve been torn between enforcing emails or not. Our initial utopia offers full anonymity through the use of Ethereum wallets only to identify users. We ended up qualifying our vision statement, for we are building in a highly regulated legal framework, and KYC is not only mandatory but also the promise of a better overall experience for our users. Besides, as you already know, we’ve been building an in-house hot wallet management system for those who do not want to bother with their wallets. For that, we plan on sending our users a unique recovery token at signup via email that would be the only way to recover their wallet if they lose their password. We will neither store the password nor the recovery token, meaning that in case of a hack, there’s no way for the hacker to access wallets.
On the legal verification side, we have been comparing and testing an exhaustive list of AML and KYC provider, to select the right ones that cover our standards in terms of performance. The market for ID cards OCR is ridiculously inexistent, and we’ve been developing a solution in-house that we’re willing to share with anyone who’s been stuck with that problem.
Having consulted with the Malta Gaming Authority regulators, we validated and began implementation of a new Smart Contract role: moderator. A moderator is in contract with us and can be affiliated to a streamer. The role allows users to act as oracles to report on the winning side of a bet. Then, after a limited amount of time and a minimum required amount of reports, and only if there is full consensus on the winning side, the streamer will be able to resolve bets and distribute earnings, in a pari-mutuel way. When there is no consensus between moderators and the streamer, the bet is said to be frozen and an administrator, whose only focus is oracles and bet resolving, will be able to resolve the bet with the right winning side, e.g. after having watched the stream recording.
Stay tuned and gg!