Agreement or if either or both of the Custodial Entities are required to do so by a subpoena, court order, or other binding government order. From the time the Custodian has verified the authorization of a complete set of instructions to withdraw SUI from the Vault Balance, the Custodian will have a limited amount of time to process and complete such withdrawal. The Custodian will ensure that initiated deposits are processed in a timely manner but the Custodian makes no representations or warranties regarding the amount of time needed to complete processing which is dependent upon many factors outside of the Custodian’s control. Transactions relating to SUI held in the Settlement Balance occur on the Sui Network. The Custodial Entities make no other representations or warranties with respect to the availability and/or accessibility of SUI or the availability and/or accessibility of the Vault Balance, the Settlement Balance or the Custodial and Prime Broker Services. Security of the Accounts The Custodial Entities securely store all digital asset private keys held by the Custodian on secure servers or offline, in cold storage. Under the Prime Broker Agreement, the Custodian must use commercially reasonable efforts to keep the private key or keys to the Vault Balance secure, and may not disclose such private keys to the Sponsor, Trust or any other individual or entity. The Custodial Entities have implemented and will maintain reasonable information security programs that include policies and procedures that are reasonably designed to safeguard the Custodial Entities’ electronic systems and the Trust’s and the Sponsor’s confidential information from, among other things, unauthorized access or misuse. In the event of a Data Security Event (as defined in the Prime Broker Agreement), the Custodial Entities will promptly (subject to any legal or regulatory requirements) notify the Trust and the Sponsor. Record Keeping; Inspection and Auditing The Custodian will keep timely and accurate records as to the deposit, disbursement, investment and reinvestment of the SUI in the Vault Balance, and such records must be retained by the Custodian for no less than seven years. The Prime Broker Agreement also provides that each Custodial Entity will permit, to the extent it may legally do so, the Trust’s third-party representatives, upon thirty days’ notice, to inspect, take extracts from and audit the records that it maintains, take such steps as necessary to verify that satisfactory internal control systems and procedures are in place, as the Trust may reasonably request. The Prime Broker is obligated to notify the Trust of any audit report prepared by its internal or independent auditors if such report reveals any material deficiencies or makes any material objections. The Trust and the Sponsor obtain and perform a comprehensive review of the Services Organization Controls (“SOC”) 1 report and SOC 2 each year. For additional information, see “—Description of Trust Documents—Description of the Prime Broker Agreement.” In addition to the review of SOC 1 and SOC 2 reports, the Trust, the Sponsor and/or their respective auditors may inspect or audit the Custodian’s records in a variety of manners if considered necessary. Such processes may include validating the existing balances as reflected on the Custodian’s user interface to nodes of the underlying blockchain and confirming that such digital assets are associated with its public keys to validate the existence and exclusive ownership of the digital assets. To validate software functionality of the private keys, the Trust may transfer a portion of its digital assets from one public key to another public key of the Trust. The Trust, the Sponsor and their independent auditors may evaluate the Custodian’s protection of private keys and other customer information, including review of supporting documentation related to the processes surrounding key lifecycle management, the key generation process (hardware, software, and algorithms associated with generation) the infrastructure used to generate and store private keys, how private keys are stored (for example, cold wallets), the segregation of duties in the authorization of digital asset transactions, and the number of users required to process a transaction and the monitoring of addresses for any unauthorized activity. For additional information, see “—Custody of the Trust’s SUI.” Once each calendar year, the Trust and the Sponsor will be entitled to request that the Custodial Entities provide a copy of the Services Organization Controls (“SOC”) 1 report and SOC 2 report once per calendar year. Such reports are required to be dated within one year prior to such request. The Custodial Entities reserve the right to combine the SOC 1 and SOC 2 reports into a comprehensive report. In the event that the Custodial Entities do not deliver a SOC 1 Report or SOC 2 Report, as applicable, the Sponsor and the Trust will be entitled to terminate the Prime Broker Agreement. In addition to the review of SOC 1 and SOC 2 reports, the Trust may also request letters of representation on a quarterly basis between SOC reports regarding any known changes or conclusions to the SOC 1 and SOC 2 report.
103
Made with FlippingBook - professional solution for displaying marketing and sales documents online