Account Permissions

Sail operates from your smart account. Funds never leave your custody; Sail acts only under strict, pre-defined permissions.

When you start using Sail, you sign a set of Session Keys that clearly define what the agent is allowed to do. This is the initial authorization — without it, Sail cannot touch your funds.

Each time Sail integrates a new yield source, stablecoin, network, or operation, you must sign again. Nothing new is added silently. This ensures that your agent only ever gains powers you explicitly approve.

What Sail can do (within guardrails):

• Deposit USDC into allow-listed yield sources and withdraw back to your own smart account.

• Reallocate between approved yield sources when policy checks pass (risk, cost, slippage, liquidity).

• Claim protocol rewards to your account.

• (Coming soon) Perform autonomous swaps & bridges only along approved routes, with limits.

What Sail cannot do:

• Transfer funds to arbitrary addresses or custodial pools.

• Call unapproved contracts or tokens.

• Change account ownership, upgrade your wallet, or alter recovery settings.

• Bypass slippage, size, or venue risk limits.

Control:

• Permissions are scoped and expiring (time-bound, function-scoped, and balance-capped).

• Every transaction is auditable on-chain and accompanied by an explanation in the app.