1. As said, this is not the best place to advertise your project, hence you should move the topic.
2. What stops you from conveniently log/store the information you get before (API keys) or after (policy number) encrypting it? If you want to tell about IP blacklist, read 4.
3. What stops the trusted person use the policy number and withdraw - sooner or later - those funds like he would have the API keys himself? (excepting IP)
4. From what I see the only security measure would be that the Binance account API keys work only with a small list of IPs. I don't have experience with the API keys, but I don't expect "the next generation" will be able to enter from the exact whitelisted IP. Most households have dynamic IP, hence the Binance account will have to allow IP ranges or everything (if that's possible), hence allowing the funds get stolen (see [2] and [3]).

Am I missing / misunderstood something?