Security

Automation should never mean giving up control

Forgetrader is built around a non-custodial model, strong account protections, and clear boundaries around what the platform can and cannot do.

Your assets stay on your exchange

Forgetrader does not custody your funds. You connect your exchange using trade-only API permissions so the platform can operate within your approved setup while your assets remain where they already are.

Assets never leave your exchange
Trade-only API keys — no withdrawal access
AES-256 encryption for stored credentials
Your exchange remains in full custody of your funds

Non-Custodial

We never hold your funds

AES-256 Encryption

Military-grade key encryption

2FA Protection

TOTP-based account security

Trade-Only Access

No withdrawal permissions

Built-in account protections

Use account security features, protected credentials, and platform safeguards designed to support a safer automation experience.

Encrypted Credential Storage

API keys are encrypted with AES-256-GCM before storage. Keys are never stored in plaintext and are only decrypted in memory when needed.

Two-Factor Authentication

TOTP-based 2FA adds an extra layer of protection to your account. Require a code from your authenticator app alongside your password.

Rate-Limited API Access

All API endpoints are rate-limited to prevent abuse. Authentication attempts, trading operations, and sensitive endpoints have enforced limits.

What Forgetrader can't do

Transparency about platform boundaries is part of the product design.

Cannot withdraw your funds

Does not custody your crypto

Does not trade outside your configured permissions and strategy setup

Does not take over your exchange account

Does not replace your judgment with a hidden black-box manager

Security is part of the product design

Forgetrader's platform design is built to help users automate within clear boundaries, not surrender visibility or control.

Start Free Trial