Your Funds Never Leave Your Exchange
Trade-only API keys. No withdrawal permissions. Credentials encrypted and isolated per user.
How We Protect Your Credentials
Each user's credentials are encrypted with unique keys. A compromise of one account cannot affect others.
All API credentials are encrypted with unique nonces before storage. Your keys are never stored in plaintext.
All communication between your browser, our servers, and exchanges is encrypted with TLS 1.3.
Every signal, order, and configuration change is logged. Full visibility into what happened and when.
Built-in rate limiting protects against abuse and flooding. Your webhooks are shielded from malicious traffic.
Whitelist trading pairs, set max order limits, and disable trading instantly on any exchange. You decide what executes and what doesn't.
Non-Custodial by Design
Our non-custodial architecture ensures your capital remains under your full control, on your exchange, at all times. SignalBee functions as a secure routing layer for your trade instructions — we never have the technical ability to move or withdraw your funds.
Responsible Disclosure
We appreciate the security research community's efforts to help keep SignalBee secure.
Reporting Security Issues
If you discover a security vulnerability, please report it to:
support@signalbee.tradeWhat to Include
- Description of the vulnerability
- Steps to reproduce the issue
- Potential impact and severity
- Your contact information
Our Commitment
- Acknowledge receipt within 48 hours
- Provide regular updates on remediation progress
- Credit researchers (if desired) when issues are resolved
Trust & Transparency
No Data Selling
We never sell your trading data or personal information. Your data is yours.
Full Transparency
No hidden fees, no data harvesting. You see exactly what SignalBee does with every signal and every order.