Our approach to protecting your trading operations and data.
Security is fundamental to algobanana's design. We build around the principle that automation amplifies both gains and risks. Our security model prioritizes transparency, auditability, and explicit control.
Whether you choose Local or Cloud mode, you maintain control over your execution environment. We provide the guardrails, monitoring, and audit trails—you maintain sovereignty.
Every request is authenticated and authorized. No implicit trust.
All actions are logged and auditable. No hidden operations.
Multiple layers of security controls and validation.
Access granted only when necessary, revoked when not.
API keys and credentials remain on your machine. algobanana software runs locally and connects directly to your broker.
You configure broker connectivity through secure credential management. Credentials are encrypted at rest and in transit.
Cloud Control includes role-based access control (RBAC) with granular permissions. Every action—configuration changes, executions, log access—is recorded in immutable audit logs.
Audit logs include:
Logs are searchable, exportable, and retained according to your compliance requirements.
If you discover a security issue or operational incident:
Email: security@algobanana.com
We'll acknowledge within 24 hours and provide updates as we investigate.
We welcome security researchers to report vulnerabilities responsibly. If you discover a security issue:
We're committed to acknowledging and crediting researchers who help us improve security.