How we handle
your data.

Credential storage

• ✓MT5 and MT4 connections use a publish URL — no broker credentials stored. Fortiris fetches from that URL.
• ✓TradeLocker, MatchTrader, and cTrader credentials are encrypted at rest before storage.
• ✓Sensitive credentials remain encrypted at rest and are only decrypted when a secure request requires them.
• ✓Credentials are decrypted only at the moment of an API call and are never logged in plaintext.

Trade data access

• ✓Trade data is stored under your account ID and is never shared with third parties.
• ✓Your data is not used to train AI models.
• ✓Fortiris employees can only access your data for support purposes, with your explicit consent.
• ✓All API responses are scoped to the authenticated user — no cross-user data leakage.

Data in transit

• ✓All connections use TLS 1.3 encryption.
• ✓Broker API calls use HTTPS only. No plaintext connections.

Data at rest

• ✓Trade data is stored in encrypted cloud databases.
• ✓Sensitive fields are encrypted at rest.
• ✓Regular automated backups with point-in-time recovery.
• ✓Data stored in EU/US data centres depending on your region.

Advertising & data selling

• ✓Fortiris is a subscription product. We do not run advertising.
• ✓We do not sell, trade, or share your data with advertisers or data brokers.
• ✓We do not use your trading data to generate signals or analytics products for third parties.