Security
Security & Credential Handling
How Argix Labs protects your broker credentials and account data.
Credential encryption
Broker API credentials are encrypted at rest using industry-standard authenticated encryption.
- Credentials encrypted immediately upon submission
- Decrypted only in-memory during trade execution
- Never stored in plaintext anywhere in the system
- Never sent to the frontend after initial submission
- Never included in logs or error reports
No fund custody
Your funds stay at your broker
Argix Labs never has custody of your funds. All funds remain in your brokerage account. The platform only submits orders via your broker’s API.
Authentication
- Passwords hashed using industry-standard algorithms
- Secure authentication with encrypted sessions
- All communications encrypted via TLS 1.2+
Payments (Stripe)
Paid plans are billed through Stripe. Card and payment details are collected and stored by Stripe—not on Argix Labs servers—so we never handle or retain your full card number.
- Checkout and billing run on Stripe’s PCI-compliant infrastructure
- We only receive the tokens and metadata needed to manage your subscription
- Connections to Stripe use TLS; see Stripe’s security documentation for certifications and practices
Your responsibilities
- Use a strong, unique password for your Argix Labs account
- Rotate your broker API keys periodically
- Monitor your brokerage account for unauthorized activity
- Revoke API keys immediately if you suspect compromise
Security contacts
Report security vulnerabilities to: security@argixlabs.com
For the complete credential security policy, see API Credential Security.