Platform Security
Last updated: July 27, 2026
We take the security of our platform and your account seriously. This page describes the measures we use to protect your information and your account. It should be read together with our Privacy Policy.
This page describes our practices and is not a guarantee — no system is perfectly secure.
1. Encryption
We protect your data in transit with industry-standard TLS encryption, and we encrypt sensitive personal information at rest — including the contact, identity, and payment-related details we store about you.
2. Payment security
Card payments are processed through a PCI-compliant payment provider. Card details are tokenized, and we never store full card numbers on our systems — we retain only a secure token and limited details such as the card brand, expiration, and last four digits. This keeps card data out of our environment and reduces our PCI scope.
3. Authentication & session security
Sign-in is handled by a dedicated authentication provider. Session cookies are protected (HTTP-only and, in production, sent only over HTTPS), and sessions can be revoked. We offer two-factor authentication and recommend you enable it; you are responsible for safeguarding your credentials and for notifying us of any suspected unauthorized access.
4. Identity verification & fraud prevention
We verify trader identities through a specialist identity-verification provider and use automated and manual checks to detect fraud, abuse, and multiple-account activity. These measures help protect the integrity of our programs and the security of legitimate traders.
5. Monitoring & audit trail
We maintain an internal audit trail of significant changes to accounts and records, and we use error- and performance-monitoring tools to keep the platform healthy. Our monitoring is configured to scrub sensitive data, such as email addresses and payment details, before it is recorded.
6. Infrastructure & access controls
Our application and data are hosted in the United States with reputable infrastructure providers. We restrict internal access to personal information to those who need it to operate the Services, applying access controls and the principle of least privilege.
7. Sensitive-credential handling
Where we generate broker credentials to provision your trading account, we minimize their exposure: archived provisioning records are redacted, access is restricted, and these records are automatically purged from our storage after 30 days.
8. Reporting a vulnerability
If you believe you have found a security vulnerability in our Services, please report it to us at support@fundyouredge.com so we can investigate. We ask that you give us a reasonable opportunity to address the issue before disclosing it publicly.
9. Contact
Questions about platform security? Email us at support@fundyouredge.com.