At Mudrex, we go to great lengths to make sure all data is secure.
Important personal information is stored using bank-level AES-256 encryption on our servers. In addition, all API traffic is secured and goes through SSL and uses TLS 1.2 to prevent third parties from eavesdropping on your connection. Employee access is heavily restricted and we require background checks on all employees. User accounts can only be accessed by users post inputting their credentials and being verified.
All strategies are encrypted stored in the database so that no one, including employees, has access to them directly. The strategy itself sharded and stored in three pieces and is then stored in 3 different encrypted databases. To retrieve and get info on the strategy all three parts are necessary. When a strategy gets executed, only metadata related to a strategy is logged and recorded. The strategy itself is very secure.
Mudrex connects to your exchange via API keys. The API keys only have access to trading permission and no deposit/withdraw permission is provided. Mudrex cannot touch your funds at all. They are at all points only on your control.
Exchange API Keys
Exchange API keys are stored in a separate encrypted db that only the ordering system built on mudrex has access too. No one, including employees, has access to them directly.
Payment and Card Details
Mudrex does not store any payment or card data on its servers instead, Mudrex uses a third party payment gateway called Stripe for payment. Stripe is one of the world's largest payment processors and stores all card details in a secure PCI-DSS compliant setup. It does Billions of USD worth of transaction every day and is valued at over $35 Bn. You can read more about how Stripe manages card details here.
Any trading that happens on your account happens only through your strategy. Mudrex just performs the trade authorized by you.