Privacy Policy

Last updated: 08/12/2025

1. Introduction

This Privacy Policy explains how AIBOTIX collects, uses, stores, protects, and discloses your personal information when you use our website, trading bot, dashboard, and related services (the “Platform”). We are committed to protecting your privacy and handling your data in a transparent and secure manner.

2. Information We Collect

We collect the following categories of information:

  • Account Information: Email address, password hash (via Supabase Auth), and authentication metadata.
  • API Keys: Alpaca brokerage API keys, encrypted end-to-end using AES-256-GCM. Keys are never stored in plaintext.
  • Trading Data: Positions, orders, PnL, equity history, ticker activity, and bot performance metrics.
  • Technical Data: IP address, device type, browser, and operational logs for system security.
  • Usage Data: Interactions with the Platform, such as feature usage and system diagnostics.

3. How We Use Your Information

Your information is used for the following purposes:

  • To authenticate your account and secure login sessions.
  • To operate and maintain the automated trading bot.
  • To process API calls to your connected brokerage account.
  • To calculate performance analytics such as equity curve, PnL, and trading history.
  • To improve the Platform through diagnostics and user behaviour analysis.
  • To communicate updates, system alerts, or customer support information.

4. API Key Security

Your Alpaca API keys are protected using industry‑standard AES‑256‑GCM encryption. Keys can only be decrypted inside your authenticated session. We never log, transmit, or store plaintext credentials at any time.

  • You may revoke API keys at any time from your brokerage platform.
  • AIBOTIX cannot execute trades or access your account without valid keys.
  • Compromised keys remain your responsibility until revoked.

5. Data Sharing & Disclosure

AIBOTIX does not sell or rent your personal data. We only share information when necessary:

  • With Service Providers: Such as Supabase and hosting platforms for authentication and storage.
  • For Legal Compliance: If required by court order or applicable law.
  • To Protect Security: In cases of fraud prevention or system abuse.

We never share API keys, trading history, or personal analytics with third parties.

6. Data Storage & Retention

Your data is stored securely using encrypted databases and strict access controls. We retain your data only for as long as necessary to operate the Platform or comply with legal obligations.

  • API keys are deleted immediately upon account deletion.
  • Trading performance data may be anonymized for system analytics.
  • All personally identifiable information is removed when requested.

7. Cookies & Session Management

AIBOTIX uses secure cookies exclusively for authentication and session control. We do not use tracking cookies or advertisement cookies of any kind.

8. User Rights

  • Access: Request a copy of your stored data.
  • Correction: Update incorrect personal information.
  • Deletion: Request account deletion and data removal.
  • Revocation: Revoke brokerage API keys at any time.
  • Export: Request an export of your trading data.

9. Protection of Minors

AIBOTIX is not intended for individuals under 18 years of age. We do not knowingly collect data from minors.

10. Changes to This Privacy Policy

We may update this Privacy Policy as needed to reflect system improvements, regulatory changes, or operational updates. Continued use of the Platform indicates acceptance of any revised version.

11. Contact Information

If you have questions about this Privacy Policy or your personal data, contact us at:

team@aibotix.co.uk

← Back to Dashboard