TradeMind handles your trading psychology, P&L data, and daily mental scores. Here is exactly how we protect all of it — no marketing language, just facts.
TradeMind uses magic-link authentication only. We never create, store, or transmit a password on your behalf. Your email is used solely to send a one-time login link — after that, your session is managed by a signed, httpOnly cookie that we cannot read the contents of. If someone breaches our database, there are no passwords to steal.
When you connect your broker via the MetaAPI integration, your brokerage username and password are entered directly on MetaAPI's encrypted OAuth flow — they are never transmitted to or stored on TradeMind servers. We only receive a read-only access token, scoped to trade data. We never have the ability to place trades on your behalf.
All billing is handled by LemonSqueezy, a PCI DSS Level 1 certified payment processor — the highest standard in payment security. Your card number, CVV, and billing address are entered directly on LemonSqueezy's hosted checkout. TradeMind's servers never receive, process, or store any payment card data.
Your check-in scores, journal entries, and psychology data are stored in Turso (LibSQL), a distributed SQLite database with encryption at rest enabled by default. Data is replicated across multiple regions for durability. We do not store any data in plaintext on our servers.
TradeMind is deployed on Vercel's infrastructure, which maintains SOC 2 Type 2 certification. This means independent auditors have verified Vercel's security controls for availability, confidentiality, and processing integrity. All traffic is served over HTTPS with automatic TLS certificate management.
You own your data, full stop. You can export everything — check-in history, scores, journal entries, and P&L — at any time from your Settings page. If you delete your account, all your data is permanently removed from our database within 30 days. We do not archive deleted accounts.
TradeMind's business model is subscriptions — not advertising, not data brokerage. Your trading psychology data, P&L figures, journal entries, and behavioral patterns are yours alone. We do not sell, license, or share identifiable user data with any third party, advertiser, or data broker. Period.
If you discover a security vulnerability in TradeMind, please email us at security@trademindedge.com before disclosing publicly. We will acknowledge your report within 48 hours and work with you to resolve the issue. We genuinely appreciate responsible security research.