How we protect your capital.
Security and operational discipline are the foundations we build on. Here is exactly how it works.
Encryption
All client data is encrypted at rest using AES-256 with rotating keys. In transit, we use TLS 1.3 with HSTS and certificate pinning on all client endpoints. Sensitive fields — such as identity documents and source-of-funds documentation — are encrypted at field level, separately from the main database, with keys held in a separate key-management service.
Authentication
Two-factor authentication is mandatory for every client account. We support TOTP applications (Google Authenticator, Authy, 1Password) and hardware security keys via WebAuthn. Recovery is done by verified email plus manual identity check by a member of the Operations team.
Custody
Client capital is held in segregated accounts at regulated prime brokers in first-tier jurisdictions. Accounts are structurally separated from Aurevia Tradex's operating capital — meaning that even in the event of a company-level insolvency, client capital remains intact and recoverable. Each prime broker is independently audited.
Audits & certifications
- SOC 2 Type II. Audited annually by an independent third-party firm.
- ISO 27001. Our information security management system is certified.
- GDPR. Full compliance with EU data protection law.
- Penetration testing. Performed twice yearly by an independent specialist firm.