We built PortfolioShield with the same rigor we apply to risk management. Your credentials never touch our servers. Your money never leaves your broker.
We never see or store your broker password. All broker connections use OAuth — the same standard used by Google and your bank. You authorize directly with your broker.
PortfolioShield cannot withdraw funds, transfer money, or move assets. We can only read your positions and place trades you explicitly authorize.
All data is encrypted in transit and at rest using industry-leading standards. Your portfolio information is protected with the same level of encryption used by financial institutions.
Security isn't just what we build — it's what we refuse to do.
Authentication is handled entirely through your broker's secure OAuth flow. We receive a limited-scope token — never your credentials.
Your name, email, and individual portfolio data are never sold to third parties. Period. Any aggregated research data is fully anonymized and cannot be traced back to you.
Every order requires your confirmation. PortfolioShield recommends and analyzes — you decide and execute. We are a decision-support tool, not an autopilot.
PortfolioShield is a risk management tool. We show you analytics, scores, and scenarios based on your parameters. All trading decisions are yours alone.
We have no ability to withdraw, transfer, or move your money. Your funds remain at your broker under their SIPC/FINRA protections at all times.
PortfolioShield connects to your broker through their official API programs. Each broker independently reviews and approves our integration. Your account remains fully protected by your broker's own security, SIPC coverage, and regulatory framework.
Full compliance with the European General Data Protection Regulation. You can export or delete all your data at any time from Settings.
California Consumer Privacy Act compliance. We honor all data rights requests including access, deletion, and opt-out of data sharing.
Documented incident response and business continuity plans. In the unlikely event of a security issue, we have clear protocols to protect your data and notify you promptly.
Continuous vulnerability monitoring, dependency auditing, and infrastructure security assessments to stay ahead of emerging threats.
We maintain a comprehensive security documentation suite including our Security Whitepaper, Privacy Policy, Business Continuity Plan, Incident Response Plan, Data Flow Architecture, and Threat Model. Available to partners and enterprise customers upon request.
PortfolioShield is a decision-support tool and does not provide investment advice. Trading options involves substantial risk of loss.