3Commas Security

Is 3Commas safe to use?

Your funds are secure because they can’t leave your exchange. 3Commas connects to your exchanges via three methods: Fast Connect, Sign Center, or encrypted API. Our system tells your exchange to start and close deals, but has zero access to withdraw or transfer fiat or crypto currencies.

Even better, since 3Commas connects via API, your log-in information for your exchange account is never revealed to our system. The 3Commas API deliberately does not have the functionality to request any of your personal information from the exchange.


How does 3Commas secure user data?

3Commas secures user data with encrypted API keys, Fast Connect using the OAuth protocol, and a siloed separate API key storage system we call Sign Center, as well as enterprise-grade tools from security services provider Cloudflare, including:

Web Application Firewall

DDOS attack protection

SSL/TLS encryption between visitors and origin servers

What can you do to keep your data safe?

Use 2FA for 3Commas and each of your exchanges.

Save your backup keys in a safe place, preferably cold storage.

Never send your API keys via messenger and do not store them on a cloud service.

Be wary of phishing emails that mimic emails from your exchange.

Backup your critical security application keys in the event your mobile device is lost or stolen.

3Commas commitment to user security

We work with our exchange partners to create better trading experiences

Every blockchain and cryptocurrency service is a tempting target for malicious attacks, and 3Commas operates under the assumption that someone is always trying to get access to our user’s information. We take every reasonable precaution to block these attacks before they happen and ensure your accounts are safe.