OptiHedge is in beta — every plan is 100% free right now. See plans

Security

How we protect your account, your data, and the integrity of our platform.

256-bit SSL/TLS Encryption

All data in transit is encrypted using TLS 1.3. We enforce HTTPS-only access across all endpoints.

SOC 2 Type II

Our infrastructure and internal controls are audited annually against SOC 2 Type II requirements covering security, availability, and confidentiality.

GDPR Compliance

We comply with GDPR. You can request a full export of your personal data or permanent deletion at any time by contacting support.

Data Isolation

User data is logically isolated per account. We do not share, sell, or use your data to train external models.

Vulnerability Disclosure

We operate a responsible disclosure programme. If you discover a security issue, please report it to security@optihedge.ai before public disclosure.

What Data We Hold & How We Handle It

Account credentialsPasswords are never stored. Authentication is handled via Auth0 using industry-standard OAuth 2.0 / OIDC flows.
Payment dataCard data is handled exclusively by our PCI-DSS compliant payment processor. We never see or store raw card numbers.
Usage dataWe collect anonymised product analytics (page views, feature usage) to improve the platform. This data is never sold.
Market dataAll market and forecast data displayed on the platform is sourced from licensed data providers and our own model outputs.
Report a Security Issue

Found a vulnerability? Please disclose responsibly. We aim to acknowledge all reports within 48 hours and patch critical issues within 7 days.

security@optihedge.ai