Security
A lens into your portfolio, not a remote control.
The product is designed around read-only account context, encrypted credentials, and user-controlled broker access.
Read-only broker access
Trading 212 credentials are used for account summaries only. folli.io does not place trades or move funds.
Encrypted credential storage
API credentials are encrypted server-side before storage and only decrypted inside server-side refresh actions.
Account security baseline
Sessions, account recovery, email verification, and workspace access follow modern authentication and access-control standards.
Revoke anytime
Users can disconnect app access and revoke broker API keys from Trading 212 whenever needed.