Skip to content
Aurono Support auronolabs.com →

Security & Fund Safety

Aurono is designed with security as a core principle.

Your funds always remain on your own exchange account.
Aurono only executes actions you explicitly allow.

This page explains why your funds are safe and what your role is in keeping them safe.

1. Aurono Is Only Accessible on Your Local Network

Section titled “1. Aurono Is Only Accessible on Your Local Network”

Aurono runs locally on your own device.

Important points:

  • Aurono is not publicly accessible
  • There is no cloud dashboard
  • There is no central Aurono account

You can access Aurono only:

  • From your local network
  • Or through a network connection you explicitly control

This means:

  • No one can log in to your Aurono from the internet
  • There is no central server that can be attacked

2. Aurono Uses Exchange API Keys

Section titled “2. Aurono Uses Exchange API Keys”

Aurono communicates with exchanges (such as Kraken, Bitvavo, or Coinbase) using API credentials.

An API key allows Aurono to:

  • Place buy and sell orders
  • Retrieve market data
  • Read balances

Important to understand

Section titled “Important to understand”

If someone else gains access to your API credentials:

  • They could place orders on your behalf
  • Just like Aurono would

For this reason, it is important to:

  • Never share your API keys
  • Store them only in Aurono
  • Revoke them immediately if you have doubts

Aurono stores API credentials:

  • Locally
  • Encrypted
  • Never externally

3. API Keys Must Not Allow Withdrawals

Section titled “3. API Keys Must Not Allow Withdrawals”

This is a critical security safeguard.

When creating an API key on your exchange, you must explicitly:

  • Disable withdrawal permissions
  • Disable transfer permissions

Aurono requires this configuration.

What this means in practice

Section titled “What this means in practice”

Even if:

  • Someone obtains your API key
  • Or Aurono itself is misused

Then:

  • Funds cannot be withdrawn from your exchange
  • Funds cannot be transferred to external wallets

The exchange enforces this restriction.

Aurono can only:

  • Buy
  • Sell
  • Operate within your exchange account

What Aurono Cannot Do

Section titled “What Aurono Cannot Do”

Aurono can never:

  • Withdraw funds from your exchange
  • Transfer assets to external wallets
  • Move funds off the exchange
  • Take control of your exchange account

These actions are technically impossible without withdrawal permissions.

Your Responsibility

Section titled “Your Responsibility”

Aurono is designed to be secure, but you remain responsible for:

  • Correctly configuring API permissions
  • Securing your local network
  • Revoking API keys when necessary

Recommended best practices:

  • Use one API key per Aurono device
  • Revoke API keys immediately if Aurono is no longer in use
  • Never create API keys with withdrawal permissions

Summary

Section titled “Summary”

Your funds are safe because:

  • Aurono is accessible only on your local network
  • Funds always remain on your exchange
  • API keys do not allow withdrawals
  • Exchanges themselves enforce withdrawal restrictions
  • Aurono executes only what you configure

Aurono automates strategy execution,
not control over your funds.

Section titled “Related Pages”
  • Connecting an Exchange
  • Logging & Diagnostics
  • Why Aurono Uses Limit Orders Only
  • Troubleshooting