Risk warning: LazyEye is not a regulated financial entity. Crypto trading involves substantial risk — you may lose part or all of your capital. Past results do not guarantee future performance.

Security

Your security is our top priority. Learn how we protect your data and what you can do to keep your account safe.

How We Protect You

API Wallet — Trade-Only by Design

LazyEye never has withdrawal access to your funds. Your API Wallet only has trade-level permissions. Your assets stay in your wallet at all times — we cannot move them.

Secure Credential Handling

Your API Wallet credentials are transmitted over encrypted channels and written directly to the bot server. They are never stored in our database. Each bot’s credentials are protected with strict file permissions so only your bot process can read them.

Secure Infrastructure

Our infrastructure follows security best practices including regular patching, strict access controls, and network-level protection. All traffic between you and our servers is encrypted.

No Access to Your Wallet

We interact only with the exchange API you connect. LazyEye has zero knowledge of your wallet seed phrase, private keys, or withdrawal addresses.

Minimal Data Collection

We collect only the data strictly necessary to operate the bot and your dashboard: email, API Wallet credentials, and trade history. We do not sell or share your data with third parties.

Responsible Disclosure

Found a vulnerability? We appreciate responsible disclosure. Please report security issues to security@lazyeye.nl and we will respond within 5 business days.

In Short

  • We cannot withdraw your funds — ever.
  • Your API Wallet credentials never touch our database — they go straight to the bot server with strict access controls.
  • We collect only what is strictly necessary.
  • Your wallet keys never leave your device.

What You Should Do

Use a Strong, Unique Password

  • At least 12 characters with letters, numbers, and symbols.
  • Never reuse a password from another site.
  • Use a password manager like Bitwarden or 1Password.
  • LazyEye checks your password against known data breaches whenever you register or change your password.

Enable Two-Factor Authentication (2FA)

  • Go to Settings and enable 2FA with an authenticator app (Google Authenticator, Authy, etc.).
  • Save your recovery codes in a safe place — they are your backup if you lose your phone.
  • Never share your 2FA codes with anyone.

Secure Your API Wallet

  • Only enable "Read" and "Perps trading" permissions — never enable withdrawals.
  • Keep your API Wallet private key safe — treat it like a password.
  • Revoke and recreate your API Wallet periodically — you can update credentials anytime from the dashboard.

Wallet Safety

  • Never share your wallet seed phrase or private key with anyone — not even us.
  • Write your seed phrase on paper and store it offline. Do not save it digitally.
  • Only deposit funds you can afford to lose. Trading involves risk.
  • Double-check wallet addresses before sending any funds.

General Tips

  • Beware of phishing — always verify you’re on app.lazyeye.nl before entering credentials.
  • LazyEye will never ask for your password, seed phrase, or private key via email or chat.
  • Keep your browser and operating system up to date.
  • Check your active sessions in Settings and revoke any you don’t recognize.
  • Login notifications are automatic — you’ll get an email whenever someone logs in from a new IP address.
Next: Create Account & Start Back to Knowledge Base
Responsible DisclosurePrivacy Policy