Security is not a feature — it is a foundation. In the crypto space, a compromised account can mean irreversible loss of funds. This guide covers every security measure available on TradeZone and how to use them.

Enable Two-Factor Authentication (2FA)

2FA is the single most impactful security upgrade you can make. It means that even if someone has your password, they cannot log in or withdraw without also having physical access to your phone.

On TradeZone, 2FA uses TOTP (Time-Based One-Time Password) via Google Authenticator, Authy, or any compatible app. You can configure it to trigger on login, withdrawals, or both.

Setup: Account → Security → Two-Factor Auth → Follow the 3-step wizard

Set an Anti-Phishing Code

Our anti-phishing feature embeds a unique code of your choice into every official TradeZone email. If you receive an email claiming to be from us that does NOT contain your code, it is a phishing attempt — delete it immediately.

Use a Strong, Unique Password

• Minimum 16 characters
• Mix of uppercase, lowercase, numbers, and symbols
• Never reuse a password from another site
• Use a password manager (Bitwarden, 1Password) — do not use your browser's built-in storage

Set a Withdrawal Whitelist

Restrict withdrawals to pre-approved addresses only. Any new address addition requires 24-hour email confirmation, which blocks attackers who might gain temporary access to your account.

Monitor Login Activity

Check your account login history regularly in Account → Security → Activity Log. Any unrecognised IP or device should trigger an immediate password change and 2FA reset.

Never Share Your Credentials

TradeZone staff will never ask for your password, 2FA code, or private keys. Anyone claiming to be from our support team and requesting these is a scammer.

Your security is our shared responsibility. Enable all available protections today.