API Terms of Use

These API Terms of Use ("API Terms") govern access to and use of the TradingAtlas Public API ("API"). By generating API credentials or making any API request, you agree to be bound by these API Terms in addition to the main TradingAtlas Terms and Conditions.

API access is restricted to users on an active Business plan subscription. Free and Pro plan users may not access the API. Access is revoked immediately upon subscription downgrade or cancellation.

All API requests must be authenticated using your Secret Key in the HTTP Authorization header:

• Header format: Authorization: Bearer ta_sec_xxxxxxxxxxxxxxxx
• All requests must be made over HTTPS. Unencrypted HTTP requests are not accepted.
• Requests without a valid Authorization header will receive a 401 Unauthorized response.
• Requests from revoked, expired, or invalid keys will receive a 401 Unauthorized response.
• Requests from non-Business plan accounts will receive a 403 Forbidden response.

To ensure platform stability and fair usage, the following rate limits apply to all API keys:

• Per-minute limit: 30 requests per minute per API key.
• Daily limit: 10,000 requests per day per API key.
• Maximum page size: 100 records per paginated request.
• Pagination is required for all list endpoints; unlimited result queries are not supported.

Rate limit status is communicated in response headers:

• X-RateLimit-Limit — the rate limit ceiling for the current window.
• X-RateLimit-Remaining — the number of requests remaining in the current window.
• X-RateLimit-Reset — the Unix timestamp when the rate limit window resets.
• Retry-After — returned with 429 responses, indicating when to retry.

Requests that exceed rate limits receive a 429 Too Many Requests response. Persistent rate limit violations may result in temporary or permanent API access suspension.

All API endpoints are versioned under the base path /api/public/v1/.

• We will provide at least 90 days notice before deprecating a major API version.
• Minor, backward-compatible changes (new fields, new endpoints) may be made without notice.
• Breaking changes will only be introduced in new major API versions.
• You should not hardcode assumptions about response field ordering.

The following endpoint groups are available under the Public API:

• Account — account profile and usage statistics.
• Portfolio — aggregated portfolio summary and PnL metrics.
• Trades — paginated trade history with filtering.
• Analytics — performance analytics, monthly breakdowns, and symbol-level data.
• Crypto Tax — tax summaries and asynchronous export jobs (Binance and Bybit only).
• Prop Firms — prop firm account details, drawdown data, and rule violations.
• Risk — position size calculator and risk dashboard metrics.

Full endpoint documentation is available at /docs/api. MT5 data is available through Portfolio and Analytics endpoints but is excluded from Crypto Tax endpoints.

Certain operations (such as crypto tax export generation) are processed asynchronously via background jobs. The pattern for these endpoints is:

• POST request to initiate the job — returns a jobId and status: "queued".
• GET request to poll job status using the jobId — returns progress and, when complete, a download URL.
• Jobs expire after 24 hours. You must initiate a new export if the URL expires.
• Do not poll job status more frequently than once every 5 seconds.

You may not use the API to:

• Resell, redistribute, or sublicense API access or data to third parties without written permission.
• Build competing products or services that replicate TradingAtlas functionality.
• Attempt to extract the entire dataset in bulk through repeated paginated requests.
• Bypass or circumvent rate limits through IP rotation, credential sharing, or other means.
• Use the API in ways that impose unreasonable load on TradingAtlas infrastructure.
• Access data belonging to other users.
• Automate actions that would violate TradingAtlas Terms and Conditions if performed manually.
• Use the API in connection with illegal trading activities or market manipulation.
• Reverse engineer or attempt to discover TradingAtlas proprietary algorithms or data structures from API responses.
• Share your API credentials with third parties or allow multiple individuals to use the same key.

Your trading data remains your property. TradingAtlas does not claim ownership of trading data you import or sync.

The API itself, including its structure, response formats, algorithms, and all associated software, is the exclusive property of TradingAtlas and is protected by intellectual property law. Access to the API does not grant any rights to TradingAtlas intellectual property beyond the limited usage right described in these API Terms.

Insights, aggregations, and analytics generated by the API are derived works of TradingAtlas's platform. You may use these outputs for your own business analytics but may not redistribute them commercially.

All API requests are logged and associated with your API credentials. Logged data includes:

• Endpoint and HTTP method
• Response status code
• Request timestamp
• Request duration
• Client IP address

This data is used for security monitoring, abuse detection, rate limit enforcement, and billing verification. API logs are retained for 90 days.

You are responsible for:

• Keeping your Secret Key confidential and secure at all times.
• Immediately regenerating credentials if you suspect they have been compromised.
• Ensuring that any systems or integrations using the API comply with these API Terms.
• Implementing appropriate security controls in any applications built on the API.
• Notifying TradingAtlas at security@tradingatlas.io if you discover any security vulnerabilities.

TradingAtlas reserves the right to suspend or permanently revoke API access without notice for:

• Persistent rate limit violations.
• Violation of any provision of these API Terms.
• Activity that poses a security risk to TradingAtlas infrastructure or other users.
• Subscription cancellation or downgrade below Business plan.
• Suspected illegal activity or regulatory violation.
• Non-payment of subscription fees.

Where API access is suspended due to suspected abuse, TradingAtlas will investigate and, where the suspension is determined to have been in error, restore access promptly.

TradingAtlas aims to maintain high API availability but does not guarantee uninterrupted access. Scheduled maintenance, infrastructure upgrades, and third-party dependencies (exchange APIs) may cause temporary unavailability. TradingAtlas is not liable for losses or damages resulting from API downtime.

The API is provided "as is" without warranties of any kind. All analytics and data returned by the API are subject to the accuracy disclaimers set out in the main Terms and Conditions. TradingAtlas shall not be liable for any damages arising from reliance on API-returned data for trading decisions, financial reporting, or any other purpose.

TradingAtlas may update these API Terms at any time. Material changes will be communicated with at least 30 days notice where practicable. Continued use of the API after changes take effect constitutes acceptance.

For API-related enquiries, abuse reports, or security issues: api@tradingatlas.io