Menu
Search
GBP
Search store for products Close
Shopping cart Close

You have no items in your shopping cart.

Trading Tools
    Menu Close

    Vulnerability Disclosure Policy

    We welcome good-faith security reports that help protect our users. This page explains what is in scope, how to report, what to expect from us, and the rules for testing. We do not operate a bug bounty, and we do not pay for unsolicited reports.

    Last updated: 26 August 2025

     

    Scope

    • Public websites and web applications owned and operated by ClickAlgo Limited.

    • Only targets that can be accessed without using credentials that belong to someone else and without causing disruption.

     

    Out of Scope

    • Third-party services include hosting providers, payment processors, email services, analytics, and content delivery networks.

    • Denial-of-service attacks, high-volume automated scanning, resource exhaustion, or any action that degrades service availability.

    • Reports without a working proof of concept, or those consisting only of automated scanner output.

    • Best-practice findings without clear exploitability, such as missing security headers on non-sensitive pages, version banners, or clickjacking, where no sensitive action occurs.

    • Username or email enumeration, lack of rate limiting or account lockouts, and recommendations related to CAPTCHA implementation.

    • Cosmetic HTML or CSS injection in non-sensitive areas (including emails) without a demonstrable exploit chain.

    • Social engineering, phishing, physical security testing, or non-technical fraud.

     

    Rules of Engagement

    • Respect privacy. Do not access, modify, or copy data that does not belong to you.

    • Do not disrupt services or degrade performance.

    • Act in good faith and within the boundaries of this policy.

     

    How to Report

    Send an email to security@clickalgo.com with:

    • A clear description of the issue.

    • The exact affected URL or system.

    • Step-by-step instructions to reproduce the vulnerability.

    • A minimal proof of concept that demonstrates the impact.

     

    What to Expect

    • We will acknowledge valid reports sent to security@clickalgo.com.

    • Out-of-scope reports and generic scanner results will not receive a reply.

    • We do not pay for reports or run a bug bounty.

    Verified Legal Entity
    ClickAlgo Limited
    LEI: 984500L4R0C62EY84717
    Verified Legal Entity
    Listed in the Global LEI Index
    Legal
    Your Account
    Let us help you
    Partner with us
    Social Media

    Disclaimer

    The charting indicators and cBots available on this site are designed for the cTrader Desktop platform. cTrader is a registered trademark of Spotware Systems Ltd. NinjaTrader® is a registered trademark of NinjaTrader Group, LLC. No company within the NinjaTrader Group has any affiliation with the owner, developer, or provider of the products and services described on this site. Furthermore, NinjaTrader Group, LLC does not have any ownership, interest, endorsement, recommendation, or approval of these products or services. This website, along with all products and services provided by ClickAlgo, is intended for informational and educational purposes only. All content is hypothetical, carefully selected after the fact to demonstrate our products, and should not be interpreted as financial advice.


    Risk Warning

    Trading futures and forex involves significant risk and is not suitable for all investors. A trader may lose all or more than their initial investment. Historical performance is not necessarily indicative of future results. Approximately 74-89% of retail investor accounts lose money when trading CFDs. Only risk capital—money that can be lost without affecting one's financial security or lifestyle—should be used for trading. Investors should carefully assess whether they have sufficient risk capital before engaging in trading activities.


    Copyright © 2025 ClickAlgo Limited is a company registered in England and Wales with (Company No. 13117395) Kemp House 160 City Road, London EC1V 2NX.

    This does not represent our full Disclaimer. Please read our full disclaimer.

    Powered by nopCommerce
    Privacy | Terms | Cookies
    VAT (B2C) No. EU372062796
    Data Protection Number ZB278050
    Images Designed by Freepik, Shutterstock
    ClickAlgo on Wikidata