隱私政策 / Privacy Policy

最後更新 Last updated: 2026-05-22

1. 我們收集什麼資料 / What We Collect

  • 註冊資料:電子郵件、密碼(以 bcrypt 雜湊儲存,明文密碼我們無從得知)。
  • Account data: email and password (stored as bcrypt hash; we cannot see plain-text passwords).
  • Bitfinex API Key 和 Secret:以 AES-256 加密儲存於伺服器資料庫,僅用於連接您 Bitfinex 帳戶執行放貸操作。
  • Bitfinex API Key & Secret: stored AES-256 encrypted in our database, used only to connect to your own Bitfinex account for lending operations.
  • 放貸績效紀錄:您透過 CTA 執行的放貸操作摘要(利率、本金、收益),用於儀表板顯示。
  • Lending performance records: summaries of your lending activity through CTA (rate, principal, earnings), used for dashboard display.
  • Telegram ID(選填):用於透過 TG Bot 推播通知。
  • Telegram ID (optional): used for sending notifications via our Telegram bot.
  • 瀏覽紀錄:登入時間、IP 位址(用於安全稽核)。
  • Access logs: login timestamp and IP address (for security audit).

2. 我們收集什麼 / What We Do NOT Collect

  • 身分證號、護照號、駕照、信用卡號、銀行帳號等敏感個資。
  • Government ID numbers, passport numbers, credit card numbers, or bank account information.
  • 您 Bitfinex 帳戶內的資金(我們無提款權限,也不接觸資金本身)。
  • Funds in your Bitfinex account (we have no withdrawal permission and do not touch the funds themselves).

3. 用途 / Purpose

所有資料僅用於提供放貸自動化服務、技術支援、與安全稽核。我們不會將任何用戶資料出售、轉售或分享給第三方廣告商或行銷商。

All data is used solely to provide the lending automation service, technical support, and security audit. We do NOT sell, resell, or share user data with third-party advertisers or marketers.

4. 第三方服務 / Third Parties

  • Bitfinex:當您授權 API Key 時,CTA 會代您呼叫 Bitfinex API 執行放貸。資料傳輸完全經由 HTTPS。
  • Bitfinex: when you authorize an API Key, CTA calls the Bitfinex API on your behalf to execute lending. All data transmission is via HTTPS.
  • Telegram(選填):若您綁定 TG ID,通知會經由 Telegram Bot API 發送。
  • Telegram (optional): if you bind a Telegram ID, notifications are sent via the Telegram Bot API.

5. 儲存與安全 / Storage & Security

  • 資料儲存於位於新加坡的雲端伺服器(PostgreSQL)。
  • Data stored on cloud servers located in Singapore (PostgreSQL).
  • API Key/Secret 採 AES-256 加密;傳輸全程 HTTPS(TLS 1.2+)。
  • API Key/Secret encrypted with AES-256; all transmission via HTTPS (TLS 1.2+).
  • HSTS、X-Frame-Options、X-Content-Type-Options 等安全 header 已部署。
  • HSTS, X-Frame-Options, X-Content-Type-Options and other security headers are deployed.

6. 您的權利 / Your Rights

  • 查詢您在 CTA 的所有資料。Request a copy of all data we hold about you.
  • 更正不正確的資料。Correct any inaccurate data.
  • 刪除您的帳戶(含 API Key、放貸紀錄、TG 綁定)。Delete your account (including API Key, lending records, TG binding).
  • 隨時撤銷 API Key(請至 Bitfinex 後台 → API Keys → Revoke)。Revoke your API Key at any time (Bitfinex → API Keys → Revoke).

聯絡我們行使上述權利:quantitativeking@gmail.com

Contact us to exercise these rights: quantitativeking@gmail.com

7. Cookie 政策 / Cookies

我們僅使用必要的 Session Cookie 維持登入狀態,不使用追蹤型 Cookie,也不嵌入第三方廣告追蹤腳本。

We use only essential session cookies to maintain login state. No tracking cookies and no third-party advertising trackers are used.

8. 聯絡 / Contact

對本隱私政策有任何疑問:quantitativeking@gmail.com