Account Management & Permissions

This section explains how to manage your account and related permissions on the QuantumExecute platform.

User Account and Security: After registration, you can manage your account details in the Personal Center. For security, it is recommended to keep your contact information up-to-date and use a strong, unique password (the platform may enforce certain password complexity rules). Changing your password or disabling 2FA (if ever needed) will require re-authentication via email or other means for safety. All sensitive user actions are logged by the system for auditing. QuantumExecute employs strict security measures such as mandatory 2FA and session timeout to protect user accounts from unauthorized access.

Linking Exchange API Accounts: QE uses a non-custodial model. You do not deposit funds into QE; instead, you connect your own exchange accounts through API keys so the platform can trade on your behalf. To add an exchange API, go to Personal Center → Exchange Account API. Provide the required info: typically an account nickname, the exchange name, API Key, and API Secret. Ensure that the API Key on the exchange side has trading permissions enabled and withdrawal permissions disabled (for security). Also, restrict the API Key’s access to QuantumExecute’s IP addresses if the exchange supports IP whitelisting. Once you submit the information, QE will test the API connection. If valid, the exchange account status will show as “Connected”. The API Secret you provide is immediately encrypted and stored securely (see Security section for details) – QE staff cannot see your plaintext keys.

You can add multiple exchange accounts if needed (for example, if you trade on both Binance and Coinbase, or if you manage multiple sub-accounts). The platform allows you to select which linked account to use when launching an algorithmic order. You can also edit or revoke exchange API keys from the same management page at any time.

Strategy API Keys (Programmatic Access): If you wish to control the platform via your own trading systems (for example, triggering strategies from your OMS or running algorithms programmatically), you can create a Strategy API Key. This is done in Personal Center → Strategy API. Creating a new key will prompt a verification (you must confirm via email and 2FA) to ensure it’s you making the request. Upon verification, the system will generate an API Key and Secret for you to use with QE’s API endpoints. The Secret will only be shown once at creation, so make sure to copy it and store it securely.

Strategy API keys allow fine-grained control: you might generate separate keys for different applications or team members. Currently, keys are tied to your account and inherit the same permissions (i.e., they can execute trades on any exchange account you’ve linked, view your orders, etc.). If you suspect a key is compromised or no longer needed, you should delete it from the platform immediately (and you can generate a new one later). All API requests made with these keys require a valid signature (HMAC using the Secret) and your assigned ClientID, which QE provides when you create the key.

User Roles and Permissions: In the current platform version, each login account is typically an individual user or an institution’s master account, and QE does not yet support multi-user role hierarchies (like admin vs. trader roles) within a single account by default. If you have a team and need multiple people to use QE with different permission levels (read-only, trade-only, etc.), you should contact the QE team to discuss possible solutions or upcoming enterprise features. For most individual users, your account has full control over its API keys, linked exchange accounts, and strategies. Always guard your login credentials and API keys; do not share them. If someone in your team needs access, use the Strategy API keys or consider setting up a separate QE account for them.