Hi Vivek,

Thank you for raising these concerns!

Each API key is always stored encrypted and uses FIPS 140–2 validated hardware security modules (HSMs) to protect the confidentiality and integrity of your Exchange API keys.

There are many reasons we won’t be turning “evil”, starting with not wanting to go to jail. We are a US based company, so this means we will be abiding by US laws.

The service is free, but we still plan on making money in the future. We are a for profit company, so we will continue to work with the community to find ways to monetize.

Please let me know if you have any other questions!

The Shrimpy Team