Skip to main content

Risk Warning: CFDs are complex instruments and come with a high risk of losing money rapidly due to leverage. 83% of retail investor accounts lose money when trading CFDs with this provider. You should consider whether you understand how CFDs work and whether you can afford to take the high risk of losing your money. Please click here to read our full Risk Warning.

79% of retail investor accounts lose money when trading CFDs with this provider.

Risk Warning: CFDs are complex instruments and come with a high risk of losing money rapidly due to leverage. 83% of retail investor accounts lose money when trading CFDs with this provider. You should consider whether you understand how CFDs work and whether you can afford to take the high risk of losing your money. Please click here to read our full Risk Warning.

79% of retail investor accounts lose money when trading CFDs with this provider.

Why does the platform use auto-logout for user sessions?

Auto logout is a security feature that ends inactive sessions automatically to reduce the risk of unauthorised account access. When a user leaves their account open without interacting with the platform for a defined period of time, the system automatically terminates the session and requires the user to log in again before any further actions can be performed. This simple but effective mechanism provides an important layer of protection against a range of potential security threats.

The primary purpose of auto logout is to protect accounts from being accessed by unauthorised individuals who may gain physical access to an unattended device. For example, if a trader logs into their account on a work computer, a shared device, or a laptop in a public space and then walks away without manually logging out, the open session could be exploited by anyone who approaches the device. Auto logout mitigates this risk by ensuring that the window of vulnerability is limited to a defined period of inactivity, after which the session is closed, and full re-authentication is required to regain access.

Auto logout also helps protect against certain types of session hijacking attacks, where a malicious party attempts to take over an active session through technical means. By limiting the lifespan of each session, the platform reduces the time during which such an attack could be attempted. The timeout period is typically calibrated to balance security with user convenience, long enough that active traders are not interrupted during normal use, but short enough to provide meaningful protection during periods of inactivity. Some platforms allow users to adjust the timeout duration within their security settings, giving them the flexibility to choose a balance that suits their individual usage patterns. While having to re-enter login credentials after a timeout may feel like a minor inconvenience, it is a widely recognised security best practice that significantly reduces the risk of unauthorised account actions resulting from unattended sessions.