Sharing the investor password is safe in the way that matters most: it is read-only. Anyone holding it can see your balance, history, and open positions, but cannot place a trade, close a trade, change a setting, or withdraw a cent. That boundary is enforced by the MetaTrader protocol itself, not by a promise from the app or person you give it to. The master password is the one you must never share. The investor password exists precisely so you can grant visibility without granting control.
This article answers the safety question directly, walks through the genuine worst case, and gives you a three-point test for any tool that asks for the credential. If you want the full background on what the credential is, start with the MT5 investor password explainer.
What the investor password can and cannot do
The whole safety argument rests on one fact: a connection authenticated with the investor password is rejected by the broker server the moment it tries to do anything other than read.
| Action | Investor password |
|---|---|
| View balance, equity, and margin | Yes |
| View open positions and trade history | Yes |
| Place a new trade | No (blocked at protocol level) |
| Close or modify a trade | No (blocked at protocol level) |
| Change account settings | No |
| Withdraw or transfer funds | No |
| Change the master password | No |
This is why brokers, signal-verification sites like Myfxbook, journals, and discipline tools all ask for the investor password rather than the master. They need to see your account. None of them need to act on it.
The honest worst case
Safety claims are only worth anything if they hold up under a breach. So picture the worst realistic scenario: the app you shared your investor password with is hacked and its entire database leaks.
What the attacker now holds is the ability to read your trade history and balance. That is a privacy exposure, and it is not nothing. But the attacker cannot place a trade, cannot drain your account, and cannot lock you out. Compare that to the same breach involving a master password, where the attacker could open losing positions or, depending on the broker, attempt withdrawals. The difference between the two credentials is the difference between an embarrassing leak and a financial disaster.
There is one secondary risk worth naming. A bad actor could connect a leaked investor password to a public account-monitoring service and falsely present your results as their own. It does not cost you money, but it can muddy a track record you care about. The fix is the same as the general fix below: rotate the password.
Your instant kill switch
You are never locked into a sharing decision. The investor password can be changed inside MetaTrader at any time, and doing so instantly invalidates every existing read-only connection without touching your own trading login.
That makes rotation the universal off-switch. If you stop trusting a tool, if you suspect a leak, or if you simply want to clean house, change the investor password and every third-party connection using the old one goes dark immediately. The step-by-step lives in the how to change your investor password guide.
How to tell a safe tool from a careless one
Read-only is the floor, not the ceiling. A well-built tool goes further and minimises how long it even holds the credential. Before you enter your investor password anywhere, check these three things.
1. It asks for the investor password by name
The field should say "investor password" or "read-only password". If an app just asks for "your MT5 password" without specifying which, ask the developer. If the honest answer is the master password, walk away unless the tool genuinely needs to execute trades and you have accepted that.
2. It does not store the password in its own database
The safest pattern is forward-and-forget: the app passes your credential once to a purpose-built, SOC2-certified MT5 connectivity provider (MetaAPI is the most common) and then deletes it from its own systems. The provider holds the encrypted credential on infrastructure built for exactly that, separate from the app vendor. A tool that keeps your password sitting in its own database is a bigger target for no good reason.
3. You can revoke access two ways
You should be able to disconnect inside the app, and you should be able to invalidate the credential entirely by rotating it in MetaTrader. That second route matters because it works even if the app is unresponsive or the company disappears.
How EmotionLock handles it
EmotionLock is a read-only tool by design. It needs to know one thing about your account, how many trades you have taken today, so it can block your chosen apps once you hit your limit. It never needs to place or close a trade, so it never asks for the master password.
Your investor password is transmitted once to MetaAPI, which is SOC2 Type 2 certified and used by over 100,000 traders, and is then deleted from EmotionLock's backend. Only your MT5 server name and account number are stored. Because EmotionLock connects read-only, it is structurally incapable of trading your account, regardless of any bug, hack, or compromise. The full step-by-step is on the security page.
Frequently asked questions
Is it safe to share my investor password?
Yes, sharing the investor password is far safer than the master password because it is read-only. Anyone using it can view your balance, history, and open positions but cannot place, close, or modify a trade, and cannot withdraw funds. These limits are enforced by the MetaTrader protocol itself, not by the app or person you share it with.
Can someone trade my account with the investor password?
No. The investor password cannot send trade instructions. The MetaTrader server rejects any order, modification, or close request from a connection authenticated with the read-only password, so no third party can trade your account with it.
Can the investor password be used to withdraw my money?
No. Withdrawals are a write operation and are blocked at the protocol level for investor-password connections. Even where a broker allows in-platform withdrawal requests, the request would be rejected for a read-only login.
What is the worst that can happen if my investor password leaks?
The worst case is exposure of your trade history and account balance. A leaked investor password cannot move money or place trades. If you are concerned, you can change the investor password in MetaTrader at any time, which instantly revokes all existing read-only access without affecting your own trading login.
How do I know a trading app handles my investor password safely?
Check three things. First, the app should ask specifically for the investor or read-only password, never the master. Second, it should forward the credential once to a SOC2-certified connectivity provider such as MetaAPI and not store it in its own database. Third, you should be able to revoke access instantly, both inside the app and by changing the investor password in MetaTrader.
The summary
Sharing your investor password is safe because the credential is read-only at the protocol level: it can show your account but cannot act on it, and a leak exposes history, not money. Share the investor password, never the master, prefer tools that forward it to a SOC2 provider rather than store it, and remember that rotating it in MetaTrader is your instant kill switch. Tools like EmotionLock are built around exactly that boundary.