Trades to Sheets
The Architecture of Trust: Understanding Flex Queries and Data Security
Flex Queries are built for high-precision reporting. However, because Interactive Brokers prioritizes security and system stability, this "reporting engine" comes with specific structural boundaries. Understanding these isn't just a technical exercise—it’s about knowing how to manage your financial data safely and effectively.
1. The Philosophy of Selection: Security Through "No Access"
The most fundamental concept of a Flex Query is that it is a pull-based system governed by the user.
Unlike many modern financial apps that request "full access" to your account history, a Flex Query operates on a "zero-access" default. When you link your account to a service, the service has no way to see your data unless you explicitly add that specific data field to your Flex Query template in the Interactive Brokers Client Portal.
User Control: You decide if we can access your commissions, your P&L, or even just the ticker symbols.
The "Invisible" Data: If you don't check the box for "Currency" or "Asset Class" in your Interactive Brokers settings, that data simply does not exist. This creates a powerful layer of privacy: you only share what is necessary for the report you want to build.
2. The 365-Day Token: A Forced Security Check
In the world of web services, "Tokens" are like digital keys. Interactive Brokers restricts the maximum duration of a Flex Query token to 365 days. Furthermore, there is no automated method to renew this token.
This is a deliberate security feature. By forcing the token to expire once a year, Interactive Brokers ensures that no third-party service can maintain a permanent, "forever" link to your data without your active re-verification. It acts as a mandatory annual audit of your connections.
3. The Horizon: Why 365 Days of History?
When running a report, you might notice you can only look back 365 calendar days. While Interactive Brokers stores your data for much longer, the Flex Query "pipe" is optimized for recent, actionable data.
4. Reporting vs. Execution: The "Read-Only" Firewall
Perhaps the most important distinction for any user is that Flex Queries are non-executable.
In technical terms, this is a Read-Only interface. Even if a malicious actor were to somehow gain access to your Flex Query Token and Query ID, they would only be able to read your past trades. They cannot:
Place a trade.
Withdraw funds.
Change account settings.
This creates a "firewall" between your trading capital and your data analysis. You can use tools to visualize and study your performance with the peace of mind that the "reporting side" of your account is physically unable to touch the "trading side."