with us the client keep control of the funds.
Uhm... no. The client gives the funds to Bitmex AND gives an API key to you. And you keep lying that there is no risk. Not cool.
Still no DYOR?
Api key is limited to only order creation. you can find the risk involved a few posts above.
As I said, if you clean up all that shit you posted about API keys acting as private keys etc - I'd be willing to revise my feedback but you're more interested in lying and trolling so have it your way. I'm sure you'll find some suckers to give you money and they won't be able to claim that they haven't been warned so it's a win-win-win for everyone involved.