Security
How RiverScript protects your data and what controls you have over it.
Infrastructure
RiverScript runs on servers located in the European Union — specifically Hetzner Cloud data centers in Helsinki, Finland. Your transcripts and account data never leave the EU.
Audio files are stored on Cloudflare R2 and are accessible only via authenticated, time-limited URLs. Audio files are automatically and permanently deleted 7 days after upload.
Data in Transit and at Rest
All communication between your browser or Desktop Client and RiverScript is encrypted over HTTPS/TLS. Database connections are encrypted. Access to production systems is restricted to authorized personnel only.
Your Data Controls
You have full control over your data directly from the RiverScript interface:
- Delete individual transcripts — remove any transcript from your account at any time from the transcript list.
- Delete all your files — permanently delete all transcripts and files in your account at once, without deleting the account itself. Available in Settings → Privacy.
- Delete your account — permanently deletes your account and all associated data, including transcripts and account settings. Available in Settings → Privacy. Source audio files are deleted on their normal 7-day schedule if not already gone.
- Export your transcripts — download any transcript in your preferred format (TXT, PDF, DOCX, SRT) at any time from the editor.
No need to contact support for any of the above — these controls are available to you directly.
Audio File Retention
Source audio and video files are automatically deleted from our storage 7 days after upload. This happens regardless of whether your account is active or not. Transcripts generated from those files are retained separately until you delete them.
Reporting a Security Issue
If you discover a security vulnerability in RiverScript, please contact us at [email protected]. We take all reports seriously and will respond promptly.