Security is foundational to how we build and operate River. We protect customer data with encryption in transit and at rest, least-privilege access controls, and continuous monitoring of our infrastructure.
Our practices
River maintains a written information security program covering access management, change management, vendor review, incident response, and employee security training. Our services run on Google Cloud Platform with redundancy and audit logging enabled.
Reporting a vulnerability
If you believe you've found a security vulnerability in a River product or service, please email [email protected]. We appreciate responsible disclosure and will respond promptly.