Security - Riera-Studio

Security

Riera-Studio is designed to protect company workspace data with authentication, role-based access and server-side checks.

Riera-Studio is a product by SRF Systems.

Authentication

Riera-Studio uses Supabase Auth for user authentication.

Authenticated routes are intended to redirect unauthenticated users to the sign-in page.

Workspace isolation

Company and workspace data is designed to be isolated so one company cannot access another company’s data.

The database design is RLS-ready and intended to work with row-level security policies.

Roles

The app supports owner, admin, manager, employee and viewer roles.

Server-side checks are configured for admin and company actions where sensitive changes are made.

Secrets and environments

Secrets are not intended to be placed in frontend code.

Environment variables such as service role keys and database URLs should be stored in Vercel and Supabase settings, and diagnostics should only show present or missing status.

Security contact

For security or support concerns, contact the Riera-Studio team through the published support email.

Contact and ownership

For support, contact RieraStudio@srfsystems.uk.

Learn more about SRF Systems at srfsystems.uk.

Contact Riera-Studio