TranscribeHQ

Security Principles

Least-privilege access to production systems.
Encryption in transit for public web and API traffic.
Operational logging and release gating for billing/privacy-critical flows.

Application Controls

Input validation and rate-limited endpoints for public web forms.
Subscription entitlement checks through RevenueCat and StoreKit.
App release checklists covering legal, support, and review-facing requirements.

Incident Response

Security or privacy incidents are triaged immediately, contained, and reviewed for root cause with corrective actions tracked through the release process.

Security Contact

Report concerns to support@transcribehq.com with subject line “Security Report”.