RiverGen Logo

RiverGen

Governance

Control Who
Across Every Data Source.

RiverGen Governance lets you define and enforce access policies, data masking rules, row-level filters, and query limits — all from one place, applied instantly across every product in the platform.

Create Your First PolicySee Policy Types

4 Types

Supported

41 Policies

Active Avg

< 2min

To Enforce

Policies

Manage data security, access controls, and governance rules

Active

RBAC

Role-based access control for users and resources

12 policies

Active

Row-Level Security

Control data access at the row level

8 policies

Active

Data Masking

Hide or obfuscate sensitive data columns

15 policies

Active

Query Limits

Set timeouts and resource constraints

6 policies

Policy NameTypeSourceApplied ToStatusActions

Customer Data Access

2 hours ago

RBACPostgreSQL ProdSales Team (12 users)Active

Department Row Filter

1 day ago

Row-Level SecurityMySQL AnalyticsAll UsersActive

PII Data Masking

3 days ago

Data MaskingSnowflake DWAnalysts (8 users)Active

Query Timeout Policy

1 week ago

Query LimitsAll SourcesAll UsersActive

Forbidden Tables

2 weeks ago

Access ControlPostgreSQL ProdExternal Users (3 users)Inactive
Showing 1 to 8 of 8 results

What is Governance?

Policies that enforce themselves — automatically.

Governance is RiverGen's security and compliance layer. Every policy you create here is enforced silently across Prompt Studio queries, Model Studio training pulls, and Decision Intelligence monitors. You set the rules once; the platform applies them everywhere.

  • Policies apply automatically to all connected products
  • No code required — visual rule builder for every policy type
  • Active/Inactive toggle lets you test rules before enforcement

For Compliance Teams

Prove compliance without slowing your team down.

Every policy has a full audit trail. Every rule change is logged with the user, timestamp, and reason. Whether you're preparing for SOC 2, GDPR, or an internal security review, Governance gives you the evidence trail you need without adding friction to your data teams.

  • Full audit log for every policy creation, edit, and deletion
  • Per-source and per-team policy scoping
  • Export policies list for compliance documentation

Four Policy Types. Every Access Scenario Covered.

From coarse-grained user roles to column-level masking, Governance handles the full spectrum of data access control.

Role-Based Access Control

Assign roles to users and teams, then bind those roles to data sources, products, or specific workspaces. A Sales Analyst role can access CRM data in Prompt Studio but not the financial warehouse.

Role: Sales-Analyst → Source: CRM_Prod → Access: Read
Role: Finance-Admin → Source: Finance_DW → Access: Full
12 policies active

Row-Level Security

Filter the rows any user or team can see at query time. A regional manager sees only their region's rows. A contractor sees only rows where their user ID matches. Enforced before the result is returned.

Filter: WHERE region = current_user.region
Filter: WHERE assigned_to = current_user.id
8 policies active

Data Masking

Hide or obfuscate sensitive columns for specific users or teams. Analysts see email as j***@***.com. Phone numbers show as ***-***-1234. PII stays private without removing it from the dataset entirely.

Hide column: email → show: j***@***.com
Hide column: phone_number → show: ***-***-1234
15 policies active

Query Limits & Timeouts

Prevent runaway queries from impacting production systems. Set maximum execution time, row return limits, and concurrent query caps per user, team, or source. Query Timeout Policy applies to all sources.

Max execution: 30s
Max rows returned: 50,000
Concurrent queries per user: 3
6 policies active

Creating a Policy

Any rule. Any team. In under two minutes.

The Create Policy form adapts to whichever policy type you choose. Select RBAC and you get user/role fields. Select Data Masking and you get column selectors. Every form is purpose-built so you never configure fields that don't apply.

Policy Name and description for team documentation
Policy Type selector — switches the form layout automatically
Data Source selector — pulls from your connected Data Sources
Applied To — assign to All Users, specific teams, or individual roles

Create New Policy

Policy Name

Description

Policy Type

Data Source

PostgreSQL Prod

Applied To

All Users Sales Team
Status
Inactive
Active

Every Policy. Fully Documented.

Restrict PII Access in Analytics

Data Masking
Active

Overview

This policy masks sensitive user data, including email and phone numbers, for all users in the 'BI-Analysts' group when they query the production PostgreSQL database.

JD

Jane Doe

Created By • Last Modified: 2 hours ago

Policy Type

Data Masking

Data Source

PostgreSQL Prod

Applied To

Bi-AnalystsSupport-L2Data-Science-Interns

Rules / Conditions

Hide column: email
Hide column: phone_number
Apply where: Region = 'North America'

Recent Activity

Policy Updated

Jane Doe

2 hours ago

Policy Created

Alex Ray

Oct 15, 2025

Rule Added

Alex Ray

Oct 14, 2025

Immutable Audit Trail

Every change to every policy is recorded forever. Who changed it, when, and what the previous value was.

Team-Scoped Enforcement

Policies apply only to the teams and roles you specify. Others are unaffected, preventing accidental lockouts.

Live Toggle Activation

Switch a policy from Inactive to Active in one click. Changes apply to all future queries immediately.

Export for Compliance

Export your full policy list to CSV or PDF. Ready for SOC 2 auditors, GDPR reviews, or internal security documentation.

41

Average policies per workspace

4

Policy types supported

< 2 min

Average time to create and enforce

100%

Of policies exportable for compliance

Start Governing Your Data Today.

Create your first policy in under two minutes. Connect it to any data source. Enforce it everywhere.

Create a PolicyExplore Policy Types