> ## Documentation Index > Fetch the complete documentation index at: https://docs.videodb.io/llms.txt > Use this file to discover all available pages before exploring further. # Security & Privacy > VideoDB handles sensitive media data. Understand storage modes, data retention, and privacy patterns to build compliant systems. ## When to Reference This Use this page when you're: * Designing systems with privacy requirements * Choosing storage and retention policies * Implementing consent workflows * Securing API access patterns ## Quick Example ```python theme={null} import videodb # Secure connection conn = videodb.connect() # Uses VIDEODB_API_KEY env var # Desktop capture with client tokens (never expose API key) cap = conn.create_capture_session( end_user_id="user_abc", callback_url="https://your-backend.com/webhooks" ) token = conn.generate_client_token(expires_in=600) # Short-lived ``` ## Next Steps Secure desktop capture patterns API key management *** ## Storage Modes ### Persistent Storage (Default) Media and derived data are stored for retrieval and search: ```python theme={null} video = coll.upload(url="https://...") # Stored index = video.index_scenes(...) # Stored results = video.search("query") # Searchable ``` **Use for:** * Video archives and libraries * Searchable knowledge bases * Long-term agent memory ### Ephemeral Processing Process in real-time without persistent storage: ```python theme={null} # Real-time processing only rtstream.index_visuals( prompt="Monitor for activity", ephemeral=True # Process but don't store ) ``` **Use for:** * Live monitoring dashboards * Real-time alerts without storage * Privacy-sensitive contexts *** ## Retention Patterns ### Default Retention * Media stored until explicitly deleted * Indexes and metadata stored with media * No automatic expiration ### Manual Deletion ```python theme={null} # Delete video and all associated data video.delete() # Delete specific index index.delete() # Delete collection coll.delete() ``` ### Recommended Patterns | Use Case | Pattern | | :----------------- | :------------------------------------ | | Temporary analysis | Ephemeral mode | | GDPR compliance | Implement deletion on user request | | Meeting recordings | Define retention policy, batch delete | | Security footage | Time-based archival and deletion | *** ## API Key Security ### Key Management ```python theme={null} # Environment variable (recommended) conn = videodb.connect() # Uses VIDEODB_API_KEY # Explicit key (server-side only) conn = videodb.connect(api_key="your-key") ``` **Best practices:** * Never embed keys in client applications * Use environment variables * Rotate keys periodically * Use separate keys for dev/prod ### Key Operations ```python theme={null} # Create new key new_key = conn.create_api_key(name="production") # List keys keys = conn.list_api_keys() # Delete key conn.delete_api_key(key_id) ``` *** ## Client Token Pattern For desktop and mobile clients, use short-lived tokens instead of API keys: ```python theme={null} # Backend (holds API key) token = conn.generate_client_token(expires_in=600) # 10 minutes # Client (uses token, never sees API key) client = CaptureClient(client_token=token) ``` **Why this matters:** * Tokens expire automatically * Tokens have limited scope * Compromised tokens have limited blast radius * API key never leaves your backend *** ## Consent Patterns ### User Consent for Capture Before capturing screen, mic, or camera: ```python theme={null} # Request explicit permission await client.request_permission("microphone") await client.request_permission("screen_capture") # User must grant permission in OS dialog channels = await client.list_channels() ``` ### Data Subject Access Implement endpoints for user data requests: ```python theme={null} # Get all data for a user def get_user_data(end_user_id): sessions = conn.list_capture_sessions(end_user_id=end_user_id) videos = coll.list_videos(metadata={"user_id": end_user_id}) return {"sessions": sessions, "videos": videos} # Delete all user data def delete_user_data(end_user_id): sessions = conn.list_capture_sessions(end_user_id=end_user_id) for session in sessions: session.delete() # Delete associated RTStreams and indexes ``` *** ## Network Security ### HTTPS All API communication uses HTTPS. No configuration needed. ### Webhook Security Verify webhook payloads to prevent spoofing: ```python theme={null} @app.post("/webhooks/videodb") async def handle_webhook(request): # Verify signature (implementation depends on your setup) signature = request.headers.get("X-VideoDB-Signature") if not verify_signature(request.body, signature): return {"error": "Invalid signature"}, 401 event = await request.json() process_event(event) return {"status": "ok"} ``` *** ## Compliance Considerations ### GDPR * Implement data access endpoints * Implement deletion endpoints * Document data processing purposes * Use ephemeral mode when storage isn't needed ### HIPAA * Use ephemeral mode for sensitive content * Implement strict access controls * Audit all data access * Consider on-premise deployment for PHI ### SOC 2 * VideoDB maintains SOC 2 compliance * Implement access logging * Use separate keys per environment * Regular key rotation *** ## Best Practices Summary 1. **Never expose API keys** - Use client tokens for untrusted clients 2. **Default to ephemeral** - Only persist data when needed 3. **Implement deletion** - Honor data deletion requests 4. **Short token lifetimes** - 10-15 minutes for desktop capture 5. **Audit access** - Log who accesses what data 6. **Encrypt at rest** - VideoDB encrypts stored data 7. **Get consent** - Always get user permission before capture