Security at the core

RegioDesk was built for SMBs that take security seriously but don't have a dedicated infosec team.

Self-hosted infrastructure

Connection traffic and metadata never leave EU servers. The relay, the management API, and the database all run in Romania. There's no third-party cloud in your trust path.

Two-factor authentication

TOTP-based 2FA is included on every plan. You can require 2FA per connection, not just at login. Trusted-device management lets you skip 2FA on a workstation you've already verified.

Audit logs

Every connection — successful, denied, or rate-limited — is logged with the connecting user, target machine, source IP, timestamp, and 2FA status. Exportable as CSV or JSON for your compliance reviews.

Dynamic password rotation

Optional per-machine mode where the connection password rotates on every successful authentication. The agent generates and stores it locally; the server never sees the password itself.

Transport encryption

All traffic between the client, relay, and agent uses end-to-end encryption (RustDesk's native E2E layer over TLS).

Compliance posture

GDPR-compliant by design — data minimization, right to erasure, data residency in the EU. We do not run third-party analytics or behavioral tracking on this site or in the product.