Revve logo

Privacy Policy

Effective Date: Nov 21, 2024

At Revve AI, we are committed to protecting the privacy and security of our users' personal information. This Privacy Policy outlines how we collect, use, and safeguard the data provided to us when you visit our website at https://www.revve.ai or use our AI marketing automation services.

Information We Collect

  1. Personal Data: When you interact with our website or AI assistant, we may collect personal information such as your name, email address, and payment information.
  2. Non-Personal Data: You may choose to provide us with data used exclusively in training your AI agents. We may collect non-personal data through the use of web cookies to improve our website's functionality and user experience.
  3. Third-Party Integration Data: We may receive customer data through integrations with third-party services such as Google Workspace (formerly G Suite), Facebook, Meta (WhatsApp), Salesforce, HubSpot, and similar business tools.

Lawful Basis for Processing

We process personal data only when we have a lawful basis to do so. The lawful bases we rely on for processing personal data include:

  • Consent: Where you have given clear consent for us to process your personal data for a specific purpose.
  • Contract: Where processing is necessary for the performance of a contract with you.
  • Legal Obligation: Where processing is necessary for us to comply with the law.
  • Legitimate Interests: Where processing is necessary for our legitimate interests or the legitimate interests of a third party, unless there is a good reason to protect your personal data which overrides those legitimate interests.

Use of Information

  1. We use the collected personal data for order processing and to provide our AI assistant services.
  2. Revve AI uses customer data and content solely to service their end-user requests. Customer data will not be shared with any other customers or third parties, except as described in the "Data Sharing and Disclosure" section below.
  3. Revve.ai does not use any data obtained through 3rd parties, including but not limited to Google Workspace, Facebook, Meta, Salesforce, Hubspot, for developing, improving, or training generalized artificial intelligence (AI) or machine learning (ML) models that could be accessed by other parties.

We will only use your personal data for the purposes for which we collected it, unless we reasonably consider that we need to use it for another reason and that reason is compatible with the original purpose.

Data Sharing and Disclosure

  1. AI Service Providers: We use AI service providers such as OpenAI and Anthropic to process user data (e.g., emails for Google integrations, WhatsApp messages for Facebook/Meta integrations) to generate intelligent responses via API. These providers are bound by strict confidentiality agreements and are prohibited from using the data for any purpose other than providing services to Revve AI.
  2. Third-Party Integrations: When you choose to connect our services with third-party platforms (e.g., Google Workspace, Facebook, Salesforce), we may share necessary data with these platforms to facilitate the integration and provide our services. This sharing is always based on your explicit consent and the scope of the integration.
  3. Legal Requirements: We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., a court or a government agency).

Data Protection Mechanisms

  1. Encryption: All sensitive data, including data from third-party integrations, are encrypted using industry-standard encryption mechanisms both in transit and at rest.
  2. Access Controls: We implement strict access controls to ensure that no employees have access to unencrypted user data.
  3. Regular Security Audits: We conduct regular security audits to ensure the ongoing protection of user data.
  4. Data Protection Impact Assessments (DPIAs): We conduct DPIAs where our data processing is likely to result in a high risk to the rights and freedoms of natural persons.
  5. Record of Processing Activities (ROPA): We maintain a comprehensive record of our data processing activities as required by GDPR Article 30.

Data Retention and Deletion

  1. Active Accounts: We retain user data for as long as the account is active and as needed to provide our services.
  2. Account Closure: Upon account closure, we will delete or anonymize your personal information within 30 days, unless we are required to retain it for legal or regulatory reasons.
  3. Third-Party Data: Data obtained from third-party integrations (including Google, Facebook, CRM systems) will be retained only for as long as necessary to provide our services and will be deleted or anonymized within 30 days of the integration being disconnected or the account being closed.
  4. Data Deletion Requests: Users can request the deletion of their data at any time by contacting us at [email protected]. We will process such requests within 30 days, subject to any legal or regulatory requirements.

Children's Privacy

  1. We do not knowingly collect any personal information from children under the age of 13. If we discover that a child has provided us with personal information, we will promptly delete it from our systems.

Data Security

  1. We implement appropriate security measures to protect your personal information from unauthorized access, alteration, disclosure, or destruction.
  2. While we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security.
  3. Data Breach Notification: In the event of a data breach that is likely to result in a risk to the rights and freedoms of individuals, we will notify the relevant supervisory authority within 72 hours of becoming aware of it. We will also notify affected individuals without undue delay when the breach is likely to result in a high risk to their rights and freedoms.

User Rights and Choices

  1. Access and Control: Users have the right to access, correct, or delete their personal information. You can manage your data through your account settings or by contacting us.
  2. Opt-Out: You can opt-out of certain data collection or use practices by adjusting your account settings or contacting us.
  3. Third-Party Integrations: You can disconnect third-party integrations at any time through your account settings.

Consent Management

You have the right to withdraw your consent at any time where we are relying on consent to process your personal data. This will not affect the lawfulness of any processing carried out before you withdraw your consent. You can withdraw your consent or adjust your preferences through your account settings or by contacting us.

Privacy Policy Updates

  1. We reserve the right to update or modify this Privacy Policy at any time. In the event of any material changes, we will notify you via email or through a prominent notice on our website.

Contact Us

  1. If you have any questions or concerns about this Privacy Policy or our data practices, please contact us at [email protected].

By using our website and services, you acknowledge that you have read and understood this Privacy Policy and agree to be bound by its terms.