RevFlowSign in

Privacy Policy

Last updated: June 28, 2026

This Privacy Policy explains how RevFlow, operated by [Company legal name] (“we”, “us”), collects, uses, and protects information when you use the Service.

1. Information we collect

  • Account data — name, email, and authentication details you provide when signing up.
  • Workspace content — the CRM data you enter (leads, contacts, deals, activities), which may include personal data about third parties that you control.
  • Usage & device data — log data such as IP address, browser type, and pages viewed, used to operate and secure the Service.

2. How we use information

We use information to provide and improve the Service, authenticate users, communicate with you (including transactional emails such as sign-in links and workspace invitations), maintain security, and comply with legal obligations. We do not sell your personal data.

3. Roles (controller / processor)

For account data, we act as a data controller. For the workspace content you upload, you are the controller and we act as a processor handling that data on your instructions under these terms.

4. Sub-processors

We rely on trusted infrastructure providers to run the Service, including [Supabase] (database, authentication), [Vercel] (hosting), and [SendGrid] (transactional email). Each processes data only as needed to provide their service.

5. Data retention

We retain account and workspace data for as long as your account is active and for a reasonable period afterward, then delete or anonymize it unless a longer period is required by law. [Specify your retention windows.]

6. Security

We use industry-standard measures including encryption in transit, database-level access controls, and tenant isolation enforced by row-level security. No method of transmission or storage is 100% secure.

7. Your rights

Depending on your location, you may have rights to access, correct, export, or delete your personal data, and to object to or restrict certain processing. To exercise these rights, contact us at the address below. [Reference GDPR/CCPA as applicable.]

8. International transfers

Data may be processed in regions where we or our sub-processors operate. Where required, we use appropriate safeguards for cross-border transfers.

9. Changes & contact

We may update this policy; material changes will be notified through the Service or by email. Questions or requests? Email privacy@revflow.cc.