revnu

── Privacy policy

How we handle
your data.

Last updated: May 2026. The short version: we collect what we need to run Revnu for you and nothing else, never sell it, never train shared models on it.

What we collect

Account info (email, name), billing details (handled by Stripe), the data you connect via integrations (your product copy, brand voice, Stripe events, GitHub repo metadata, ad-account access), and product usage telemetry (page views, feature interactions). We collect what we need to run Revnu for you and nothing else.

Why we collect it

To operate the service, generate work for you (drafts, ads, outbound), bill correctly, debug issues, and improve the product. We never sell your data, never share it across customer accounts, and never train shared LLMs on your content.

Subprocessors

We rely on a small set of vendors. Each is bound by data-processing agreements:
  • Convex — primary database + backend
  • Stripe — billing
  • Vercel — web hosting
  • Cloudflare — edge + worker infrastructure
  • OpenAI / Anthropic — model providers (data not used for training)
  • PostHog — product analytics
  • Resend — transactional email

How long we keep it

Account data: while your account is active, plus 90 days after deletion for backup. Connected integration data: only while the integration is connected — disconnect a tool and we purge the cached data within 30 days. Logs: 30 days for debugging.

Your rights

You can export your data, request deletion, or correct inaccurate info any time from account settings or by emailing support@revnu.com. We respond within 30 days. If you're in the EU/UK, you have GDPR rights including data portability and the right to lodge a complaint with your data-protection authority.

Cookies + tracking

We use a minimum set of first-party cookies for auth and session state, and PostHog for anonymous product analytics. We don't use cross-site advertising trackers. You can disable cookies in your browser; some features won't work without them.

Security

All data is encrypted in transit (TLS 1.2+) and at rest. Access controls are role-based and audit-logged. SOC 2 Type II is in progress. If you find a vulnerability, email support@revnu.com with "security" in the subject — we'll respond within one working day.

Children

Revnu isn't directed at users under 13. If you believe we've collected data from a child under 13, email us and we'll delete it.

Changes

If we change this policy in a material way, we'll notify you in-product before it takes effect. Otherwise, the latest version is always at this URL.

Contact

Questions about this policy: support@revnu.com.

See also: Terms of service.