Privacy Policy

REVR Inc. ("we," "us," or "our") operates the REVR platform at getrevr.com. This Privacy Policy explains how we collect, use, store, and protect your information when you use our service.

Account Information

When you create an account, we collect your name, email address, and password. If you subscribe to a paid plan, we collect billing information through Stripe (we do not store credit card numbers directly).

Usage Data

We collect information about how you use the Platform, including features accessed, properties viewed, outreach sent, and AI interactions. This data is used to provide the service and improve the user experience.

Property & Contact Data

The Platform processes property information, owner data, and contact details obtained through third-party data providers on your behalf. This data is associated with your account and used to provide deal sourcing, scoring, and outreach services.

Outreach Data

If you use email or SMS outreach features, we process the content of messages sent and received through the Platform, including email addresses, phone numbers, message content, and engagement metrics (opens, clicks, replies).

AI Conversations

Conversations with Reggie (our AI assistant) are stored to provide context continuity and improve the service. These conversations may include property data, investment criteria, and business preferences you share.

• To provide, maintain, and improve the Platform and its features.
• To process transactions and manage your subscription.
• To send emails and SMS messages on your behalf through your verified domain and provisioned phone number.
• To generate AI-powered property analyses, outreach copy, and recommendations.
• To track usage against your plan limits (tokens, daily pulls, skip traces).
• To send you service-related communications (billing confirmations, security alerts, feature updates).
• To detect and prevent fraud, abuse, or violations of our Terms of Service.

We use the following third-party services to operate the Platform. Each processes data according to their own privacy policies:

REVR uses Google APIs to send outreach emails on your behalf and to track replies for the purpose of conversation continuity. Connecting Gmail is optional and entirely controlled by you.

What we access

When you click "Connect Gmail", we request the following OAuth scopes from Google:

• gmail.send — to send outreach emails from your account on your behalf, only for messages you compose or approve in REVR.
• gmail.readonly — to read replies to outreach we sent, so we can show conversation history and detect responses, opt-outs, and bounces.
• userinfo.email — to identify which Gmail account is connected and display it in Settings.

How we use Gmail data

• Send outreach messages you author within REVR.
• Pull replies to those outreach messages so they appear in your inbox view and conversation timeline.
• Update outreach status (sent / opened / replied / bounced) and stop suppressed contacts from receiving further messages.

Limited Use disclosure

REVR's use and transfer of information received from Google APIs to any other app will adhere to the Google API Services User Data Policy, including the Limited Use requirements. Specifically:

• We do not sell, transfer, or share Gmail data with third parties for advertising, marketing, or any unrelated purpose.
• We do not use Gmail data to train or fine-tune any AI/ML model, including Reggie. AI processing of email content is limited to the in-product features the user explicitly invokes (drafting, summarizing a thread you've opened) and is not used for any generalized model training.
• We do not allow humans to read Gmail data, except: (a) with your explicit consent, (b) for security purposes such as investigating abuse, (c) to comply with applicable law, or (d) for internal operations where the data has been aggregated and anonymized.
• We only access Gmail data necessary to deliver and improve the outreach features you actively use.

Storage & encryption

OAuth access and refresh tokens are stored encrypted at rest in our database (Supabase) and transmitted over TLS. Email message bodies pulled via the Gmail API are processed in memory to update outreach status; we retain only the minimum metadata (Gmail message ID, thread ID, timestamps, reply text excerpts) needed to power conversation views.

Revoking access

You can disconnect Gmail at any time from two places:

• Inside REVR: Settings → Outreach → Disconnect Gmail. This deletes your stored OAuth tokens immediately.
• From your Google Account: myaccount.google.com/connections → select REVR → Remove access.

Once revoked, REVR cannot send or read any Gmail messages on your behalf. Existing outreach history saved in REVR remains visible until you delete your account or request data removal at privacy@getrevr.com.

Your data is stored in Supabase (cloud-hosted PostgreSQL) with row-level security policies that isolate each user's data. We use encryption in transit (TLS) and at rest. Authentication tokens are managed securely and never exposed to client-side code.

Payment information is processed and stored by Stripe. We do not have access to your full credit card number.

While we implement industry-standard security measures, no system is completely secure. We cannot guarantee absolute security of your data.

We retain your account data and associated property/contact data for as long as your account is active. If you cancel your subscription, your data is retained for 30 days to allow for reactivation, after which it is scheduled for deletion.

AI conversation history is retained for 12 months from the date of the conversation, after which it is automatically purged.

You may request data export or deletion at any time by contacting support@getrevr.com.

Depending on your jurisdiction, you may have the right to:

• Access — request a copy of the personal data we hold about you.
• Correction — request correction of inaccurate personal data.
• Deletion — request deletion of your personal data (subject to legal retention requirements).
• Portability — request your data in a machine-readable format.
• Opt-out — opt out of non-essential communications at any time.

To exercise any of these rights, contact us at privacy@getrevr.com.

REVR uses essential cookies for authentication and session management. We do not use third-party advertising cookies or tracking pixels. We do not sell your data to advertisers or data brokers.

When you use REVR to send outreach, the recipients of those messages are not our users — they are your contacts. We process their contact information (email, phone, name, address) solely to facilitate outreach on your behalf. We do not use recipient data for our own marketing purposes.

Recipients who unsubscribe from your emails or reply STOP to your SMS messages are added to a suppression list specific to your account. We honor all opt-out requests promptly.

REVR is not intended for use by anyone under the age of 18. We do not knowingly collect personal information from children.

We may update this Privacy Policy from time to time. Material changes will be communicated via email or in-app notification at least 14 days before taking effect. The "Last updated" date at the top reflects the most recent revision.

For questions or concerns about this Privacy Policy or our data practices, contact us at:

REVR Inc.
Email: privacy@getrevr.com
Web: getrevr.com