Privacy Policy

Revr Inc. ("we," "us," or "our") operates the Revr platform at getrevr.com. This Privacy Policy explains how we collect, use, store, and protect your information when you use our service.

Account Information

When you create an account, we collect your name, email address, and password. If you subscribe to a paid plan, we collect billing information through Stripe (we do not store credit card numbers directly).

Usage Data

We collect information about how you use the Platform, including features accessed, properties viewed, outreach sent, and AI interactions. This data is used to provide the service and improve the user experience.

Property & Contact Data

The Platform processes property information, owner data, and contact details obtained through third-party data providers on your behalf. This data is associated with your account and used to provide deal sourcing, scoring, and outreach services.

Outreach Data

If you use email or SMS outreach features, we process the content of messages sent and received through the Platform, including email addresses, phone numbers, message content, and engagement metrics (opens, clicks, replies).

AI Conversations

Conversations with Reggie (our AI assistant) are stored to provide context continuity and improve the service. These conversations may include property data, investment criteria, and business preferences you share.

• To provide, maintain, and improve the Platform and its features.
• To process transactions and manage your subscription.
• To send emails and SMS messages on your behalf through your verified domain and provisioned phone number.
• To generate AI-powered property analyses, outreach copy, and recommendations.
• To track usage against your plan limits (tokens, daily pulls, skip traces).
• To send you service-related communications (billing confirmations, security alerts, feature updates).
• To detect and prevent fraud, abuse, or violations of our Terms of Service.

We use the following third-party services to operate the Platform. Each processes data according to their own privacy policies:

Revr uses Google APIs to (a) send outreach emails you author from your own Gmail account and (b) display and manage events on your own Google Calendar. We do not read your Gmail inbox. Connecting Gmail and Google Calendar is optional and entirely controlled by you.

What we access — Gmail

When you click "Connect Gmail", we request the following OAuth scopes from Google:

• gmail.send — to send outreach emails from your account on your behalf, only for messages you compose or approve in Revr.
• userinfo.email — to identify which Gmail account is connected and display it in Settings.

We deliberately do not request gmail.readonly, gmail.modify, or any other inbox-read scope. Replies to your outreach go directly to your own inbox — Revr never receives or reads them. If you want Reggie to help with a specific reply, you forward that one message to Reggie's inbound address, and only the message you choose to forward is processed. The rest of your inbox is never accessible to Revr.

What we access — Google Calendar

If you click "Connect Google Calendar", we additionally request:

• calendar and calendar.events — to display your schedule inside Revr's Tasks calendar and to create or update events you choose to add. Sync is two-way and limited to your own calendar.

We use your calendar data only to show your schedule and manage events inside Revr. We do not share it or use it for any other purpose, and the Limited Use commitments below apply equally to calendar data.

How we use this data

• Send outreach messages you author within Revr.
• Display the Google account you connected so you know which one is active.
• Show send status (sent / bounced) from delivery webhooks — not by reading your inbox. Replies stay in your own inbox unless you choose to forward one to Reggie.
• Show and manage your calendar events inside the Tasks calendar.

Limited Use disclosure

Revr's use and transfer of information received from Google APIs to any other app will adhere to the Google API Services User Data Policy, including the Limited Use requirements. Specifically:

• We do not sell, transfer, or share Google user data (Gmail or Calendar) with third parties for advertising, marketing, or any unrelated purpose.
• We do not use Google user data to train or fine-tune any AI/ML model, including Reggie. AI processing of email content is limited to the in-product features the user explicitly invokes (e.g. drafting a message, or acting on a reply you forward to Reggie) and is never used for any generalized model training.
• We do not allow humans to read Google user data, except: (a) with your explicit consent, (b) for security purposes such as investigating abuse, (c) to comply with applicable law, or (d) for internal operations where the data has been aggregated and anonymized.
• We only access the Google user data necessary to deliver and improve the features you actively use.

Storage & encryption

OAuth access and refresh tokens are stored encrypted at rest in our database (Supabase) and transmitted over TLS. We retain only the minimum data needed to power your views: sent-message timestamps, the original outbound body you authored, the details of calendar events synced from your connected calendar, and the contents of any reply you explicitly forward to Reggie. The rest of your Gmail inbox is never transmitted to or stored by Revr.

Revoking access

You can disconnect Gmail at any time from two places:

• Inside Revr: Settings → Outreach → Disconnect Gmail. This deletes your stored OAuth tokens immediately.
• From your Google Account: myaccount.google.com/connections → select Revr → Remove access.

Once revoked, Revr can no longer send email or access your calendar on your behalf. Existing outreach history saved in Revr remains visible until you delete your account or request data removal at privacy@getrevr.com.

Your data is stored in Supabase (cloud-hosted PostgreSQL) with row-level security policies that isolate each user's data. We use encryption in transit (TLS) and at rest. Authentication tokens are managed securely and never exposed to client-side code.

Payment information is processed and stored by Stripe. We do not have access to your full credit card number.

While we implement industry-standard security measures, no system is completely secure. We cannot guarantee absolute security of your data.

We retain your account data and associated property/contact data for as long as your account is active. If you cancel your subscription, your data is retained for 30 days to allow for reactivation, after which it is scheduled for deletion.

AI conversation history is retained for 12 months from the date of the conversation, after which it is automatically purged.

You may request data export or deletion at any time by contacting support@getrevr.com.

Depending on your jurisdiction, you may have the right to:

• Access — request a copy of the personal data we hold about you.
• Correction — request correction of inaccurate personal data.
• Deletion — request deletion of your personal data (subject to legal retention requirements).
• Portability — request your data in a machine-readable format.
• Opt-out — opt out of non-essential communications at any time.

To exercise any of these rights, contact us at privacy@getrevr.com.

Revr uses essential cookies for authentication and session management. We do not use third-party advertising cookies or tracking pixels. We do not sell your data to advertisers or data brokers.

When you use Revr to send outreach, the recipients of those messages are not our users — they are your contacts. We process their contact information (email, phone, name, address) solely to facilitate outreach on your behalf. We do not use recipient data for our own marketing purposes.

Recipients who unsubscribe from your emails or reply STOP to your SMS messages are added to a suppression list specific to your account. We honor all opt-out requests promptly.

Revr is not intended for use by anyone under the age of 18. We do not knowingly collect personal information from children.

We may update this Privacy Policy from time to time. Material changes will be communicated via email or in-app notification at least 14 days before taking effect. The "Last updated" date at the top reflects the most recent revision.

For questions or concerns about this Privacy Policy or our data practices, contact us at:

Revr Inc.
Email: privacy@getrevr.com
Web: getrevr.com