Skip to main content
← Back to home

Privacy Policy

Last updated: 11 Mar 2026

1. Introduction

RevNext ("we", "us", "our") operates the RevNext platform at revnext.io (the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

By using RevNext, you agree to the collection and use of information in accordance with this policy. If you do not agree, please do not use the Service.

2. Information We Collect

2.1 Information you provide

  • Account information - name, email address, and organisation details when you sign up via Clerk (our authentication provider).
  • Client and lead data - names, email addresses, phone numbers, social media handles, and any other information you enter about your clients and leads within the platform.
  • Payment information - processed and stored by Stripe. We do not store full card numbers on our servers.
  • Content - messages, notes, templates, forms, check-in responses, and any other content you create within the platform.

2.2 Information collected automatically

  • Usage data - pages visited, features used, and interaction patterns via Vercel Analytics and Speed Insights.
  • Device information - browser type, operating system, and device identifiers.
  • Log data - IP addresses, access times, and referring URLs.

2.3 Information from third-party integrations

When you connect third-party services (Stripe, Calendly, Notion, Meta/Instagram/ Facebook/WhatsApp, or others), we may receive data from those services as authorised by your integration settings. This may include:

  • Customer and payment records from Stripe
  • Scheduling and booking data from Calendly
  • Messages and conversation data from Instagram, Facebook Messenger, and WhatsApp
  • Database records from Notion

3. How We Use Your Information

We use the information we collect to:

  • Provide, operate, and maintain the Service
  • Process transactions and send related information (invoices, receipts)
  • Send you administrative communications (account updates, security alerts)
  • Provide customer support
  • Generate AI-powered insights, reports, and content suggestions (processed securely; your data is not used to train AI models)
  • Deliver social messaging features (Instagram DM, Facebook Messenger, WhatsApp)
  • Monitor usage patterns to improve the Service
  • Detect, prevent, and address technical issues or abuse

4. Data Sharing and Disclosure

We do not sell your personal data. We may share information with:

  • Service providers - Clerk (authentication), Stripe (payments), Vercel (hosting and analytics), Neon (database), Resend (email delivery), OpenAI (AI features), and Meta (social messaging) - only to the extent necessary to provide the Service.
  • Legal requirements - if required by law, regulation, legal process, or governmental request.
  • Business transfers - in connection with a merger, acquisition, or sale of assets, your data may be transferred as part of that transaction.

5. Data Security

We implement industry-standard security measures to protect your data:

  • AES-256-GCM encryption for stored integration credentials and sensitive data
  • All data transmitted over HTTPS/TLS
  • Authentication and session management via Clerk with MFA support
  • Multi-tenant data isolation - every database query is scoped by organisation
  • Rate limiting on all mutation endpoints
  • Webhook signature verification for all incoming third-party data
  • Regular security scanning via Codacy and Trivy

While we strive to protect your data, no method of transmission or storage is 100% secure. We cannot guarantee absolute security.

6. Data Retention

We retain your data for as long as your account is active or as needed to provide the Service. If you cancel your subscription:

  • Your data remains accessible for 30 days after cancellation
  • You may export your data (leads, clients, payments) as CSV during this period
  • After 30 days, your data is permanently deleted from our systems

7. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access - request a copy of the personal data we hold about you
  • Rectification - request correction of inaccurate data
  • Erasure - request deletion of your personal data (see our Data Deletion page)
  • Portability - request your data in a machine-readable format
  • Restriction - request that we limit processing of your data
  • Objection - object to processing based on legitimate interests

To exercise any of these rights, contact us at support@revnext.io.

8. Cookies

RevNext uses essential cookies for authentication and session management. We use Vercel Analytics for usage insights, which does not use cookies for tracking. We do not use advertising or third-party tracking cookies.

9. Third-Party Services

Our Service integrates with third-party platforms. Each has its own privacy policy:

10. Children's Privacy

RevNext is not directed at individuals under the age of 16. We do not knowingly collect personal data from children. If you become aware that a child has provided us with personal data, please contact us and we will delete it.

11. International Data Transfers

Your data may be processed in countries other than your own, including the United States (where our hosting and service providers operate). We ensure appropriate safeguards are in place for any such transfers.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the updated policy on this page with a revised "Last updated" date. Your continued use of the Service after changes constitutes acceptance of the updated policy.

13. Contact Us

If you have questions about this Privacy Policy or our data practices, contact us at:

Email: support@revnext.io
Website: revnext.io