We, and third parties with whom we partner, may use cookies, web beacons, tags, scripts, local shared objects such as HTML5 and Flash (sometimes called “flash cookies”), advertising identifiers (including mobile identifiers such as Apple’s IDFA or Google’s Advertising ID) and similar technology (“Cookies”) in connection with your use of the Service, third party websites, and mobile applications. Cookies may have unique identifiers, and reside, among other places, on your computer or mobile device, in emails we send to you, and on our web pages. Cookies may transmit information about you and your use of the Service, such as your browser type, search preferences, IP address, and the date and time of your use. Cookies may be persistent or stored only during an individual session.

The purposes for which we use Cookies in the Service include:

Intended to make the Service work in the way you expect. For example, we use a Cookie that tells us whether you have already signed up for an account.

Intended to prevent fraud, protect your data from unauthorised parties, and comply with legal requirements. For example, we use Cookies to determine if you are logged in.

Intended to remember information about how you prefer the Service to behave and look. For example, we use a Cookie that tells us whether you have declined to allow us to use your phone’s geolocation data.

Intended to allow or prevent notices of information or options that we think could improve your use of the Service. For example, we use a Cookie that stops us from showing you the signup notification if you have already seen it.

Intended to help us understand how visitors use the Service. For example, we use a Cookie that tells us how our search suggestions correlate to your interactions with the search page.

Managing Cookies: It may be possible to disable some (but not all) Cookies through your device or browser settings, but doing so may affect the functionality of the Service. The method for disabling Cookies may vary by device and browser, but can usually be found in preferences or security settings. For example, iOS and Android devices each have settings which are designed to limit forms of ad tracking. For flash cookies, you can manage your privacy settings by clicking here.

Third parties may receive information about you as follows:

Service Providers: We may rely on third party providers to support or provide some of the services that are available through the Service. We may also rely on third party providers to perform certain services for us in connection with your use of the Service, such as communications and hosting services, network security, technical and customer support, tracking and reporting functions, quality assurance testing, payment processing, our own marketing of the Service, and other functions. We may share information from or about you with these third-party providers so that they can perform their services or complete your requests. These third-party providers may share information with us that they obtain from or about you in connection with providing their services or completing your requests. Third party providers may also share this information with their subsidiaries, joint ventures, or other companies under common control. Some of our web pages utilise framing techniques to serve content to you from our third-party providers, while preserving the look and feel of the Service. In such cases, please note that the information you provide is being provided to the third party.

Aggregate Information: We may share user information in the aggregate with third parties.

Business Transfers: We may share information from or about you with our parent companies, subsidiaries, joint ventures, or other companies under common control, in which case we will require them to honour this Privacy Policy. If another company acquires RevU Online or all or substantially all of our assets, that company will possess the same information, and will assume the rights and obligations with respect to that information as described in this Privacy Policy.

Businesses on RevU Online: We may share information from or about you (such as your age and gender), your submissions to the Service, your devices, and your use of the Service with businesses listed on RevU Online.

Investigations: We may investigate and disclose information from or about you if we have a good faith belief that such investigation or disclosure (a) is reasonably necessary to comply with legal process and law enforcement instructions and orders, such as a search warrant, subpoena, statute, judicial proceeding, or other legal process served on us; (b) is helpful to prevent, investigate, or identify possible wrongdoing in connection with the Service; or (c) protects our rights, reputation, property, or that of our users, affiliates, or the public. If you flag or otherwise complain to RevU Online about content through the Service, we may share the substance of your complaint with the contributor of that content in order to provide an opportunity for the contributor to respond.

Links: The Service may contain links to unaffiliated third-party services. Except as set forth herein, we do not share your personal information with them, and are not responsible for their privacy practices. We suggest you read the privacy policies on or applicable to all such third-party services.

Facebook and Twitter: If you sign up for RevU Online using your Facebook account or link your RevU Online account to your account with a third-party service like Facebook or Twitter, we may receive information about you from such third-party service. We may use this information to help you create your account on RevU Online and connect and share public content with your friends and followers. You can manage how you link your RevU Online account to third party services here. Please note that if you interact with Facebook, Twitter, or other third-party icons through the Service, including “Like,” “Share,” or similar buttons, those companies may collect information about you, such as your device’s IP address. Your interactions with these and other third parties are governed by the third parties’ privacy policies.

We may revise this Privacy Policy from time to time. The most current version of the Privacy Policy will govern our collection, use, and disclosure of information about you and will be located here. If we make material changes to this Privacy Policy, we will notify you by email or by posting a notice on the Service prior to the effective date of the changes. By continuing to access or use the Service after those changes become effective, you agree to the revised Privacy Policy.

1) In effect from 25 May 2018, RevU Online will Process Personal Data in accordance with GDPR (General Data Protection Regulation) requirements. https://www.eugdpr.org/

2) RevU Online is a “processor” by definition of the GDPR.

Definition: A processor is a natural or legal person or agency that processes data on behalf of a controller. “Processing” is defined very broadly in the Directive to include collection, use, storage, manipulation, disclosure, disposal, and virtually any other action with personal data.

The GDPR defines the data controller as the principal party for responsibilities such as collecting consent, managing consent-revoking, and enabling right to access. A data subject who wishes to revoke consent for his or her personal data therefore will contact the data controller to initiate the request.

3) Data Protection Impact Assessment. In effect from 25 May 2018, upon Customer’s request, RevU Online (processor) shall provide Customer with reasonable cooperation and assistance needed to fulfil Customer’s obligation under the GDPR to carry out a data protection impact assessment related to Customer’s use of the Services, to the extent Customer does not otherwise have access to the relevant information, and to the extent such information is available to RevU Online.

4) RevU Online shall return Customer Data to Customer and, to the extent allowed by applicable law, delete Customer Data in accordance with the procedures and timeframes specified by the GDPR.

5) Notification of Sub-processors and Objection Right for New Sub-processors. Customer acknowledges and expressly agrees that RevU Online does engage with Sub-processors and that RevU Online may engage in new Sub-processors at any time. All current Sub-processors have expressed their intention to be GDPR compliant by May 25th. List of current Sub-processors: SendGrid for Email delivery, Twilio for SMS delivery, Amazon AWS for data storage, Paypal Pro for payment processing, Campaign Monitor for Welcome and Marketing emails.

6) RevU Online maintains security incident management policies and procedures and shall notify Customer without undue delay after becoming aware of the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to Customer Data, including Personal Data, transmitted, stored or otherwise Processed by RevU Online or its Sub-processors of which RevU Online becomes aware (a “Customer Data Incident”).

RevU Online shall make reasonable endeavours to identify the cause of such Customer Data Incident and take those steps as RevU Online deems necessary and reasonable in order to remediate the cause of such a Customer Data Incident to the extent the remediation is within RevU Online’s reasonable control. The obligations herein shall not apply to incidents that are caused by Customer or Customer’s Users.

7) Information collected by Account Owners and Users. Account owners and Users can store data that may contain Personal information in “Customer Notes”, “JobID”, “ExtraField” and “CustomField”. RevU Online has no direct relationship with the individuals whose Personal Data it hosts as part of those entry fields. Each Account owner is responsible for providing notice to its customers and third persons concerning the purpose for which the Personal Data is stored and how this Personal Data is processed.

8) Information collected by RevU Online. RevU Online collects the name, email address, mailing address, mobile phone number, and credit card information upon signup. RevU Online uses this information for administrative purposes and billing. RevU Online may also use the information to understand and analyse usage and preferences in order to improve the product and functionality. Data is only used in anonymized or aggregated form.

9) In compliance with GDPR Article 37 RevU Online has a designated DPO available for inquiries from data subjects on issues relating to data protection practices, withdrawal of consent, the right to be forgotten, and related rights. Please contact dpo@revuonline.com. Please also visit our GDPR help guide.