← Back to Home

    Privacy & GDPR Policy

    Review Revolution — Last Updated: December 1, 2025

    In simple terms:

    We collect minimal data, use it only to provide our services, never sell your data, and give you full control over it.

    1. Introduction

    Review Revolution ("we", "us", "our") is committed to protecting and respecting your privacy. This Privacy & GDPR Policy explains how we collect, use, store, and protect personal data when you use our platform, services, and website.

    We operate in accordance with the General Data Protection Regulation (GDPR) and other applicable data protection laws.

    2. Who We Are

    Review Revolution is a reputation management and AI-powered customer engagement platform designed to help businesses collect, manage, and respond to customer feedback.

    For the purposes of GDPR:

    • Data Controller (Clients): Businesses using our platform
    • Data Processor (Review Revolution): We process data on behalf of our clients

    For platform-related data, we may also act as a Data Controller.

    3. Data We Collect

    3.1 Information Provided by Clients

    • Name, email address, and contact details
    • Business information (company name, location, industry)
    • Account login credentials
    • Billing and payment details

    3.2 End-Customer Data (Processed on Behalf of Clients)

    • Customer name (if provided)
    • Email address or phone number (for rating requests)
    • Feedback, ratings, and review content
    • Interaction data (email opens, clicks, responses)

    3.3 Automatically Collected Data

    • IP address
    • Browser type and device information
    • Usage data (pages visited, actions taken)
    • Cookies and tracking technologies

    4. How We Use Data

    We process personal data for the following purposes:

    • To provide and operate the Review Revolution platform
    • To enable review collection and feedback systems
    • To generate AI-powered responses to reviews
    • To send rating requests via email or SMS
    • To improve system performance and user experience
    • To provide customer support
    • To process payments and manage subscriptions

    We only process data that is necessary to deliver our services.

    5. Legal Basis for Processing

    Under GDPR, we rely on the following legal bases:

    • Contractual Necessity – to deliver services to our clients
    • Legitimate Interest – to improve our platform and services
    • Consent – for sending communications (where required)
    • Legal Obligation – where required by law

    6. AI & Automated Processing

    Review Revolution uses artificial intelligence to generate responses to customer reviews.

    • AI processes review content and related context
    • No unnecessary personal data is stored or reused outside its intended purpose
    • Outputs are designed to remain relevant, accurate, and brand-aligned
    • Clients maintain control over AI usage and configuration

    We do not use personal data to train public AI models.

    7. Data Storage & Security

    We implement appropriate technical and organisational measures to protect personal data, including:

    • Encryption in transit and at rest
    • Secure server infrastructure
    • Role-based access control
    • Internal data protection policies

    While we take all reasonable steps to secure data, no system is completely secure.

    8. Data Retention

    We retain personal data only for as long as necessary to:

    • Provide our services
    • Fulfil contractual obligations
    • Comply with legal requirements

    Clients may request deletion of data at any time (see Section 10).

    9. International Data Transfers

    As a global platform, data may be processed outside the European Economic Area (EEA). Where this occurs, we ensure appropriate safeguards are in place, including:

    • Standard Contractual Clauses (SCCs)
    • Secure infrastructure and trusted providers

    10. Your Rights Under GDPR

    You have the following rights:

    • Right of Access – request a copy of your data
    • Right to Rectification – correct inaccurate data
    • Right to Erasure – request deletion of your data
    • Right to Restrict Processing
    • Right to Object
    • Right to Data Portability

    To exercise any of these rights, contact us at info@reviewrevolution.ai.

    11. Third-Party Processors

    We work with trusted third-party providers to deliver our services, including:

    • Google (review platforms)
    • Email delivery services (Mailgun)
    • SMS gateway providers
    • Payment processors (Xendit, Stripe)
    • Hosting and infrastructure providers (Hostinger)

    All third parties are required to meet appropriate data protection standards.

    12. Cookies & Tracking

    We use cookies and similar technologies to:

    • Improve website functionality
    • Analyse usage and performance
    • Enhance user experience

    Users can control cookie preferences through their browser settings.

    13. Compliance with Review Platforms

    Review Revolution is designed to align with platform policies (e.g., Google):

    • We request honest feedback, not specific ratings
    • We do not manipulate or fabricate reviews
    • We promote ethical and transparent review generation

    14. Data Breach Procedures

    In the unlikely event of a data breach, we will:

    • Investigate and contain the issue promptly
    • Notify affected parties where required
    • Comply with regulatory reporting obligations

    15. Changes to This Policy

    We may update this Privacy & GDPR Policy from time to time. Updates will be posted on this page with a revised "Last Updated" date.

    16. Contact Us

    If you have any questions about this policy or how your data is handled, please contact:

    Email: info@reviewrevolution.ai