Privacy Policy

RevenueProven ("we", "our", "us") is the data controller responsible for processing your information. This Privacy Policy explains how we collect, use, and protect your personal data when you use our website at revenueproven.com and the RevenueProven platform.

We take your privacy seriously and are committed to being transparent about our practices. Please read this policy carefully to understand our views and practices regarding your privacy.

We collect information in the following categories:

• Account Information: Name, email address, company name, password (stored as hash), and optional profile information.
• LinkedIn Ads Data: Campaign names, budgets, performance metrics, company engagement data, audience demographics, and analytics sourced via the LinkedIn Ads API.
• CRM Data: Company names, deal information, pipeline stage, contact lists, and other data from your HubSpot account synced via OAuth integration.
• Payment Information: Billing email, subscription tier, and payment method (processed by Paddle; we do not store card details).
• Usage Data: Pages visited, features used, device type, operating system, browser type, IP address, and interaction timestamps.

We use collected information for the following purposes:

• Providing attribution analytics and campaign insights
• Delivering actionable dashboards and reports
• Processing billing and managing subscriptions
• Providing customer support and responding to inquiries
• Improving our service and user experience
• Detecting, preventing, and addressing security issues
• Complying with legal obligations and regulations

We never sell your personal data to third parties. We do not use personal data for profiling or automated decision-making that produces legal effects.

We may send product updates, feature tips, and occasional promotional messages based on your account activity. All marketing communications are opt-in only.

Every marketing email includes an unsubscribe link, making it easy to opt out at any time. Transactional emails (password resets, billing confirmations, account notifications) are not marketing and are not subject to unsubscribe preferences.

You can manage your communication preferences at any time by logging into your account settings.

RevenueProven uses essential cookies only to maintain session state, authenticate users, and protect against unauthorized access. We do not use third-party advertising cookies or cross-site tracking technologies.

Cookies we use include:

• Session Cookies: Maintain your login session across pages
• Authentication Tokens: Verify your identity securely
• Preference Cookies: Remember your dashboard settings (if applicable)

You can disable cookies in your browser settings, but this may affect platform functionality.

Your personal data is stored on secure, encrypted cloud servers. We retain data according to the following retention schedule:

• Active Account Data: Retained while your account is active
• Sync Data: Retained per your configured sync schedule; older data is automatically archived or deleted according to your retention settings
• Deleted Account Data: Removed from primary systems within 30 days of account deletion
• Backup Retention: Database backups are retained according to our backup policy and purged after the retention period expires

Some data may be retained longer if required by law or for legitimate business purposes (e.g., fraud prevention, dispute resolution).

RevenueProven integrates with third-party services to provide its core functionality. You authorize us to access your data from these services via OAuth connections:

• LinkedIn Ads: Campaign data and company engagement metrics via the LinkedIn Ads API
• HubSpot: Company names, deal information, and pipeline data via HubSpot API
• Paddle: Payment processing and subscription management (we do not store card details)
• Resend: Transactional email delivery (password resets, billing notifications)

All third-party processors are listed in our Data Processing Agreement (DPA). You can disconnect any integration at any time from your account settings, which stops new data syncs but does not delete historical data already stored.

We employ industry-standard security measures to protect your information:

• Token Encryption: OAuth tokens are encrypted using AES-256-GCM before storage
• Data in Transit: All data transmitted between your browser and our servers is encrypted using TLS 1.2 or higher
• Database Access: Restricted to authorized personnel with authentication and audit logging
• Regular Reviews: We conduct periodic security audits and penetration testing
• Incident Response: We maintain procedures to detect and respond to security incidents promptly

For detailed information about our security practices, please review our Data Processing Agreement.

Your personal data may be processed in countries outside your country of residence, including countries that may not have the same data protection laws as your home country.

When we transfer data internationally, we implement appropriate safeguards, including Standard Contractual Clauses (SCCs) where required by law. Details of our data transfer mechanisms and safeguards are available in our Data Processing Agreement.

By using RevenueProven, you consent to the transfer of your information to countries outside your country of residence, as described in this policy.

Depending on your location, you have the following privacy rights:

GDPR Rights (EU/EEA):

• Access your personal data we hold about you
• Rectify inaccurate or incomplete information
• Erasure ("right to be forgotten") under certain conditions
• Restrict processing of your data
• Data portability (export your data in a structured format)
• Object to processing, including for marketing purposes

PDPA Rights (Singapore):

• Access your personal data
• Correct inaccurate personal data
• Withdraw consent to data collection or processing

To exercise any of these rights, contact us at [email protected] with your request and supporting information. We will respond within 30 days.

If you are in the EU/EEA and believe we have violated your privacy rights, you have the right to lodge a complaint with your local supervisory authority.

RevenueProven is not intended for users under the age of 18. We do not knowingly collect personal data from children under 18.

If we become aware that we have collected information from a child under 18, we will delete that information promptly and take steps to remove the child's account from our systems.

If you believe we have collected information from a child under 18, please contact us immediately at [email protected].

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. The "Last updated" date at the top of this page indicates the current version.

If we make material changes to this policy that materially affect your rights or how we use your information, we will notify you via email to the address associated with your account.

Your continued use of RevenueProven after any update to this policy constitutes your acceptance of the updated terms.

If you have questions, concerns, or requests related to your privacy or this Privacy Policy, please contact us:

• Privacy Inquiries: [email protected]
• General Questions: [email protected]

We will respond to all privacy requests within 30 days.