Privacy Policy
Last updated: 4 May 2026.
1. Who we are
RevFunnels is operated by RevFunnels Ltd, registered in England and Wales. For data-protection enquiries, email privacy@revfunnels.net. We act as the data controller for the personal data of our account holders, and as a data processor for the leads captured through your funnels.
2. What we collect
Account data: name, email, password hash, plan, billing details (handled by Stripe — we never see card numbers). Usage data: pages you view in the dashboard, funnels you create, AI prompts you submit. Analytics from your published funnels: visitor IP-derived country, device class, page views, form submissions. We do not place cross-site tracking cookies.
3. How we use it
To provide the service (build, host, and serve your funnels). To process payments (via Stripe). To send transactional emails (account confirmation, billing receipts, lead notifications). To improve the product (anonymised usage analytics). We never sell your data.
4. Sub-processors
We use trusted third parties to operate the service: Supabase (database + auth + storage), Stripe (payments), Anthropic and OpenAI (AI generation — your prompts are sent to them under their data-processing agreements), Resend (email delivery), Vercel (hosting). All sub-processors are GDPR-compliant.
5. Your leads
When a visitor submits a form on your funnel, you become the data controller for that lead. We store and serve the data on your behalf. You are responsible for telling your visitors why you collect their data and obtaining consent where required by law.
6. Data retention
Account data is retained while your account is active. After cancellation, we keep account data for 90 days then delete it (sooner on request). Lead data is yours — exportable at any time, deleted within 30 days of account closure unless you ask us to delete it sooner.
7. Your rights (GDPR)
If you are in the UK or EU, you have the right to access, correct, export, restrict, or delete your personal data. Email privacy@revfunnels.net and we will respond within 30 days. You may also lodge a complaint with the ICO.
8. Security
All data is encrypted in transit (HTTPS) and at rest. Passwords are hashed (never stored in plain text). We follow the principle of least privilege internally — only engineers debugging a specific issue can access customer data, and access is logged.
9. Cookies
We use a small number of strictly-necessary cookies for authentication. We do not use advertising or analytics cookies. Your published funnels do not place tracking cookies on visitors unless you explicitly add them.
10. Children
RevFunnels is not intended for users under 16. We do not knowingly collect data from children.
11. Changes
We may update this policy. Material changes are emailed to all registered customers at least 30 days before they take effect.
12. Contact
Privacy questions: privacy@revfunnels.net. Account questions: support@revfunnels.net.