Privacy Policy

How RevuKit handles your data

Last updated: February 26, 2026

This Privacy Policy explains how RevuKit collects, uses, stores, and shares personal data when you use our website, dashboard, widgets, and related services.

Personal data we collect

  1. Account and identity data: email address, authentication identifiers, premium ID, and subscription status.
  2. Business integration data: business name, Google place ID, and connected domain metadata.
  3. Usage and technical data: page interactions, API events, browser/device information, IP-derived security signals, and abuse-prevention telemetry.
  4. Support data: messages and account requests sent to our support channels.

Lawful bases (GDPR)

  1. Contract: providing widgets, account features, and paid subscription services you request.
  2. Legitimate interests: service security, fraud prevention, reliability, and product operations.
  3. Consent: optional analytics cookies and related analytics processing.
  4. Legal obligations: tax, accounting, and lawful requests.

Cookies and similar technologies

We use strictly necessary cookies/storage for sign-in, security, and core functionality. Optional analytics cookies are disabled by default and only enabled after consent. See the detailed register in our Cookie Policy.

For websites that embed RevuKit widgets, the site owner is responsible for obtaining any required visitor consent before loading third-party widgets or similar technologies in regulated regions.

Third-party review data

To render widgets for our customers, we process limited publicly available review profile data (for example reviewer name and avatar) from third-party platforms. We use this data only to provide the requested widget service and do not resell it.

How we share data

We share data with subprocessors and providers only as needed to operate RevuKit, including payment processing, hosting, authentication, analytics (when consented), and anti-abuse services.

  1. Stripe (billing and subscription management).
  2. Google Firebase (authentication, database, storage, and analytics when consented).
  3. Google reCAPTCHA (security and abuse prevention).
  4. Vercel and related cloud infrastructure providers.

We do not sell personal data.

International transfers

Where personal data is transferred outside your jurisdiction, we rely on appropriate safeguards such as contractual protections and equivalent transfer mechanisms where required.

Retention

We keep personal data only as long as necessary for service delivery, security, legal obligations, and dispute management. Typical retention includes temporary widget cache windows and account records tied to subscription and support history.

Your privacy rights

Depending on your location, you may have rights to access, correct, delete, restrict, object to processing, and request portability of your personal data. You may also withdraw consent for optional analytics at any time.

Contact and complaints

Contact us at support@revukit.com for privacy requests. You may also lodge a complaint with your local data protection authority where applicable.

Contact support