← Back to RevealyAI

Privacy Policy

Last updated: April 21, 2026

1. Who we are

RevealyAI ("we", "our", "us") is a SaaS platform that helps businesses and founders identify and reach their ideal prospects using AI-powered outreach tools. Our service is accessible at revealyai.com.

Contact: contact@revealyai.com

2. Data we collect

  • Account data: name, email address, password (hashed via Supabase Auth).
  • Business ideas & sectors: content you enter into RevealyAI to generate prospect lists.
  • Email integration: if you connect Gmail or Outlook, we access your inbox only to send outreach emails on your behalf. We do not store email content beyond what is necessary for the sending workflow.
  • LinkedIn integration: via Unipile, we access LinkedIn messaging to send connection requests and messages. We do not store private LinkedIn conversations.
  • Billing data: payment is handled by Stripe. We never store your full card number — Stripe processes it directly.
  • Usage data: pages visited, features used, errors — collected anonymously for product improvement.

3. How we use your data

  • Provide and improve the RevealyAI service.
  • Send outreach emails and LinkedIn messages on your behalf.
  • Process payments and manage your subscription.
  • Send transactional emails (receipts, account notifications).
  • Comply with legal obligations.

We do not sell your data to third parties.

4. Third-party services

RevealyAI uses the following sub-processors:

  • Supabase — database & authentication (EU region)
  • OpenAI — AI-generated content (prospect lists, emails)
  • Stripe — payment processing
  • Unipile — LinkedIn & email integrations
  • Google Cloud — Gmail API & Pub/Sub
  • Microsoft Azure — Outlook API
  • Hunter.io — email discovery

5. Data retention

We retain your data for as long as your account is active. Upon account deletion, your personal data is deleted within 30 days, except where retention is required by law (e.g. billing records kept 7 years per French accounting law).

6. Your rights (GDPR)

If you are in the EU/EEA, you have the right to:

  • Access your personal data
  • Rectify inaccurate data
  • Request erasure ("right to be forgotten")
  • Restrict or object to processing
  • Data portability

To exercise any of these rights, email us at contact@revealyai.com. We will respond within 30 days.

7. Cookies

We use only essential cookies required for authentication and session management. We do not use advertising or tracking cookies.

8. Security

All data is transmitted over HTTPS. Database access is protected by row-level security (Supabase RLS). API endpoints are authenticated via JWT tokens. We regularly review our security practices.

9. Changes to this policy

We may update this policy. If changes are material, we will notify you by email or via an in-app notice at least 14 days before the change takes effect.