RevenueCat Privacy Policy
This is the Privacy Policy for the website hosted at https://www.revenuecat.com/ (“our site”), our products and services, and for other RevenueCat activities at which you may provide your personal data, such as sponsored events or trade shows. The site is operated by or on behalf of RevenueCat, Inc. (“we”, ”us”, “our”). We are committed to protecting and respecting your privacy.
This policy (together with our terms of service and any other documents referred to in it) sets out:
Please read the following carefully to understand our views and practices regarding your personal data and how we will treat it. By engaging in our site and services, you acknowledge you have read and understood this privacy policy. To the extent applicable privacy law includes the European Economic Area General Data Protection Regulation, (the “GDPR”) with respect to personal data collected by us, the data controller for purposes of GDPR is: RevenueCat, Inc., 633 Taraval St. Suite 101, San Francisco, CA, 94116.
Our site may, from time to time, contain links to external sites. We are not responsible for the privacy policies or the content of such sites.
Information we collect
We will collect and process the following personal data from you:
If you are using our products or services as a developer, the following information regarding your end users may be received and processed by us:
End User Technical Information, End User Transaction Information, and Optional End User Information are collectively referred to as “End User Information”.
Information we receive from other sources
We may receive other personal data about you:
Cookies and other tracking technologies
Our site uses cookies and/or other similar technologies such as device-IDs, in-app codes, pixel tags or web beacons to collect and store certain information. These typically involve pieces of information or code that a website transfers to or accesses from your computer hard drive or mobile device to store and sometimes track information about you. Cookies and similar technologies enable you to be remembered when using that computer or device to interact with websites and online services and can be used to manage a range of features and content as well as storing searches and presenting personalized content. Our site uses cookies and similar technologies to distinguish you from other users of our site. This helps us to provide you with a good experience when you browse our site and use our service and also allows us to improve our site. Most web browsers automatically accept cookies and similar technologies, but if you prefer, you can change your browser to prevent that and your help screen or manual will tell you how to do this. However, you may not be able to take full advantage of our website if you do so. A number of cookies and similar technologies we use last only for the duration of your web or app session and expire when you close your browser. Others are used to remember you when you return to the site and will last for longer. We use these cookies and other technologies on the basis that they are necessary for the performance of a contract with you, or because using them is in our legitimate interests (where we have considered that these are not overridden by your rights), and, in some cases, where required by law, where you have consented to their use.
How we use your information
Our promotional updates and communications
Where permitted in our legitimate interest or with your prior consent where required by law, we will use your personal information for marketing analysis and to provide you with promotional update communications by email about our products and services. You can object to further marketing at any time by checking and updating your contact details within your account, or selecting the “unsubscribe” link at the end of all our marketing and promotional update communications to you, or by submitting your email address here.
Lawful Bases
We will only collect and process personal data where we have lawful bases. Lawful bases include consent (where you have given consent), contract (where processing is necessary for the performance of a contract with you (e.g. to operate the site or deliver any products or services you have requested) and “legitimate interests”. We rely on our legitimate interests as our lawful basis only where those interests are not overridden by the impact on you (unless we have your consent or our processing is otherwise required or permitted by law). If you have questions about the lawful bases of how we process your personal information, contact us at compliance@revenuecat.com.
Who we share your information with
We may share your information with:
Where we store your information
The data that we collect from you will be stored securely on Amazon Web Services (“AWS”) in the USA.
How We Respond to DNT Signals
Your browser settings may allow you to automatically transmit a Do Not Track signal to websites and other online services you visit. We do not alter our practices when we receive a Do Not Track signal from a visitor’s browser because we do not track our visitors to provide targeted advertising. To find out more about Do Not Track, please visit http://www.allaboutdnt.com.
Public forums
The site may, from time to time, make chat rooms, message boards, news groups and/or other public forums available to its users. Any information that is disclosed in these areas becomes public information and you should exercise caution when using these and avoid posting any personal information.
Child safety
The site is intended for use only by persons who are at least 16 years of age. By using the site, you confirm to us that you meet this requirement. If you are under the age of 16, you confirm you have received permission from your parent or guardian before using this site or sending us personal information.
Payment processing
Payment details you provide will be encrypted using secure sockets layer (SSL) technology before they are submitted to us over the internet. Payments made on the site are made through our payment gateway provider. You will be providing credit or debit card information directly to the operator which operates a secure server to process payment details, encrypting your credit/debit card information and authorizing payment. Information which you supply is not within our control and is subject to the operator’s own privacy policy and terms and conditions.
How we protect your information
Security is one of our biggest priorities at RevenueCat. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our site; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorized access.
How long we keep your information
We retain personal data during any period in which you have expressed an interest in our products and services, for as long as you have an account with us in order to meet our contractual obligations to you, and for six years after that to identify any issues and resolve any legal proceedings. We may also retain aggregate information beyond this time for research purposes and to help us develop and improve our services. You cannot be identified from aggregate information retained or used for these purposes.
EU Citizen Rights Under GDPR
You can also exercise the rights listed above at any time by contacting us at compliance@revenuecat.com. We will respond to your requests within a reasonable timeframe. Please note these rights may be limited in certain circumstances as provided by applicable law.
We would appreciate the opportunity to directly address any GDPR issues you may have. Please contact us at compliance@revenuecat.com. You do, however, have the right to approach your local data protection authority, (see http://ec.europa.eu/justice/data-protection/bodies/authorities/index_en.html for data protection authorities in the EU).
Data processed on behalf of our Customers
RevenueCat may process End User Information on behalf of its customers. We are not the controllers of this data and act as data processors, and have no direct relationship with the individuals or end users whose personal information it processes. The processing of personal data sent from our Customers is governed by our Terms of Use, Data Processing Addendum or any other agreement agreed to and signed by us with our Customers. These agreements cover data transfers to third parties that may occur as part of RevenueCat’s provision of its services to the customer. We will process such data on behalf of the customer as prescribed in the respective agreements between RevenueCat and the customer. The customer’s privacy policy or other agreement between the customer and you (or your organization) will apply to such processing, and not this policy.
If your personal data is processed by RevenueCat on behalf of one of our customers and you wish to discontinue such processing, or if you seek to correct, amend, or delete inaccurate data, please contact the RevenueCat customer (the data controller) directly. The RevenueCat customer should then provide instructions to us, if necessary. If requested to remove data by the data controller we will respond within a reasonable timeframe. We will retain personal information pursuant to our retention policy and will retain this personal information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.
Note to users outside the United States
RevenueCat is based in the United States. The Site and our products and services are controlled and operated by us from the United States and are not intended to subject us to the laws or jurisdiction of any state, country or territory other than that of the United States. Your personal data may be stored and processed in any country where we have facilities or in which we engage service providers, and by using the Services you consent to the transfer of information to countries outside of your country of residence, including the United States, which may have data protection rules that are different from those of your country. In certain circumstances, courts, law enforcement agencies, regulatory agencies or security authorities in those other countries may be entitled to access your personal data.
Changes to this policy
Any changes we make to our privacy policy in future will be posted on this page and, in relation to substantive changes, will be notified to you by email.
Contact Us
Questions, comments and requests regarding this privacy policy are welcomed and should be addressed to:
Compliance Officer
RevenueCat, Inc.
633 Taraval St. Suite 101, San Francisco, CA, 94116
compliance@revenuecat.com