This policy explains what data Revnomiq collects, why we collect it, and how we use and protect it. Please read it carefully before using our service.
1. Who We Are
Revnomiq ("we", "us", "our") is a SaaS platform that helps local businesses automate customer communication via WhatsApp, SMS, and email. Our service is available globally and is operated by Treehouse Consultants.
For privacy matters, contact us at: admin@treehouseconsultants.com
2. The Two Types of Users This Policy Covers
Revnomiq involves two distinct groups of people whose data we handle:
- Business Clients — businesses (salons, clinics, gyms, etc.) that subscribe to Revnomiq and use our platform to manage their operations.
- End Customers — the customers of those businesses, whose contact details are entered into Revnomiq so that automated messages can be sent to them.
This policy applies to both groups. Business clients are responsible for ensuring they have lawful grounds (such as consent) to add their customers' data to Revnomiq.
3. Data We Collect
3.1 From Business Clients
| Data | Why we collect it |
|---|---|
| Full name, email address | Account creation and login |
| Business name, sector, country | Configuring the platform for your business type |
| Phone / WhatsApp number | Communication and onboarding |
| Billing details (via Razorpay or Stripe) | Processing subscription payments |
| WhatsApp Business credentials | Sending messages on your behalf via Meta's API |
| Usage data (logins, actions taken) | Platform security and analytics |
3.2 From End Customers (entered by Business Clients)
| Data | Why it is used |
|---|---|
| Name, phone number | Sending automated follow-ups and reminders |
| Email address | Sending automated emails (where applicable) |
| Transaction or visit history | Triggering the right message at the right time |
| SMS consent flag | Ensuring SMS is only sent to customers who have consented (EU) |
3.3 Automatically Collected Data
- IP address and browser type (for security and abuse prevention)
- Session cookies (to keep you logged in)
- Error logs (to diagnose and fix technical issues)
4. How We Use Your Data
- To provide and operate the Revnomiq platform
- To send automated WhatsApp, SMS, and email messages to end customers on behalf of business clients
- To process subscription payments and generate invoices
- To send service-related communications (e.g. account alerts, billing reminders)
- To improve platform features and fix issues
- To comply with legal obligations
We do not sell your data. We do not use your data or your customers' data for advertising purposes.
5. Third-Party Services We Use
Revnomiq integrates with the following third-party services to deliver its functionality. Each has its own privacy policy.
| Service | Purpose | Data shared |
|---|---|---|
| Meta (WhatsApp Business API) | Sending WhatsApp messages | Recipient phone number, message content |
| Twilio | Sending SMS messages | Recipient phone number, message content |
| SendGrid | Sending email messages | Recipient email address, message content |
| Razorpay | Payment processing (India) | Invoice amount, payment status |
| Stripe | Payment processing (international) | Invoice amount, payment status |
| Supabase | Database and authentication hosting | All platform data, stored securely |
6. Legal Basis for Processing (GDPR)
If you are located in the European Economic Area (EEA) or United Kingdom, we process your personal data under the following legal bases:
- Contract performance — processing necessary to deliver the service you signed up for
- Legitimate interests — platform security, fraud prevention, and service improvement
- Legal obligation — where required by applicable law
- Consent — where you have explicitly provided it (e.g. marketing communications)
Business clients are responsible for identifying their own legal basis for processing their end customers' data within Revnomiq (typically consent or legitimate interests under applicable local law).
7. Data Retention
- Business client account data is retained for the duration of the subscription and for 90 days after account closure, then deleted.
- End customer data entered by business clients is retained as long as the business client's account is active. Clients can delete individual customer records at any time.
- Payment records are retained for 7 years to comply with financial regulations.
- Log data is retained for 90 days.
8. Data Security
We take security seriously. Revnomiq uses the following measures to protect your data:
- All data is encrypted in transit (TLS) and at rest
- Sensitive credentials (e.g. WhatsApp access tokens) are stored in an encrypted vault, not in plaintext
- Access to production systems is restricted to authorised personnel only
- Authentication is handled by Supabase Auth with industry-standard session management
No method of transmission over the internet is 100% secure. While we take every reasonable precaution, we cannot guarantee absolute security.
9. Your Rights
Depending on your location, you may have the following rights regarding your personal data:
- Access — request a copy of the personal data we hold about you
- Correction — request correction of inaccurate data
- Deletion — request deletion of your data ("right to be forgotten")
- Portability — receive your data in a structured, machine-readable format
- Objection — object to certain types of processing
- Withdraw consent — where processing is based on consent, withdraw it at any time
To exercise any of these rights, email us at admin@treehouseconsultants.com. We will respond within 30 days.
If you are an end customer of a business that uses Revnomiq and wish to have your data removed, please contact that business directly. We will action their deletion requests promptly.
10. Cookies
Revnomiq uses a single session cookie to keep you logged into the platform. This cookie is essential for the service to function. We do not use advertising cookies or third-party tracking cookies.
11. International Data Transfers
Revnomiq operates globally. Your data may be processed in countries outside your own, including India and the United States, where our infrastructure providers are based. Where data is transferred from the EEA or UK, we rely on appropriate safeguards such as Standard Contractual Clauses.
12. Children's Privacy
Revnomiq is a business tool not intended for use by individuals under the age of 18. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us and we will delete it promptly.
13. Changes to This Policy
We may update this Privacy Policy from time to time. When we make material changes, we will notify active business clients by email and update the "Last updated" date at the top of this page. Continued use of Revnomiq after changes take effect constitutes acceptance of the updated policy.
14. Contact Us
For any questions, concerns, or requests related to this Privacy Policy:
- Email: admin@treehouseconsultants.com
- Website: revnomiq.com