Quick summary: We collect the minimum data needed for Revisy to work, including account data, technical usage data and the content you upload. We do not sell your data. Payments for the Premium plan are processed by Stripe. We use an error-monitoring service that may record sessions to diagnose issues. In the future we may adopt Google Analytics (when applicable, with consent).
1. Controller and contact
Controller: Revisy, a company/project in formation operating from Volta Redonda/RJ, Brazil.
Privacy and support contact: contact@userevisy.com
2. Data we collect
We collect account information such as name and email, profile preferences, audio files, cover images, comments, timestamped notes, voice notes, chat messages, project metadata and support messages. Authentication is handled by Firebase via email/password or Google sign-in; password credentials are handled by the authentication provider and are never stored in plain text on our servers.
Personal API keys: if you generate access keys (e.g., for the desktop app), we store only a hash and a prefix for identification, never the full key. Guest access: when someone joins a room as a guest (without an account), we collect the name/nickname provided and keep a temporary session so they can take part (notes and chat).
We also collect technical data automatically, including IP address, date and time, pages or screens visited, app events, browser and device type, operating system, technical identifiers, crash logs, cookies and local storage used for authentication, security, sessions and preferences. We use an error-monitoring service that logs errors and may record browsing sessions (replay of on-screen interactions) to diagnose failures. We use data such as your IP address to apply security measures and prevent abuse (for example, misuse of the free trial).
Waitlist: if you provide your email to join our waitlist or receive updates on our site, that email is stored by a third-party waitlist provider, used only for that contact.
Desktop app: the Revisy desktop app watches a folder you choose and, when it detects newly exported audio files, uploads them to the service along with optional metadata (e.g., artist and project name). It stores the access key locally on your computer, shows system notifications and updates automatically. It does not access your microphone or camera and collects no analytics.
We do not currently use Google Analytics. If we adopt it in the future, it may collect cookie identifiers, browser and device information, navigation events, interaction data, IP address and approximate location, depending on configuration and consent.
3. How we use data
- To provide and operate the service, including accounts, authentication, collaboration, storage and audio playback.
- To improve features, performance, stability and product experience.
- To send essential communications, security notices and transactional messages.
- To protect accounts, prevent fraud and investigate abuse.
- To comply with legal obligations and respond to valid requests.
- To manage billing and subscriptions for the Premium plan through Stripe.
Marketing emails: we only send marketing communications if you opt in. You can unsubscribe at any time with one click via the link in the email.
4. Sharing of data
We do not sell your data. We share data only when necessary with service providers, described by function: hosting and storage (running the app and storing media), authentication (including Google sign-in), transactional email, payments (Stripe) for the Premium plan, error monitoring (which may record sessions) and a waitlist provider. We may also share data when required by law, court orders, valid requests, fraud prevention or protection of rights and safety.
5. International transfers
Some providers, including Google, Firebase and Stripe, may process data outside Brazil. When this occurs, we use reasonable measures designed to protect the data and rely on mechanisms compatible with applicable data protection laws.
6. Retention and deletion
We keep data for as long as needed to operate the service, maintain your account, comply with legal or regulatory obligations, resolve disputes and enforce security or anti-fraud measures. Project rooms expire based on your plan (about 15 days on Basic and 30 days on Premium), after which room content may be removed. When you request account deletion, we apply a 30-day grace period before permanently removing your data (authentication, database and files). We will remove or anonymize personal data where possible unless retention is legally or legitimately required.
7. Security
We use technical and organizational safeguards, including TLS/SSL encryption in transit, access controls, permission segregation and protected storage. No method is 100% secure, so you should also protect your password and devices.
8. Cookies and similar technologies
Today we only use essential and preference cookies/local storage for authentication, session and security functions and preferences such as theme and language. We do not currently use analytics cookies. If we adopt analytics (e.g., Google Analytics), it will be treated as non-essential and you will be able to accept or reject it through a cookie notice or manager. Browser-level blocking may affect essential features.
9. Your rights
Depending on applicable law, you may request access, correction, deletion, portability and information about sharing. To exercise your rights, contact contact@userevisy.com. We may request identity confirmation for security.
10. Children's privacy
Revisy is not directed to children under 13. If we identify data collected improperly, we will take steps to remove or anonymize it as applicable.
11. Changes to this policy
We may update this Policy. The latest version will be published on this page, and we may notify you by email or inside the platform when changes are material.
Contact
For privacy and data protection questions:
contact@userevisy.com
