Privacy Policy

Last Updated: April 2026

This Privacy Policy explains how IT5 Inc, trading as Revnu ("we", "us", "our"), collects, uses, and protects your personal data when you use the Revnu platform ("the Platform").

We are committed to protecting your privacy and complying with applicable data protection laws, including the General Data Protection Regulation (GDPR), the UK GDPR and the Data Protection Act 2018, and the California Consumer Privacy Act (CCPA).

Data Controller

The data controller for your personal data is:

IT5 Inc (trading as Revnu) Incorporated in Delaware, United States

66 Paul Street, London, England, EC2A 4NA, United Kingdom Email: legal@revnu.app

Data We Collect

Account Information

  • Name, email address, and profile information provided via Clerk authentication

GitHub Data

When Creators connect a GitHub repository, we access:

  • Repository contents (source code, configuration files, assets) to analyze and propose optimizations
  • Branch and pull request metadata
  • We do not store full repository contents permanently — code is accessed on-demand by AI agents to perform specific optimization tasks

Payment Information

  • Subscription and billing information processed via Stripe
  • We do not store credit card numbers; these are handled directly by Stripe

AI Agent Activity Data

  • Agent actions and decisions (content published, tests run, campaigns created)
  • Optimization results and performance metrics
  • Agent configuration and preferences set by Creators

Usage Data

  • Pages visited and features used
  • Timestamps and session information
  • Device and browser information
  • IP addresses

Advertising and Campaign Data

When Creators connect third-party advertising platforms (including LinkedIn, Reddit, Meta, and others as integrated), we collect and process the following data on their behalf:

  • Campaign performance metrics (impressions, clicks, conversions, engagement rates)
  • Ad spend and budget data
  • Audience targeting parameters and audience insights
  • Conversion and attribution data
  • Ad creative performance data
  • Account-level reporting and administrative data

This data is collected solely to provide advertising management, reporting, and optimization services as authorized by Creators. We act as a data processor on behalf of Creators for advertising data obtained from third-party platforms.

SEO and Content Data

  • Published article content and metadata
  • Search ranking and organic traffic data
  • Content performance metrics

Legal Basis for Processing

We process your data under the following legal bases:

  • Contract: To provide the Platform services you've requested, including operating AI agents on your behalf
  • Legitimate Interest: To improve the Platform, train and improve agent performance, prevent fraud, and ensure security
  • Consent: For marketing communications, advertising platform connections, and where otherwise required by law
  • Legal Obligation: To comply with tax, accounting, and regulatory requirements

How We Use Your Data

  • Operating AI growth agents on behalf of Creators (SEO, A/B testing, ads, outreach, competitor monitoring, conversion optimization, retention)
  • Accessing GitHub repositories to analyze code and propose optimizations via pull requests
  • Processing subscription payments via Stripe
  • Managing advertising campaigns, reporting, and optimization via connected third-party advertising platforms
  • Publishing SEO content on Creator domains
  • Sending transactional emails (agent activity summaries, subscription receipts)
  • Providing analytics dashboards and growth reporting
  • Responding to support requests
  • Preventing fraud and abuse
  • Improving the Platform, agent performance, and developing new features
  • Analyzing aggregated and anonymized usage patterns
  • Complying with legal obligations

Third-Party Services

We share data with the following third-party services as necessary to provide the Platform:

GitHub

Repository access for AI agents to analyze code and open pull requests with proposed optimizations. Privacy Policy: https://docs.github.com/en/site-policy/privacy-policies/github-general-privacy-statement

Stripe

Subscription billing and payment processing. Privacy Policy: https://stripe.com/privacy

Clerk

Creator authentication and identity management. Privacy Policy: https://clerk.com/privacy

Anthropic (Claude)

AI model provider powering Revnu's autonomous agents for content generation, optimization, and analysis. Privacy Policy: https://www.anthropic.com/privacy

LinkedIn

LinkedIn Marketing APIs for advertising campaign management, reporting, and optimization on behalf of Creators. We access and process LinkedIn ad account data, campaign performance data, and audience insights as authorized by Creators. We comply with LinkedIn's API Terms of Use and Marketing API Terms, including all applicable data storage and deletion requirements. Privacy Policy: https://www.linkedin.com/legal/privacy-policy

Reddit

Reddit Ads API for advertising campaign management, reporting, and optimization on behalf of Creators. We comply with Reddit's API Terms and advertising policies. Privacy Policy: https://www.reddit.com/policies/privacy-policy

Meta

Meta Marketing APIs for advertising campaign management across Facebook and Instagram on behalf of Creators. We comply with Meta's Platform Terms and advertising policies. Privacy Policy: https://www.facebook.com/privacy/policy/

Convex

Database and backend infrastructure. Privacy Policy: https://www.convex.dev/privacy

PostHog

Product analytics and event tracking. Privacy Policy: https://posthog.com/privacy

Resend

Transactional email delivery. Privacy Policy: https://resend.com/privacy

We may integrate additional third-party services in the future. When we do, this policy will be updated to reflect those integrations.

Advertising Data Handling

Data Processing Role

When processing advertising data from third-party platforms (such as LinkedIn, Reddit, or Meta) on behalf of Creators, we act as a data processor. Creators who connect their advertising accounts authorize our AI agents to access and process their advertising data for the purposes of autonomous campaign management, reporting, and optimization.

Data Storage and Retention

Advertising and campaign data obtained from third-party platforms is retained in accordance with each platform's data storage requirements:

  • Ad account reporting and administrative data: Up to 1 year
  • Campaign performance and analytics data: Up to 1 year
  • Audience and targeting data: Only for the duration necessary to provide the service, subject to platform-specific limits

Data Deletion

We will permanently delete stored advertising data within 10 days if:

  • A Creator ceases to use our advertising management services
  • A Creator requests deletion of their advertising data
  • A third-party platform requests deletion in accordance with their API terms

Creators may request deletion of their advertising data at any time by contacting us at legal@revnu.app.

Consent for Advertising Platform Connections

Before connecting a third-party advertising platform, Creators are informed of:

  • The types of data that will be accessed and processed
  • How AI agents will use the data to manage and optimize campaigns
  • How to disconnect the platform and request deletion of data
  • How to withdraw consent

Creators may disconnect any advertising platform and withdraw consent at any time through their dashboard settings or by contacting us at legal@revnu.app.

GitHub and Source Code Data

What We Access

AI agents access connected GitHub repositories to:

  • Analyze landing pages, onboarding flows, and conversion paths
  • Propose A/B test variants via pull requests
  • Generate and deploy SEO content

What We Do Not Do

  • We do not store complete copies of your repository
  • We do not share your source code with other Creators or third parties
  • We do not use your proprietary code to train AI models
  • Repository access can be revoked at any time by disconnecting your GitHub account

Data Retention

  • Account data: Retained while your account is active, plus 7 years for legal/tax purposes
  • Subscription records: Retained for 7 years as required by law
  • Agent activity logs: Retained for up to 24 months
  • Advertising data: Retained per the Advertising Data Handling section above
  • GitHub access: Active only while the repository is connected; cached analysis data deleted within 30 days of disconnection
  • SEO content: Retained on Creator domains while the account is active; removed upon account termination
  • Usage logs: Retained for up to 12 months
  • Support communications: Retained for 3 years

Your Rights

Under applicable data protection laws (including GDPR, UK GDPR, and CCPA), you have the right to:

Access

Request a copy of the personal data we hold about you.

Rectification

Request correction of inaccurate or incomplete data.

Erasure

Request deletion of your data (subject to legal retention requirements). For advertising data, see the Advertising Data Handling section above.

Restriction

Request that we limit how we use your data.

Portability

Receive your data in a structured, machine-readable format.

Object

Object to processing based on legitimate interests.

Withdraw Consent

Withdraw consent for processing where consent is the legal basis, including consent for third-party platform connections (GitHub, advertising platforms, etc.).

Do Not Sell (CCPA)

We do not sell personal information. If you are a California resident, you have the right to know what personal information is collected and to request its deletion.

To exercise any of these rights, contact us at legal@revnu.app. We will respond within 30 days (or sooner where required by law).

International Transfers

Your data may be transferred to and processed in countries outside the UK and the European Economic Area, including the United States (where IT5 Inc is incorporated and where our service providers operate). We ensure appropriate safeguards are in place, such as Standard Contractual Clauses, to protect your data in accordance with applicable law.

Cookies

We use the following categories of cookies:

Essential Cookies

  • Maintain your session and authentication state
  • Remember your preferences
  • Ensure security

Analytics Cookies

  • Measure how the Platform is used to improve our services
  • Track aggregated usage patterns (via PostHog)

We do not use third-party advertising tracking cookies on the Platform. Advertising data is accessed solely through authenticated API connections authorized by Creators, not through browser-based tracking.

Security

We implement appropriate technical and organizational measures to protect your data, including:

  • Encryption in transit (TLS/HTTPS)
  • Encryption at rest for sensitive data
  • Access controls and authentication
  • Regular security reviews
  • Secure API connections to third-party platforms using OAuth and token-based authentication
  • Scoped repository access permissions (minimum necessary access)

Children

The Platform is not intended for children under 18. We do not knowingly collect data from children under 18.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes via email or Platform notification. Continued use of the Platform after changes constitutes acceptance of the updated policy.

Complaints

If you have concerns about how we handle your data, please contact us at legal@revnu.app.

You also have the right to lodge a complaint with the relevant supervisory authority:

UK: Information Commissioner's Office (ICO) Website: https://ico.org.uk Phone: 0303 123 1113

EU: Your local Data Protection Authority

Contact

For privacy-related questions, contact us at:

IT5 Inc (trading as Revnu) 66 Paul Street, London, England, EC2A 4NA, United Kingdom

UK subsidiary: IT5 Ltd 66 Paul Street, London, England, EC2A 4NA, United Kingdom

Email: legal@revnu.app