Privacy Policy

Effective Date: June 6, 2025
Last Updated: June 6, 2025

Introduction

This Privacy Notice for Revealio.ai (“we,” “us,” or “our”) describes how and why we might access, collect, store, use, and/or share (“process”) your personal information when you use our AI-powered market research services (“Services”), including when you:

• Visit our website at revealio.ai
• Use our survey platform and data collection tools
• Participate in surveys, interviews, or research studies
• Access our AI-powered analytics and insights platform
• Engage with us in other related ways, including sales, marketing, or events

Questions or concerns? Reading this Privacy Notice will help you understand your privacy rights and choices. We are responsible for making decisions about how your personal information is processed. If you do not agree with our policies and practices, please do not use our Services. If you still have any questions or concerns, please contact us at privacy@revealio.ai.

Table of Contents

1. Summary of Key Points
2. What Information Do We Collect?
3. How Do We Process Your Information?
4. What Legal Bases Do We Rely On?
5. When and With Whom Do We Share Your Personal Information?
6. Do We Use Cookies and Other Tracking Technologies?
7. How Long Do We Keep Your Information?
8. How Do We Keep Your Information Safe?
9. Do We Collect Information from Minors?
10. What Are Your Privacy Rights?
11. Controls for Do-Not-Track Features
12. Do United States Residents Have Specific Privacy Rights?
13. Do We Make Updates to This Notice?
14. How Can You Contact Us About This Notice?

1. Summary of Key Points

This summary provides key points from our Privacy Notice, but you can find out more details about any of these topics by clicking the link following each key point or by using our table of contents above to find the section you are looking for.

What personal information do we process? When you visit, use, or navigate our Services, we may process personal information depending on how you interact with us and the Services, the choices you make, and the products and features you use. Learn more about personal information you disclose to us.

Do we process any sensitive personal information? We may process sensitive personal information when necessary for our research services and with appropriate consent. Learn more about sensitive information we process.

Do we collect any information from third parties? We may collect information from third parties for research purposes, including public databases, social media platforms, and data providers. Learn more about information collected from other sources.

How do we process your information? We process your information to provide, improve, and administer our AI-powered market research Services, communicate with you, for security and fraud prevention, and to comply with law. We may also process your information for other purposes with your consent. Learn more about how we process your information.

In what situations and with which parties do we share personal information? We may share information in specific situations and with specific third parties, including research clients (with appropriate anonymization), service providers, and when required by law. Learn more about when and with whom we share your personal information.

How do we keep your information safe? We have adequate organizational and technical processes and procedures in place to protect your personal information, including encryption, access controls, and regular security audits. However, no electronic transmission over the internet or information storage technology can be guaranteed to be 100% secure. Learn more about how we keep your information safe.

What are your rights? Depending on where you are located geographically, the applicable privacy law may mean you have certain rights regarding your personal information, including rights to access, delete, correct, and opt-out of processing. Learn more about your privacy rights.

How do you exercise your rights? The easiest way to exercise your rights is by contacting us at privacy@revealio.ai or through our privacy request portal. We will consider and act upon any request in accordance with applicable data protection laws.

2. What Information Do We Collect?

In Short: We collect personal information that you provide to us, information automatically collected when you use our Services, and information from third parties for research purposes.

Personal Information Provided by You

The personal information that we collect depends on the context of your interactions with us and the Services, the choices you make, and the products and features you use. The personal information we collect may include the following:

• Contact Information: Names, email addresses, phone numbers, mailing addresses
• Account Credentials: Usernames, passwords, security questions and answers
• Professional Information: Job titles, company names, industry information
• Survey and Research Data: Responses to surveys, interviews, and research studies
• Demographic Information: Age, gender, location, income level, education (when relevant to research)
• Preferences and Opinions: Market preferences, brand opinions, consumer behavior data
• Payment Information: Billing addresses, credit card information (processed securely through third-party providers)
• Communication Data: Messages, feedback, and correspondence with us

Information Automatically Collected

We automatically collect certain information when you visit, use, or navigate the Services. This information does not reveal your specific identity but may include device and usage information, such as:

• Technical Data: IP addresses, browser type, device type, operating system
• Usage Data: Pages visited, time spent on pages, click patterns, feature usage
• Analytics Data: Session recordings, heatmaps, user journey analysis
• Performance Data: Response times, error rates, system performance metrics

Information Collected from Third Parties

We may collect information from third parties for research and analytics purposes, including:

• Public Data Sources: Social media platforms, public databases, government records
• Data Providers: Market research data, demographic databases, consumer panels
• Research Partners: Collaborative research data, industry studies
• Client Data: Information provided by clients for research projects (with appropriate consent)

Sensitive Information

We may process sensitive personal information when necessary for our research services, including:

• Biometric Data: Voice recordings, behavioral patterns (for specific research studies)
• Health Data: Health-related survey responses (for healthcare market research)
• Political Opinions: Voting preferences, political affiliations (for political research)
• Racial/Ethnic Data: Demographic information for market segmentation

We only process sensitive information when we have obtained your explicit consent or when permitted by applicable law for research purposes.

3. How Do We Process Your Information?

In Short: We process your information to provide, improve, and administer our AI-powered market research Services, communicate with you, for security and fraud prevention, and to comply with law.

We process your personal information for a variety of reasons, depending on how you interact with our Services, including:

Core Service Delivery

• Survey Administration: Creating, distributing, and managing surveys and research studies
• AI Analytics: Applying artificial intelligence and machine learning to analyze data and generate insights
• Data Visualization: Creating reports, dashboards, and presentations of research findings
• Client Services: Providing research results and insights to our clients

Account and User Management

• Account Creation and Authentication: Enabling you to create and log in to your account
• User Support: Providing customer service and technical support
• User Communication: Sending service updates, research invitations, and administrative information

Platform Improvement

• Service Enhancement: Improving our AI algorithms, survey tools, and analytics capabilities
• Quality Assurance: Monitoring data quality and research methodology
• Innovation: Developing new features and research methodologies

Business Operations

• Marketing and Sales: Promoting our services and identifying potential clients
• Legal Compliance: Meeting regulatory requirements and legal obligations
• Security: Protecting against fraud, unauthorized access, and security threats

Research and Development

• Market Research: Conducting studies to understand market trends and consumer behavior
• Product Development: Improving our AI-powered research tools and methodologies
• Academic Research: Contributing to academic and industry research (with appropriate anonymization)

4. What Legal Bases Do We Rely On to Process Your Information?

In Short: We only process your personal information when we believe it is necessary and we have a valid legal reason (i.e., legal basis) to do so under applicable law.

For EU/UK Residents (GDPR)

We may rely on the following legal bases to process your personal information:

• Consent: When you have given us specific permission to process your personal information for a specific purpose
• Contract: When processing is necessary for the performance of a contract with you or to take steps prior to entering into a contract
• Legitimate Interests: When processing is necessary for our legitimate business interests, such as improving our services, marketing, or fraud prevention
• Legal Obligation: When processing is required to comply with applicable laws and regulations
• Vital Interests: When processing is necessary to protect vital interests of individuals

For Canadian Residents

We may process your information if you have given us specific permission (express consent) or in situations where your permission can be inferred (implied consent). You can withdraw your consent at any time.

For All Other Jurisdictions

We process your information based on your consent, our legitimate business interests, or as necessary to provide our services and comply with applicable laws.

5. When and With Whom Do We Share Your Personal Information?

In Short: We may share information in specific situations described in this section and/or with the following categories of third parties.

Service Providers

We may share your personal information with third-party vendors, service providers, contractors, or agents who perform services for us, including:

• Cloud Hosting Providers: For data storage and processing
• AI and Analytics Providers: For advanced data analysis and machine learning
• Survey Platform Providers: For survey distribution and data collection
• Payment Processors: For secure payment processing
• Communication Providers: For email, SMS, and other communications
• Security Providers: For fraud detection and cybersecurity

Research Clients

We may share aggregated, anonymized, or pseudonymized research data with our clients, including:

• Market Research Reports: Aggregated insights and trends
• Survey Results: Anonymized response data and analytics
• Demographic Analysis: Population-level insights and patterns

Legal and Compliance

We may disclose your personal information when required by law or to:

• Government Agencies: When required by legal process or regulatory requirements
• Law Enforcement: When necessary to investigate potential violations of law
• Legal Proceedings: In connection with litigation or legal disputes
• Regulatory Bodies: For compliance with industry regulations

Business Transfers

We may share or transfer your personal information in connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business.

Research Partners

We may share information with academic institutions and research organizations for collaborative studies, always with appropriate data protection measures.

6. Do We Use Cookies and Other Tracking Technologies?

In Short: We may use cookies and other tracking technologies to collect and store your information.

We may use cookies and similar tracking technologies (like web beacons and pixels) to access or store information. Specific information about how we use such technologies and how you can refuse certain cookies is set out in our Cookie Notice.

Types of Cookies We Use

• Essential Cookies: Required for basic website functionality
• Analytics Cookies: Help us understand how visitors interact with our website
• Functional Cookies: Enable enhanced functionality and personalization
• Marketing Cookies: Used to track visitors across websites for advertising purposes

Your Cookie Choices

You can set your browser to refuse all or some browser cookies, or to alert you when websites set or access cookies. If you disable or refuse cookies, please note that some parts of our Services may become inaccessible or not function properly.

7. How Long Do We Keep Your Information?

In Short: We keep your information for as long as necessary to fulfill the purposes outlined in this Privacy Notice unless otherwise required by law.

We will only keep your personal information for as long as it is necessary for the purposes set out in this Privacy Notice, unless a longer retention period is required or permitted by law. The retention period depends on the type of information and the purpose for which it was collected:

• Account Information: Retained while your account is active and for up to 3 years after account closure
• Survey Response Data: Retained for the duration of the research project and up to 7 years for longitudinal studies
• Analytics Data: Typically retained for 2-3 years for trend analysis
• Communication Records: Retained for up to 3 years for customer service purposes
• Legal and Compliance Data: Retained as required by applicable laws and regulations

When we have no ongoing legitimate business need to process your personal information, we will either delete or anonymize such information, or, if this is not possible, we will securely store your personal information and isolate it from any further processing until deletion is possible.

8. How Do We Keep Your Information Safe?

In Short: We aim to protect your personal information through a system of organizational and technical security measures.

We have implemented appropriate and reasonable technical and organizational security measures designed to protect the security of any personal information we process, including:

Technical Measures

• Encryption: Data encryption in transit and at rest using industry-standard protocols
• Access Controls: Role-based access controls and multi-factor authentication
• Network Security: Firewalls, intrusion detection systems, and secure networks
• Data Backup: Regular backups with secure storage and recovery procedures

Organizational Measures

• Privacy Training: Regular training for employees on data protection and privacy
• Data Minimization: Collecting only the information necessary for our services
• Vendor Management: Due diligence and contractual protections for third-party providers
• Incident Response: Procedures for detecting, reporting, and responding to security incidents

Compliance Certifications

We maintain compliance with relevant security standards and regulations, including SOC 2, ISO 27001, and industry-specific requirements.

However, despite our safeguards and efforts to secure your information, no electronic transmission over the Internet or information storage technology can be guaranteed to be 100% secure, so we cannot promise or guarantee that hackers, cybercriminals, or other unauthorized third parties will not be able to defeat our security and improperly collect, access, steal, or modify your information.

9. Do We Collect Information from Minors?

In Short: We do not knowingly collect data from or market to children under 18 years of age without appropriate consent.

We do not knowingly collect, solicit data from, or market to children under 18 years of age, nor do we knowingly sell such personal information. When we do collect information from minors for research purposes, we obtain appropriate consent from parents or guardians as required by applicable law.

By using the Services, you represent that you are at least 18 or that you are the parent or guardian of such a minor and consent to such minor dependent’s use of the Services. If we learn that personal information from users less than 18 years of age has been collected without proper consent, we will deactivate the account and take reasonable measures to promptly delete such data from our records.

10. What Are Your Privacy Rights?

In Short: Depending on your location, you have rights that allow you greater access to and control over your personal information.

Rights for EU/UK Residents (GDPR)

If you are located in the EU or UK, you have the following rights:

• Right of Access: Request access to and obtain a copy of your personal information
• Right to Rectification: Request correction of inaccurate or incomplete personal information
• Right to Erasure: Request deletion of your personal information
• Right to Restrict Processing: Request restriction of processing of your personal information
• Right to Data Portability: Request transfer of your personal information to another service
• Right to Object: Object to our processing of your personal information
• Right to Withdraw Consent: Withdraw your consent at any time

Rights for California Residents (CCPA/CPRA)

If you are a California resident, you have the following rights:

• Right to Know: Request information about the categories and specific pieces of personal information we collect
• Right to Delete: Request deletion of your personal information
• Right to Correct: Request correction of inaccurate personal information
• Right to Opt-Out: Opt-out of the sale or sharing of your personal information
• Right to Limit: Limit the use of your sensitive personal information
• Right to Non-Discrimination: Not receive discriminatory treatment for exercising your privacy rights

Rights for Other Jurisdictions

Depending on your location, you may have additional rights under applicable privacy laws. Please contact us to learn more about your specific rights.

How to Exercise Your Rights

To exercise your privacy rights, please:

• Email us at privacy@revealio.ai
• Use our privacy request portal at revealio.ai/privacy-requests
• Contact us using the information provided in the “How Can You Contact Us” section

We will consider and act upon any request in accordance with applicable data protection laws. We may need to verify your identity before processing your request.

11. Controls for Do-Not-Track Features

Most web browsers and some mobile operating systems and mobile applications include a Do-Not-Track (“DNT”) feature or setting you can activate to signal your privacy preference not to have data about your online browsing activities monitored and collected.

At this stage, no uniform technology standard for recognizing and implementing DNT signals has been finalized. As such, we do not currently respond to DNT browser signals or any other mechanism that automatically communicates your choice not to be tracked online. If a standard for online tracking is adopted that we must follow in the future, we will inform you about that practice in a revised version of this Privacy Notice.

12. Do United States Residents Have Specific Privacy Rights?

In Short: If you are a resident of certain US states, you may have the right to request access to and receive details about the personal information we maintain about you and how we have processed it, correct inaccuracies, get a copy of, or delete your personal information.

State Privacy Laws

We comply with applicable state privacy laws, including but not limited to:

• California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA)
• Virginia Consumer Data Protection Act (VCDPA)
• Colorado Privacy Act (CPA)
• Connecticut Data Privacy Act (CTDPA)
• Utah Consumer Privacy Act (UCPA)

Categories of Personal Information Collected

In the past twelve (12) months, we have collected the following categories of personal information:

Category	Examples	Collected
A. Identifiers	Real name, alias, postal address, unique personal identifier, online identifier, Internet Protocol address, email address, and account name	YES
B. Personal information categories listed in the California Customer Records statute	Name, contact information, education, employment, employment history, and financial information	YES
C. Protected classification characteristics under California or federal law	Age, race, color, ancestry, national origin, citizenship, religion or creed, marital status, medical condition, physical or mental disability, sex, sexual orientation, veteran or military status, genetic information	YES (for research purposes only)
D. Commercial information	Transaction information, purchase history, financial details, and payment information	YES
E. Biometric information	Genetic, physiological, behavioral, and biological characteristics	YES (for specific research studies with consent)
F. Internet or other similar network activity	Browsing history, search history, information on a consumer's interaction with a website, application, or advertisement	YES
G. Geolocation data	Physical location or movements	YES (when relevant to research)
H. Sensory data	Audio, electronic, visual, thermal, olfactory, or similar information	YES (for research purposes with consent)
I. Professional or employment-related information	Current or past job history or performance evaluations	YES
J. Non-public education information	Education records directly related to a student	NO
K. Inferences drawn from other personal information	Profile reflecting a person's preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes	YES

Your Rights and Choices

You have the right to:

• Request Disclosure: Know what personal information we have collected about you
• Request Deletion: Delete personal information we have collected from you
• Request Correction: Correct inaccurate personal information
• Opt-Out of Sale/Sharing: Opt-out of the sale or sharing of your personal information
• Non-Discrimination: Not receive discriminatory treatment for exercising your privacy rights

How to Exercise Your Rights

To exercise these rights, you can:

• Submit a request online at revealio.ai/privacy-requests
• Email us at privacy@revealio.ai
• Call us at +1 (555) 123-4567

We will verify your identity before processing your request and respond within the timeframes required by applicable law.

13. Do We Make Updates to This Notice?

In Short: Yes, we will update this notice as necessary to stay compliant with relevant laws.

We may update this Privacy Notice from time to time. The updated version will be indicated by an updated “Revised” date and the updated version will be effective as soon as it is accessible. If we make material changes to this Privacy Notice, we may notify you either by prominently posting a notice of such changes or by directly sending you a notification. We encourage you to review this Privacy Notice frequently to be informed of how we are protecting your information.

14. How Can You Contact Us About This Notice?

If you have questions or comments about this notice, you may contact us by:

Email: privacy@revealio.ai

Postal Address:
Revealio.ai
Attn: Privacy Officer
[Company Address]
[City, State, ZIP Code]

Phone: +1 (555) 123-4567

Online: revealio.ai/contact

Data Protection Officer

For EU/UK residents, you may contact our Data Protection Officer at:

Email: dpo@revealio.ai

Privacy Request Portal

To exercise your privacy rights or submit privacy-related requests:

Portal: revealio.ai/privacy-requests

---

Based on the applicable laws of your country, state, or province of residence, you may have the right to request access to the personal information we collect from you, change that information, or delete it. To request to review, update, or delete your personal information, please visit our privacy request portal or contact us using the information provided above.

Last Updated: June 6, 2025
Effective Date: June 6, 2025

© 2025 Revealio.ai. All rights reserved.