Back to Legalprivacy@revenarc.com
Legal

Privacy Policy

Last updated April 30, 2026.

Privacy Policy

Last Updated: April 30, 2026

This Privacy Policy explains how RevenArc LLC (“RevenArc,” “we,” “us,” or “our”) collects, uses, discloses, and protects personal information through our websites, applications, platform, demos, Academy, integrations, analytics, communications, and related services.

RevenArc provides AI-powered revenue intelligence and staff enablement tools for hospitality businesses. Because our Services may process information from customer systems such as PMS, POS, CRM, reservation, and learning platforms, our privacy role depends on context:

  • For website visitors, prospects, business contacts, account administrators, and other direct interactions with RevenArc, we generally act as an independent business or controller.
  • For guest, patron, staff, transaction, performance, and operational information processed on behalf of a customer, RevenArc generally acts as a processor, service provider, or contractor under the customer’s instructions. In that context, the customer’s privacy notice and agreement with RevenArc govern the processing.

If you are a guest, patron, employee, contractor, or other individual of a RevenArc customer and have questions about your information, please contact that customer directly. We will support our customer as required by our agreement and applicable law.

1. Personal Information We Collect

1.1 Information You Provide Directly

We may collect information you provide when you request a demo, contact us, create an account, subscribe, complete forms, communicate with us, use support channels, participate in training, or otherwise interact with RevenArc, including:

  • name, business email, phone number, company, title, role, and contact details;
  • account credentials, user profile information, permissions, and authentication information;
  • billing, subscription, order, and payment-related information;
  • messages, support tickets, feedback, survey responses, and communications;
  • training activity, Academy progress, course completion, certifications, and user preferences;
  • information submitted in forms, chat, demos, onboarding, or sales communications.

1.2 Customer Data Processed Through the Platform

When customers connect hospitality systems to RevenArc, we may process Customer Data on their behalf, including:

  • guest or patron identifiers and contact information;
  • reservation, stay, outlet, order, transaction, folio, menu, service, spa, and guest-journey information;
  • guest preferences, notes, segments, loyalty indicators, and operational context provided by the customer;
  • staff user account information, role, department, training progress, coaching activity, and performance metrics;
  • PMS, POS, CRM, reservation, learning, and integration metadata;
  • reports, dashboards, summaries, and AI-generated insights derived from Customer Data.

Customers are responsible for configuring integrations and limiting data shared with RevenArc to information that is lawful, relevant, and reasonably necessary for the Services.

1.3 Information Collected Automatically

We may automatically collect information when you visit our website or use the Services, including:

  • IP address, device identifiers, browser type, operating system, referring pages, pages viewed, date and time of access, and general location inferred from IP address;
  • log data, usage data, product telemetry, feature usage, error reports, and diagnostic data;
  • cookie, pixel, tag, SDK, or similar tracking information;
  • authentication, access, and security logs.

1.4 Information From Third Parties

We may receive information from customers, Authorized Users, integration partners, service providers, business partners, public sources, data enrichment providers, and third-party platforms that you or a customer authorize.

2. How We Use Personal Information

We use personal information for the following purposes:

  • to provide, operate, maintain, secure, and improve the Services;
  • to configure accounts, integrations, dashboards, reports, and Academy access;
  • to ingest, normalize, analyze, and display PMS, POS, CRM, reservation, training, and operational data;
  • to generate performance insights, revenue opportunities, coaching briefs, reports, training assignments, and other Outputs;
  • to process subscriptions, billing, payments, renewals, and customer administration;
  • to respond to inquiries, support requests, demos, onboarding, and customer communications;
  • to personalize product experience, training paths, and product communications;
  • to monitor performance, prevent fraud, detect security incidents, debug, and protect the Services;
  • to conduct analytics, benchmarking, product research, and product development using aggregated or de-identified data where appropriate;
  • to send marketing communications, product updates, and event information, subject to applicable choices and consent requirements;
  • to comply with law, enforce agreements, resolve disputes, and protect rights, safety, and security.

3. AI and Analytics Processing

RevenArc may use AI Features and analytics to generate insights, recommendations, summaries, training prompts, coaching briefs, reports, chatbot responses, and other Outputs. Outputs are designed to support human decision-making by hospitality teams and should be reviewed by qualified personnel before use.

RevenArc may use third-party AI service providers, including OpenAI, to process prompts, retrieved context, Outputs, and related metadata. Depending on customer configuration and user activity, these materials may include Customer Data or personal information. RevenArc will treat such materials as Customer Data or Customer Personal Data where applicable.

RevenArc does not intend its Services to make solely automated legally significant decisions about individuals. Customers are responsible for ensuring that their use of analytics, staff performance information, coaching recommendations, or AI-generated Outputs complies with employment, privacy, consumer protection, anti-discrimination, automated decision-making, and other applicable laws.

Unless expressly authorized by a customer or stated in an applicable agreement, RevenArc will not intentionally use identifiable Customer Data to train general-purpose AI models made available to other customers.

4. How We Disclose Personal Information

We may disclose personal information as follows:

  • Service providers and subprocessors. We use vendors for hosting, infrastructure, website deployment, analytics, AI inference, support, communications, security, payment processing, product operations, and professional services. Current or expected provider categories may include Railway, OpenAI, Vercel/v0, GitHub, Square where connected by a customer, and confirmed email, payment, support, CRM, analytics, or security vendors.
  • Customer-directed integrations. We disclose information to PMS, POS, CRM, reservation, learning, reporting, spa, payment, or other platforms at the direction of the customer or account administrator.
  • Customers and Authorized Users. Customer administrators and Authorized Users may access Customer Data, dashboards, user activity, training activity, and reports according to their permissions.
  • Professional advisors. We may disclose information to attorneys, accountants, auditors, insurers, bankers, and other professional advisors.
  • Business transactions. We may disclose information in connection with a merger, acquisition, financing, reorganization, sale of assets, bankruptcy, or similar transaction.
  • Legal and safety purposes. We may disclose information to comply with law, legal process, government requests, or to protect rights, property, safety, security, and the integrity of the Services.
  • Aggregated or de-identified information. We may disclose information that does not identify and cannot reasonably be used to identify an individual or customer.

We do not sell Customer Data for money. We do not sell or share Customer Data processed on behalf of customers for cross-context behavioral advertising. If our website uses advertising, analytics, or marketing technologies in a way that constitutes “sale” or “sharing” under applicable privacy law, you may opt out as described below.

5. Cookies and Tracking Technologies

We may use cookies, pixels, tags, local storage, analytics tools, and similar technologies to operate the website and Services, remember preferences, authenticate users, maintain gateway sessions, measure performance, understand usage, improve the Services, and support marketing. These technologies may collect website activity, product telemetry, authentication events, route/product context, browser information, device information, approximate location inferred from IP address, and similar technical data.

RevenArc may use privacy-focused website analytics such as Vercel Web Analytics if enabled. If RevenArc enables advertising pixels, retargeting, CRM tracking, heatmaps, or similar tools, RevenArc will update its cookie disclosures and opt-out mechanisms as required.

You can manage cookies through your browser settings and any cookie preference tool we make available. If required by applicable law, we will honor recognized opt-out preference signals, such as Global Privacy Control, as an opt-out of sale or sharing for the browser or device sending the signal.

Some cookies are necessary for the website, gateway, or Services to function. If you disable necessary cookies, parts of the website or Services may not work properly.

6. Legal Bases for Processing for EEA/UK Users

Where the GDPR, UK GDPR, or similar law applies, we rely on one or more of the following legal bases:

Processing Purpose Legal Basis
Providing the Services, accounts, demos, support, and customer administration Contract or steps prior to contract
Security, fraud prevention, debugging, product improvement, analytics, and business operations Legitimate interests
Marketing emails, non-essential cookies, and certain tracking technologies Consent where required, or legitimate interests where permitted
Billing, tax, compliance, legal requests, and dispute management Legal obligation or legitimate interests
Processing Customer Data on behalf of customers Customer’s documented instructions and applicable data processing terms

You may have rights to access, correct, delete, restrict, object to processing, port your data, and withdraw consent. These rights may be limited by law and by whether RevenArc acts as a controller or processor.

7. Privacy Rights and Choices

Depending on your location and relationship with RevenArc, you may have rights to:

  • request access to personal information;
  • request correction of inaccurate personal information;
  • request deletion of personal information;
  • request a copy or portability of personal information;
  • opt out of sale, sharing, targeted advertising, or certain profiling where applicable;
  • limit the use or disclosure of sensitive personal information where applicable;
  • object to or restrict certain processing;
  • withdraw consent where processing is based on consent;
  • appeal a decision regarding your privacy request where applicable.

To submit a request, contact privacy@revenarc.com. We may need to verify your identity and your authority to make the request. If your request concerns Customer Data processed on behalf of a RevenArc customer, we may refer the request to that customer or act on the customer’s instructions.

You may opt out of marketing emails by using the unsubscribe link in the email or contacting us. Transactional, security, account, and service-related messages may still be sent.

8. California Privacy Rights

California residents should review our CCPA Notice for additional disclosures about categories of personal information collected, purposes of use, categories of disclosure, sale or sharing, sensitive personal information, and California privacy rights.

9. Retention

We retain personal information for as long as reasonably necessary for the purposes described in this Privacy Policy, including to provide the Services, maintain accounts, comply with legal obligations, resolve disputes, enforce agreements, maintain security, and preserve business records.

Customer Data is retained according to the applicable customer agreement, DPA, product settings, deletion instructions, and backup cycles. Aggregated or de-identified information may be retained for legitimate business purposes.

10. Security

We use administrative, technical, and organizational safeguards designed to protect personal information, including access controls, encryption, monitoring, logging, secure development practices, vendor review, and incident response procedures. No system is completely secure, and we cannot guarantee absolute security.

11. International Transfers

RevenArc is based in the United States. Personal information may be processed in the United States and other jurisdictions where we, our service providers, or our customers operate. Where required, we use appropriate transfer mechanisms, contractual protections, and safeguards for international transfers.

12. Children’s Privacy

The Services are not directed to children under 13, and we do not knowingly collect personal information from children under 13. Customers must not submit children’s personal information to the Services unless expressly authorized in writing and legally permitted.

13. Third-Party Links and Services

Our website and Services may link to third-party websites, services, integrations, or platforms. We are not responsible for the privacy practices of third parties. Review their privacy notices before providing information to them.

14. Changes to this Privacy Policy

We may update this Privacy Policy from time to time. The “Last Updated” date indicates when it was last revised. Material changes will be posted on our website or communicated as required by law.

15. Contact

Questions or privacy requests may be sent to:

RevenArc LLC
Email: privacy@revenarc.com

Legal notices may be sent to legal@revenarc.com.