Revial Oy - Privacy Policy

Last updated: 01012025

Data Protection Officer / Contact person: Jone Korpi

Revial Oy ("Revial" / "we") is committed to protecting the privacy of its customers and users and to processing personal data in accordance with the EU General Data Protection Regulation (GDPR), other applicable legislation and good data protection practices.

This Privacy Policy describes what information we collect, the purposes for which we use it, the grounds on which we process it and your rights.

1. Whose data we process

We process personal data from the following categories:

  • Representatives of client companies and potential client companies (e.g.
    sales and marketing staff, management)

  • Representatives of partners

  • Service users (e.g. users of the Revial SaaS tool)

  • Website visitors

  • Participants in trainings, events, webinars, etc.

2. What information we collect

2.1 Basic information

  • Name and contact details (email, phone, address)

  • Employer details (company name, business ID, sector of activity)

  • Position and job title


2.2 Service usage and customer data

  • Usernames and passwords

  • Login and usage history

  • Customer relationship information: subscriptions, licences, billing and payment information,

  • contacts and requests for support

  • Marketing and communication choices


2.3 Data collected from the use of the website and the service

  • Technical
    data collected through cookies and similar technologies: IP address, browser type, operating system,
    terminal identifier.

  • Behavioural data: page views, clicks, form uses

  • Location information at an approximate level (e.g. city/IP address)


2.4 Any information provided voluntarily

  • Additional information provided when registering for events and training courses

  • Feedback and survey responses

  • Special categories of personal data that you have consciously provided (processed only with your consent
    )

3. Where we get your information

  • Directly from you (e.g. registration, forms, contacts)

  • From your employer or organisation (e.g. when the service is launched)

  • Data automatically collected during your use of the Service (cookies and logs)

  • From public sources and business registers

4. What we use your data for

4.1 Implementation of the service

  • Provision of the service and its features

  • Managing user IDs and access rights

  • Support and customer service

4.2 Customer relationship management

  • Billing and payment processing

  • Communication on customer relationship issues

  • Contract management

4.3 Service development and analytics

  • Monitoring and analysing usage to improve the service

  • Interface and content personalisation

4.4 Marketing and communication

  • Direct electronic marketing (only with consent or to the extent permitted by law)

  • Customer communications and newsletters

  • Marketing of events and training


4.5 Data security and prevention of misuse

  • Monitoring of access logs to identify abuses

  • Access management and technical protection

5. Legal grounds for processing

  • Contract: provision of the service and performance of the contract

  • Legitimate interest: customer relationship management, service development,
    marketing to existing customers

  • Consent: electronic direct marketing to new contacts, certain cookies

  • Statutory obligation: accounting, requests from public authorities

6. Cookies and tracking technologies

We use cookies and similar technologies:

  • Necessary cookies: to enable the basic functions of the service

  • Analytical cookies: to analyse and develop the use of the service

  • Marketing exceptions: for targeting content and advertising (only with consent)

  • You can control cookies in your browser settings or in the cookie settings of your service.

7. Disclosure and transfer of data

  • Subcontractors and service providers (e.g. cloud services, payment services)

  • Partners, if necessary for the provision of the service

  • Authorities in situations required by law

  • Transfers outside the EU/EEA only if safeguards are in place in accordance with the GDPR
    (e.g. model contract clauses)

  • We do not sell personal data.

8. Retention periods

  • Customer data: for the duration of the customer relationship + up to 48 months after its termination

  • Marketing lists: for as long as consent is valid or until
    you withdraw it

  • Cookies: typically 24 months

  • Legislation may require longer retention periods (e.g. 6-10 years for accounting records at
    )

9. Rights of the data subject

You have the right:

  • Get access to your data

  • Request rectification or deletion of data

  • Object to processing in certain situations

  • Limit processing

  • Withdraw consent at any time

  • Transfer data from one system to another (in certain cases)

  • File a complaint with the Data Protection Supervisor

10. Information security

We protect personal data with technical and organisational security measures, such as:

  • Firewalls, encryption and access management

  • Only access rights that are necessary for the job

  • Security practices and staff training

11. The joint registry

In some cases, we act as a joint registrar with a partner (e.g. joint events or marketing campaigns). In these situations, we will inform you about the processing of your data.

12. Amendments to this report

We may update this notice in the light of developments in services, changes in legislation or regulatory guidance. The date of the update is shown at the beginning of this document.

13. Contact information

For data protection issues, please contact Jone Korpi, jone at revial.ai, Revial Oy