Skip to content

Privacy policy

Last updated 25 May 2026

Acorn Apps Pty Ltd (ABN 19 695 896 032) trading as Revively (“we”, “us”, “our”) is committed to protecting the privacy of your personal and business information. This Privacy Policy explains how we collect, use, disclose, and safeguard information when you use our multi-tenant studio management platform, mobile applications, and website (www.revively.app).

By creating an account, accessing our services, or interacting with a Revively workspace, you consent to the collection and processing of your data as outlined in this policy. See also our Terms and conditions.

1. Important Distinction: Data Controller vs. Data Processor

To understand your privacy rights on Revively, it is important to distinguish between our two roles in handling information:

  • Revively as a Data Controller: We control the information used to manage your account, billing parameters, platform interactions, and marketing relationships directly with you (the Studio Owner or Staff User).
  • Revively as a Data Processor: For the personal data of your clients (e.g., client names, scheduling histories, waiver forms, notes), you (the Studio Owner) act as the Data Controller. We process this information strictly on your behalf, bound by the multi-tenant isolation rules of our architecture. We do not own, sell, or use your end-clients' data for our own business purposes.

2. Information We Collect

We collect information across three categories depending on how you interact with our platform:

A. Information You Provide to Us Directly

  • Account Registration: Name, email address, password, phone number, business name, and physical studio address.
  • Billing Information: Credit card data and billing details. Note: All credit card data is transmitted securely and directly to our PCI-DSS compliant gateway provider, Stripe; we do not store raw card numbers on our infrastructure.
  • Support Interactions: Information provided when you submit a support ticket, chat with our team, or send inquiries to support@revively.app.

B. Information Automatically Collected

  • System Log Data: IP addresses, browser types, operating systems, access times, and the specific workspaces you visit within our app.
  • Usage Metrics: Features used (e.g., staff configurations, resource allocations), system latency, and API execution tracking to manage your usage ceilings.
  • Cookies & Identifiers: Small tracking files used to keep you securely logged into your master profile across multiple workspace domains without re-authenticating.

C. Information Collected from Third Parties & Public Sources

  • Onboarding Extraction Tool: When initializing your workspace, our automated utility reads and parses public profile configurations (such as your public web rates, durations, and menu items) strictly to pre-populate your service catalog grid.
  • Integrations (Xero): If you opt-in to link your workspace with Xero, we ingest tax rates, customer matching tokens, and invoice status updates required to sync your accounting books.

3. How We Use Your Information

We process personal and operational data based on legitimate business grounds, primarily to provide a synchronized platform experience:

  • To provision, initialize, maintain, and secure your digital workspace.
  • To execute high-priority transactional notification loops (compiling and routing your automated SMS and email confirmations).
  • To process subscription renewals, add-on recalculations, and prorated plan adjustments via Stripe.
  • To monitor system resource capacity limits (tracking active staff seats and room counts against your active tier).
  • To detect, prevent, and mitigate security threats, multi-tenant perimeter breaches, or fraudulent activities.
  • To comply with statutory tax, legal, and financial reporting obligations under Australian law.

4. How We Share and Disclose Data

We do not sell, rent, or trade your personal or business data to third-party data brokers or advertisers. We share your information exclusively with trusted sub-processors necessary to run the platform:

Category of Sub-Processor Primary Purpose Example Providers Used
Cloud Infrastructure Secure database hosting and multi-tenant computing. Railway.com
Payment Gateway Encrypted billing, subscription processing, and portal setup. Stripe
Notification Networks Routing high-volume outbound operational emails and SMS. Twilio / Email delivery provider
Accounting Systems Automated invoice and tax rate ledger syncing (if enabled). Xero
  • Legal Mandates: We may disclose your information if explicitly required to do so by law, court order, or a binding regulatory inquiry issued within New South Wales or Federal Australian jurisdictions.

5. Multi-Tenant Security & Storage

Your data is housed securely within enterprise-grade data centers. Revively utilizes logical application layer isolation barriers to ensure that data assigned to a specific workspace identifier remains entirely hidden from and inaccessible by other tenants using the platform.

Data Retention Window

  • Active Accounts: We retain your account context for as long as your workspace remains in good standing.
  • Expired Trials & Cancelled Plans: If a trial or subscription expires without payment renewal, your workspace drops into a holding state. We securely store this metadata for 30 days as a convenience. After 30 days, we reserve the right to permanently purge configuration settings, staff profiles, and client parameters from our active tables.

6. Your Rights & Choices (Australian Privacy Principles)

Under the Privacy Act 1988 (Cth), you possess clear rights regarding your personal information held by us:

  • Access & Correction: You can access, review, and edit your profile credentials and studio metadata at any time by logging into your settings screen.
  • Data Portability: You can export your client databases, transaction histories, and form configurations directly via standard CSV/JSON export tools in your dashboard.
  • Account Deletion: You may request the permanent closure and destruction of your master user profile by contacting us at support@revively.app.

7. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to mirror regulatory updates or structural modifications to our platform features. When revisions occur, we will modify the “Last Updated” timestamp at the top of this page. For significant modifications that alter your data rights, we will send a distinct alert via your configured system notification channels.

8. Contact & Complaints

If you have questions regarding this Privacy Policy, wish to lodge an inquiry regarding how your information is processed, or believe we have breached the Australian Privacy Principles, please contact our compliance manager:

  • Email: support@revively.app
  • Entity: Acorn Apps Pty Ltd (ABN 19 695 896 032)
  • Mailing Scope: Attn: Privacy Compliance Officer

If you are unsatisfied with our internal response to a privacy dispute, you have the statutory right to escalate the matter to the Office of the Australian Information Commissioner (OAIC) at www.oaic.gov.au.