How Geopolitics Are Rewiring Manufacturing Operations Learn more
Effective Date: April 17, 2026
This Privacy Policy is issued on behalf of Revalize, Inc. and its affiliates (the “Revalize Group”). Accordingly, references to “Revalize,” “we,” “us,” or “our” in this Privacy Policy refer to the relevant Revalize Group entity responsible for the processing of your Personal Data.
Revalize respects your privacy and is committed to protecting your Personal Data. This Privacy Policy will inform you as to how we protect your Personal Data and tell you about your privacy rights and how the law protects you.
This Privacy Policy explains how Revalize collects and processes your Personal Data, including information you provide through this website, such as when you subscribe to our newsletter, purchase a product or service, or use our services, as well as information we collect directly from you (for example, in person, by telephone, or by email) or obtain from third parties.
It is important that you read this Privacy Policy together with any other policy we may provide on specific occasions when we are collecting or processing Personal Data about you so that you are fully aware of how and why we are using your data. This Privacy Policy supplements other notices and privacy policies and is not intended to override them.
This Privacy Policy does not apply to the extent we process your Personal Data in the role of a processor or service provider on behalf of our customers. For those applying for work with us, refer to our Candidate Privacy Notice.
Revalize products and services are intended for use by organizations and are made available to you through the organization with which you are affiliated. Your use of Revalize products and services may be subject to your organization’s internal policies and practices. Where your organization administers your access to and use of the Revalize products and services, any questions or requests relating to privacy or data protection should be directed to your organization’s administrator. Revalize is not responsible for the privacy or security practices of its customers, which may differ from those described in this Privacy Policy.
If you access Revalize products or services using an email address provided by your organization (for example, your employer), the organization that controls the domain associated with that email address may have the ability to administer your account and to access, process, and manage data associated with your use of the services, including the content of your communications and files, in accordance with its own policies and applicable law.
Revalize is comprised of multiple business and legal entities operating under various brands, including ACATEC, APEX, Attania, AutoQuotes, BCA Technologies, Configure One, Engineered Software, FPX, Imperial, Intelliquip, Lead Method, PROCAD/ProFile, Spec Page, Sofon, and Tenado, as updated from time to time.
The specific Revalize entity acting as controller of your Personal Data will be identified at the time you purchase or otherwise contract for a product or service. Revalize, Inc. is the controller and is responsible for the operation of this website.
For the purposes of the EU General Data Protection Regulation and the UK GDPR (together, “GDPR”), as well as other applicable data protection laws, Revalize acts as the Data Controller with respect to Personal Data collected and processed through this website. The applicable Revalize entity acts as the Data Controller for Personal Data collected offline. Revalize may share Personal Data within the Revalize Group where necessary to fulfill your requests or provide services.
Where Revalize processes Personal Data on behalf of its business customers in the provision of products or services, the applicable Revalize entity acts as a data processor (or service provider, as applicable), and the customer remains the Data Controller with respect to such processing.
We have appointed a data privacy director who is responsible for overseeing questions in relation to this Privacy Policy. Under applicable national data protection laws, certain companies in the Revalize Group have appointed a data protection officer. If you have any questions about this Privacy Policy, including any requests to exercise your legal rights, please contact the data privacy director or data protection officer using the details set out below. The data privacy director will direct questions to the data protection officer as appropriate.
Revalize Group
Revalize Group
50 N Laura St. Suite 2500,
Jacksonville, FL 32202 USA
dpo@revalizesoftware.com
Data Protection Officer (Germany):
Julian Höppner
JBB Data Consult GmbH
Friedrichstraße 95, 10117 Berlin Germany
dpo@revalizesoftware.com
This website may contain links to third-party websites, plugins, or applications. If you click on those links or enable such connections, third parties may collect or share Personal Data about you. Revalize does not control these third-party websites or applications and is not responsible for their privacy practices or content. When you leave our website, we encourage you to review the privacy policy of every website or service you visit.
“Personal Data” or “Personal Information” means any information relating to an identified or identifiable individual. It does not include information that has been anonymized such that the individual can no longer be identified.
We may collect, use, store, and otherwise process different categories of Personal Data about you, which we have grouped as follows:
Identity data includes title, first name, last name, username or similar identifier
Contact data includes billing address, delivery address, email address and telephone numbers, postal address
Technical data includes internet protocol (IP) address, your login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, device identifiers and other technology on the devices you use to access this website
Profile data includes your username and password, purchases or orders made by you, preferences, feedback and survey responses, questions and information you send to us
Usage data includes information about how you use our websites, products and services
Marketing & Communications data includes your preferences in receiving marketing from us and our third parties and your communication preferences.
Financial data includes bank account and payment card details
Transaction data includes details about payments to and from you and other details of products and services you have purchased from us
Chat & Support data Includes your contact information and the content or metadata associated with any chat or other customer support interactions
Telephone conversations with us and chat sessions with our customer service representatives may be monitored and recorded.
We also collect, use and share Aggregated Data such as statistical or demographic data for any purpose. Aggregated Data could be derived from your Personal Data but is not considered Personal Data in law as this data will not directly or indirectly reveal your identity. For example, we may aggregate your Usage Data to calculate the percentage of users accessing a specific website feature. However, if we combine or connect Aggregated Data with your Personal Data so that it can directly or indirectly identify you, we treat the combined data as Personal Data which will be used in accordance with this Privacy Policy.
Except as expressly noted above, we do not collect any Special Categories of Personal Data about you (this includes details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health, and genetic and biometric data). Nor do we collect any information about criminal convictions and offences.
Our websites, products and services are not intended for or targeted to children, and we do not knowingly or intentionally collect Personal Data about children. If you believe that we have collected Personal Data about a child, please contact us (see contact details above) so that we may delete the information.
Where we are required by law, or under the terms of a contract with you, to collect Personal Data and you fail to provide such data when requested, we may be unable to perform the contract we have entered into or are seeking to enter into with you (for example, to provide products or services). In such cases, we may be required to suspend or cancel the relevant product or service, and we will inform you accordingly at the time.
We use different methods to collect Personal Data from and about you, including the following:
Direct interactions. You may provide us with Identity, Contact, Financial Marketing & Communication and Chat & Support data by completing forms or by corresponding with us by post, telephone, email, chatbot, or otherwise. This includes Personal Data you provide when you apply for our products or services, create an account on our website, subscribe to our services or publications, request marketing communications, participate in surveys, provide feedback, or otherwise contact us.
Interactions with your employer. Where your employer is a customer or partner of Revalize, your employer may provide us with your contact information as necessary to enable the provision of Revalize products or services. We may also collect Personal Data where you or your employer is a customer of a business that we acquire. In addition, we may collect information about you via CCTV or other security systems when you visit our premises, as part of our security and crime prevention measures. Our websites may also collect information about your visits through the use of cookies or similar technologies, without you actively submitting such information.
Automated technologies or interactions. As you interact with our websites, we may automatically collect Technical data about your equipment, browsing actions, and usage patterns. We collect this data through cookies, server logs, and similar technologies. Further information about our use of cookies is set out in Section 4 below.
Third parties or publicly available sources. We may receive Personal Data about you from third parties, including Technical data from analytics providers (such as Google), advertising networks (such as Google, LinkedIn, and Facebook), and search information providers (such as 6Sense, Intentify, and Bluewhale). We may also receive Identity and Contact data from data brokers or aggregators (such as LinkedIn and ZoomInfo), as well as from publicly available sources, in each case to the extent permitted by applicable law
We will only use your Personal Data when the law allows us to. Most commonly, we will use your Personal Data where we need to perform the contract we are about to enter into or have entered into with you, or where it is necessary for our Legitimate Interests (or those of a third party) and your interests and fundamental rights do not override those interests, or where we need to comply with a legal obligation.
The types of lawful basis that we will rely on to process your Personal Data are explained below:
Legitimate Interest means the interest of our business in conducting and managing our business to enable us to give you the best service/product and the best and most secure experience. We make sure we consider and balance any potential impact on you (both positive and negative) and your rights before we process your Personal Data for our Legitimate Interests. We may share your Personal Data with other companies in Revalize so that they can contact you with promotions and offerings, or if they provide hosting, infrastructure, data center and IT services for the operation of our website. We will get your express opt-in consent before we share your Personal Data with any company outside the Revalize group of companies for marketing purposes. We do not use your Personal Data for activities where our interests are overridden by the impact on you (unless we have your consent or are otherwise required or permitted to by law). You can obtain further information about how we assess our Legitimate Interests against any potential impact on you in respect of specific activities by contacting us.
Performance of Contract means processing your data where it is necessary for the performance of a contract to which you are a party or to take steps at your request before entering into such a contract.
Comply with a legal obligation means processing your Personal Data where it is necessary for compliance with a legal obligation that we are subject to. Generally, we do not rely on consent as a legal basis for processing your Personal Data; although we may rely on your consent for certain third party direct marketing communications as set forth below. You have the right to withdraw any consent to such marketing at any time by contacting us.
We have set out below, in a table format, a description of all the ways we plan to use your Personal Data, and which of the legal bases we rely on to do so. We have also identified what our Legitimate Interests are where appropriate.
Note that we may process your Personal Data for more than one lawful ground depending on the specific purpose for which we are using your data. Please contact us if you need details about the specific legal ground we are relying on to process your Personal Data where more than one ground has been set out in the table below.
| Purpose/Activity | Type of data | Lawful basis for processing including basis of legitimate interest |
|---|---|---|
| To register you as a new customer |
Identity Contact |
Performance of a contract with you |
| To process and deliver your order including: Manage payments, fees and charges Collect and recover money owed to us |
Identity Contact Financial Transaction Marketing and Communications |
Performance of a contract with you Necessary for our legitimate interests (to recover debts due to us) |
| To manage our relationship with you which will include: Notifying you about changes to our terms or privacy policy Asking you to leave a review or take a survey |
Identity Contact Profile Marketing and Communications |
Performance of a contract with you Necessary to comply with a legal obligation Necessary for our legitimate interests (to keep our records updated and to study how customers use our products/services) |
| To enable you to complete a survey |
Identity Contact Profile Usage Marketing and Communications |
Performance of a contract with you Necessary for our legitimate interests (to study how customers use our products/services, to develop them and grow our business) |
| To administer and protect our business and this website (including troubleshooting, data analysis, testing, system maintenance, support, reporting and hosting of data) |
Identity Contact Technical |
Necessary for our legitimate interests (for running our business, provision of administration and IT services, network security, to prevent fraud and in the context of a business reorganization or group restructuring exercise) Necessary to comply with a legal obligation |
| To deliver relevant website content and advertisements to you and measure or understand the effectiveness of the advertising we serve to you |
Identity Contact Profile Usage Marketing and Communications Technical |
Necessary for our legitimate interests (to study how customers use our products/services, to develop them, to grow our business and to inform our marketing strategy) |
| To use data analytics to improve our website, products/services, marketing, customer relationships and experiences |
Technical Usage |
Necessary for our legitimate interests (to define types of customers for our products and services, to keep our website updated and relevant, to develop our business and to inform our marketing strategy) |
| To make suggestions and recommendations to you about goods or services that may be of interest to you |
Identity Contact Technical Usage Profile Marketing and Communications |
Necessary for our legitimate interests (to develop our products/services and grow our business) |
| To provide a chatbot or other automated customer support service on our website |
Identity Contact Technical Usage Profile Customer Support Chatbot |
Performance of a contract with you. Necessary for our legitimate interests (to receive feedback how customers use our products/services, to provide support, develop our products/services and grow our business) |
We strive to provide you with choices regarding certain Personal Data uses, particularly around marketing and advertising.
We may use your Identity, Contact, Technical, Usage, Profile Marketing & Communications data to form a view on what we think you may want or need, or what may be of interest to you. This is how we decide which products, services and offers may be relevant for you (we call this marketing). You will receive marketing communications from us if you have requested information from us or purchased goods or services from us and you have not opted out of receiving that marketing.
We will get your express opt-in consent or have another valid legal basis accepted by applicable law before we share your Personal Data with any third party outside Revalize for marketing purposes. No Personal Data will be sold to third parties for the purpose of marketing.
You can ask us or third parties to stop sending you marketing messages at any time by logging into the website and checking or unchecking relevant boxes to adjust your marketing preferences or by following the opt-out links on any marketing message sent to you.
Where you opt out of receiving these marketing messages, you may still receive other types of messages, such as those regarding a product/service purchase, warranty registration, product/service experience or other transaction.
You can set your browser to refuse all or some browser cookies, or to alert you when websites set or access cookies. If you disable or refuse cookies, please note that some parts of this website may become inaccessible or not function properly. For more information about the cookies we use and your options on how to manage cookies, please see our Global Cookie Notice.
We will only use your Personal Data for the purposes for which we collected it, unless we reasonably consider that we need to use it for another reason and that reason is compatible with the original purpose. If you wish to get an explanation as to how the processing for the new purpose is compatible with the original purpose, please contact us. If we need to use your Personal Data for an unrelated purpose, we will notify you and we will explain the legal basis which allows us to do so. Please note that we may process your Personal Data without your knowledge or consent, in compliance with the above rules and this Privacy Policy and as required or permitted by applicable law.
We may share Personal Data with our affiliates, service providers (including website, software, infrastructure and application providers), cloud hosting providers, database providers, backup and disaster recovery specialists, analytics and email providers, payment gateways, credit reference agencies, debt management agencies, professional advisors, marketing agencies, third-party networks and websites, and agents working on our behalf. We may also share your Personal Data as described in our Global Cookie Notice.
We may disclose your information, predominantly business contact information, to other members of the Revalize Group for purposes of service provisioning and for certain compliance. A list of our Revalize Group companies can be found here.
We may be required to share Personal Data with a third party or body where such disclosure is required to satisfy applicable law or other legal or regulatory requirement, or to protect our rights or property. This may include in response to lawful requests from a competent authority or body and to meet national security or law enforcement requirements.
We may also subcontract certain of our services to processors, to the extent permitted by applicable law. Where we enter into a relationship with any service provider or subcontractor for the processing of Personal Data, we will contractually require such vendors to take measures to protect your Personal Data in accordance with applicable law. We will not allow such vendors to use your Personal Data for their own purposes and only permit them to process your Personal Data for specified purposes and in accordance with our instructions.
We share your Personal Data where we believe it is necessary to prevent or investigate a possible crime, such as fraud or identity theft; to enforce a contract; to protect the legal rights, products, services, or safety of you, us, Revalize Group companies, and their respective employees, clients, partners, agents, other users, or the public in general; to enforce our terms of use or this Privacy Policy; and to monitor and remediate security issues.
If all or any part of our business is re-organized or sold to or there is a joint venture with another organization, we may need to provide your Personal Data to that organization. We may also be the recipient of Personal Data when we acquire another organization or a part of their business or enter into a joint venture with another organization.
We may collect Personal Data about end users in our capacity as a data processor on behalf of our business customers. When we act as a data processor, our business customer dictates the scope of Personal Data that we collect from or about end users and our use of that Personal Data. Our business customers may provide us with—or direct that we collect—the following information about end users: contact information; behavioral information (such as interactions, preferences, habits, feedback, needs and problems); voice recordings, images, videos; and other information of their choosing.
We use the Personal Data that we obtain from our business customers for the purpose for which it was provided, predominantly to fulfill the contractual obligation. We also may use such Personal Data, where permitted by applicable law and contract, for training, troubleshooting, investigating and resolving issues and complaints, and writing or modifying software applications. Where permitted by contract and law, we also may use such Personal Data (typically in the aggregate) to improve our products and services.
As permitted by our contract with our business customer and/or as required/permitted by applicable law, we disclose end user Personal Data to service providers/sub processors to assist in providing the services to our business customers; to law enforcement, regulators, advisors, and others, where we believe it necessary to protect our rights and interests, the rights and interests of our customers, or the rights and interests of any other person.
Unless we specifically contract to do so as part of the provision of services to a business customer, Revalize will not generally respond directly to requests or inquiries from end users with regards to the processing of their Personal Data. We will instead make reasonable efforts to direct inquiries and rights requests made by end users to the appropriate business customer.
We have put in place appropriate security measures to prevent your Personal Data from being accidentally lost, used or accessed in an unauthorized way, altered or disclosed. In addition, we limit access to your Personal Data to those employees, agents, contractors and other third parties who have a business need to know. They will only process your Personal Data on our instructions, and they are subject to a duty of confidentiality.
We have put in place procedures to deal with any suspected Personal Data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.
We will only retain your Personal Data for as long as reasonably necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, regulatory, tax, accounting or reporting requirements. We may retain your Personal Data for a longer period in the event of a complaint or if we reasonably believe there is a prospect of litigation in respect to our relationship with you.
To determine the appropriate retention period for Personal Data, we consider the amount, nature and sensitivity of the Personal Data, the potential risk of harm from unauthorized use or disclosure of your Personal Data, the purposes for which we process your Personal Data and whether we can achieve those purposes through other means, and the applicable legal, regulatory, tax, accounting or other requirements.
We have to keep basic information about our customers (including Contact, Identity, Financial and Transaction Data) for seven years after they cease being customers for tax purposes.
In some circumstances you can ask us to delete your Personal Data: see below for further information. In some circumstances we will anonymize your Personal Data (so that it can no longer be associated with you) for research or statistical purposes, in which case we may use this information indefinitely without further notice to you.
Under certain circumstances, you have rights under data protection laws in relation to your Personal Data. Your rights may differ depending on your place of residence.
GDPR, the UK’s Data Protection Act and Switzerland’s Federal Act on Data Protection provide the following rights to citizens of the EEA, the UK and Switzerland respectively:
Request access to your Personal Data (commonly known as a “data subject access request”). This enables you to receive a copy of the Personal Data we hold about you and to check that we are lawfully processing it.
Request correction of the Personal Data that we hold about you. This enables you to have any incomplete or inaccurate data we hold about you corrected, though we may need to verify the accuracy of the new data you provide to us.
Request erasure of your Personal Data. This enables you to ask us to delete or remove Personal Data where there is no good reason for us continuing to process it. You also have the right to ask us to delete or remove your Personal Data where you have successfully exercised your right to object to processing (see below), where we may have processed your information unlawfully or where we are required to erase your Personal Data to comply with local law. Note, however, that we may not always be able to comply with your request of erasure for specific legal reasons which will be notified to you, if applicable, at the time of your request.
Object to processing of your Personal Data where we are relying on a legitimate interest (or those of a third party) and there is something about your particular situation which makes you want to object to processing on this ground as you feel it impacts on your fundamental rights and freedoms. You also have the right to object where we are processing your Personal Data for direct marketing purposes. In some cases, we may demonstrate that we have compelling legitimate grounds to process your information which override your rights and freedoms.
GDPR and the UK’s Data Protection Act provide additional rights for EEA and UK citizens to:
Request restriction of processing of your Personal Data. This enables you to ask us to suspend the processing of your Personal Data if you want us to establish the data’s accuracy, or where our use of the data is unlawful but you do not want us to erase it, or where you need us to hold the data even if we no longer require it as you need it to establish, exercise or defend legal claims, or you have objected to our use of your data but we need to verify whether we have overriding legitimate grounds to use it.
Request the transfer of your Personal Data to you or to a third party. We will provide to you, or a third party you have chosen, your Personal Data in a structured, commonly used, machine-readable format. Note that this right only applies to automated information which you initially provided consent for us to use or where we used the information to perform a contract with you.
Withdraw consent at any time where we are relying on consent to process your Personal Data. However, this will not affect the lawfulness of any processing carried out before you withdraw your consent. If you withdraw your consent, we may not be able to provide certain products or services to you. We will advise you if this is the case at the time you withdraw your consent.
If you wish to exercise any of the rights set out above, if you are in the US please use this webform and if you are in the EEA, Switzerland or UK please use this webform.
If you have any questions, please contact us at dpo@revalizesoftware.com.
You will not have to pay a fee to access your Personal Data (or to exercise any of the other rights). However, we may charge a reasonable fee if your request is clearly unfounded, repetitive or excessive. Alternatively, we could refuse to comply with your request in these circumstances.
We may need to request specific information from you to help us confirm your identity and ensure your right to access your Personal Data (or to exercise any of your other rights). This is a security measure to ensure that Personal Data is not disclosed to any person who has no right to receive it. We may also contact you to ask you for further information in relation to your request to speed up our response.
It is important that the Personal Data we hold about you is accurate and current. Please keep us informed if your Personal Data changes during your relationship with us.
We try to respond to all legitimate requests within one month. Occasionally it could take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated.
You may also have the right to complain to the competent data protection supervisory authority. Contact details of the data protection authorities in the European Economic Area can be found at https://edpb.europa.eu/about-edpb/about-edpb/members_en and in the UK at https://ico.org.uk/global/contact-us/ Before making a complaint to the data protection authority we would the opportunity to deal with your concerns, so please contact our data privacy director in the first instance at dpo@revalizesoftware.com.
You acknowledge and agree that telephone conversations and chat sessions with our customer service representatives may be monitored and recorded.
You may opt out of receiving SMS messages at any time by replying with “STOP” to any SMS message you receive from us. After opting out, you will receive a confirmation message, and we will cease sending SMS messages to your number. Revalize will use additional measures to confirm your consent to be contacted by SMS if applicable law requires it.
If you need assistance or have questions about our SMS service, reply with “HELP” to any SMS message you receive, or contact our customer support team at https://revalizesoftware.com/revalize-support/.
No mobile information will be shared with third parties for marketing/promotional purposes. All the stated categories in this Privacy Policy exclude text messaging originator opt-in data and consent; this information will not be shared with any third parties.
Subject to certain limitations and applicable law, residents of certain U.S. states may have the following rights relating to their Personal Information. If you are a resident of California, please see our California Notice at Collection and Privacy Notice.
Right to Know the categories of Personal Information collected, specific pieces of Personal Information collected, the categories of sources from which the business collected Personal Information, the purposes for which the business uses the Personal Information, the categories of third parties with whom the business shares the Personal Information, and the categories of Personal Information that the business sells or discloses to third parties. You may be required to verify your identity in connection with your exercise of this right.
Right to access to the Personal Information we maintain about you. This enables you to receive a copy of the specific pieces of Personal Information we hold about you. You may be required to verify your identity in connection with your exercise of this right.
Right to correct inaccurate Personal Information we maintain about you. You may be required to verify your identity in connection with your exercise of this right.
Right to delete Personal Information we have collected and maintain about you. However, please note that there are some exceptions that allow businesses to keep your Personal Information in accordance with legal requirements. You may be required to verify your identity in connection with your exercise of this right.
Right to Opt out of the “sale” of your Personal Information. Revalize does not ‘sell’ your Personal Information for monetary or other benefit.
Right to Opt out of the “sharing” of your Personal Information for cross-contextual behavioral advertising or opt out of ‘targeted advertising’. As noted, Revalize uses certain third-party tracking technologies placed on our website in order to advertise to you on other websites. These third parties may constitute a ‘share’ and/or ‘targeted advertising’ under applicable law. You may opt out of such cookies as detailed in our Global Cookie Notice.
‘Do Not Track’: Revalize currently does not recognize ‘Do Not Track’ signals, or ‘Opt-Out Preference Signals’ that are automatically sent by certain web browsers.
Right to Not Be Discriminated against by us for choosing to exercise your rights under applicable state law.
You can exercise these rights by contacting us at dpo@revalizesoftware.com or filling out the form here. To opt out of sharing of your Personal Information for targeted advertising, adjust your cookie preferences using the cookie preference banner on our website at Manage Cookie Preferences or here.
Verification: To protect your personal information, we may verify your identity before fulfilling certain requests, such as the requests regarding the right to know, delete or correct. The verification process may involve asking you to provide information that matches the records we maintain about you. For requests to know specific pieces of personal information, we may require a higher degree of verification.
Authorized Agents: You may designate an authorized agent to submit a request on your behalf. To use an authorized agent, the agent must provide documentation of written authorization from you, or you must directly verify your own identity with us. We may deny a request from an agent who cannot provide proof of authorization. To submit a request as an authorized agent, please use the methods listed above and include documentation of your authorization.
This Privacy Policy may be changed by Revalize at any time. We keep our Privacy Policy under regular review. Please check back frequently to see if there are any changes or updates to the Privacy Policy.
Personal Data may be processed outside the country of your residence by our affiliates, partners or service providers and agents working on our behalf. The transfer to other countries by Revalize and its affiliates will be in accordance with applicable data protection legislation, which may include an adequacy decision or appropriate safeguards. Appropriate safeguards may include: Revalize and third parties entering into the EU Standard Contractual Clauses approved by the European Commission or the International Data Transfer Agreement and UK Addendum to the EU Standard Contractual Clauses.
Please contact us if you want further information on the specific mechanism used by us when transferring your Personal Data outside your country of residence.
Where the European Commission has made an “adequacy decision” in respect of a country outside the European Economic Area (EEA) (i.e. determined that the country provides adequate data protection), Personal Data can be transferred from the EEA to that country without further safeguards being necessary. The UK and Switzerland have adopted similar adequacy mechanisms to allow Personal Data to be sent to countries that they consider provide adequate data protection. Revalize, Inc. and its Affiliates (“Revalize” or “we”) rely on the European Commission’s adequacy decisions, as well as the UK adequacy regulations and Swiss adequacy decisions.
Where there is no adequacy mechanism in place, we rely on Standard Contractual Clauses (SCCs) for data transfers from the EEA, the UK and Switzerland to third countries as these provide appropriate data protection safeguards. SCCs have been approved by the European Commission and must be used in their original form without modification.
Revalize, Inc. and all operating affiliates and subsidiaries based in the United States (collectively “Revalize”) complies with the EU-U.S. Data Privacy Framework (EU-U.S. DPF), the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF), (collectively the “Data Privacy Framework” or “DPF”) as set forth by the U.S. Department of Commerce. To learn more about the Data Privacy Framework (DPF) program, and to view our certification, please visit https://www.dataprivacyframework.gov/.
Personal Data may be processed on servers located outside of the country where you reside. Our Privacy Policy describes the way we protect your Personal Data. In addition to those protections, we provide the following protections in respect of data transfers from the EEA, UK (and Gibraltar) and Switzerland.
EU-US and Swiss-US Data Privacy Frameworks and UK Extension
In compliance with EU-U.S. DPF, the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. DPF, Revalize commits to cooperate and comply with the advice of the panel established by the EU data protection authorities (DPAs), the UK Information Commissioner’s Office (ICO), the Gibraltar Regulatory Authority (GRA), and the Swiss Federal Data Protection and Information Commissioner (FDPIC) with regard to unresolved complaints concerning our handling of Personal Data received in reliance EU-U.S. DPF, the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. DPF.
Data subjects may contact the relevant independent recourse providers listed below:
Revalize will cooperate with the applicable data protection authority in the investigation and resolution of complaints brought under the DPF. Revalize will comply with any advice given by the EU DPAs, the FDPIC, or the ICO with regard to unresolved complaints concerning our handling of Personal Data received in reliance on the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF and the Swiss-U.S. DPF. The alternative dispute resolution services of the data protection authorities are provided at no cost to you.
If a dispute or complaint cannot be resolved by Revalize or by the EU DPAs, the Swiss FDPIC, or the UK ICO, you have the right to require that Revalize enter into binding arbitration pursuant to the DPF’s Recourse, Enforcement and Liability Principle and Annex I of the DPF.
Revalize is subject to the investigatory and enforcement powers of the U.S. Federal Trade Commission.
We remain responsible for any of your Personal Information that is shared by us with third parties for external processing on our behalf.
We currently do not rely on the Swiss-U.S. DPF and the UK Extension to the EU-U.S. DPF to transfer Personal Information to the U.S.
If you have an inquiry regarding our privacy practices in relation to our DPF certification, please contact our Chief Privacy Officer at dpo@revalizesoftware.com.
The following Revalize, Inc. US entities and subsidiaries adhere to the DPF Programme (https://www.dataprivacyframework.gov/), including the UK Extension to the EU-U.S. DPF and the Swiss-U.S. DPF Principles: Attainia Holdings, LLC, Attainia, LLC, AutoQuotes, LLC, AXI Parent, LLC, Axonom, LLC, BCA Technologies, LLC, Configure One Holdings, LLC, Configure One, LLC, Engineered Software, LLC, FPX, LLC, Imperial Midco, LLC, Intelliquip, LLC, Kochman Consultants, Inc, LeadMethod, LLC, Lighting Analysts, LLC, MicroD, LLC and Revalize, Inc.