revenueswarm

Privacy Policy

Last updated: 7 May 2026

This Privacy Policy explains how Ridiculous Corporation Limited ("we", "us", "our") collects, uses, stores, and protects information when you use the RevenueSwarm platform ("Service") at revenueswarm.xyz and app.revenueswarm.xyz.

We are committed to handling your data lawfully, fairly, and transparently under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

1. Who we are

The data controller is Ridiculous Corporation Lited, a company registered in England and Wales (registration number 16493949), VAT registration number GB 505185017, with registered address 1 Bentham House, Haywards Heath, West Sussex, RH16 4WG, United Kingdom.

For privacy questions or to exercise your rights, contact us at privacy@revenueswarm.xyz.

2. Information we collect

Account information

When you sign up, we collect your name, email address, and (if you sign in with Google) the public profile information returned by Google. We do not store your Google password.

BrandBrain content

During onboarding, you provide information about your business, your customers, your tone of voice, and your goals. This is processed by our AI agents to compose outreach in your voice. You can update or delete this content at any time from your dashboard settings.

Integration credentials

If you connect Gmail, Google Calendar, Apollo, or other integrations, we store the access tokens securely (encrypted at rest) so the swarm can act on your behalf. You can revoke access at any time, either inside RevenueSwarm or in your provider's own settings.

Prospect data

The Service handles information about people you choose to contact through it (prospects), including names, work email addresses, job titles, employers, and publicly available signals. You are the data controller for this prospect data and we are the data processor — see our Data Processing Addendum (DPA) for detail.

Usage data

We collect basic technical information automatically: IP address, browser type, device, pages viewed, and timestamps. We use this to operate the Service, debug issues, and improve performance.

Payment information

Payment is processed by Stripe. We do not store your card number. We store the last 4 digits, card brand, expiry, and Stripe customer / subscription IDs to operate billing.

Communications with us

If you chat with our AI assistant Luna, contact support, or escalate a question to a human, we store the conversation so we can follow up and improve the Service.

3. How we use your information

We process your information to:

  • Operate the Service and run swarm cycles you initiate.
  • Authenticate you and protect your account.
  • Process payments, manage subscriptions, and prevent fraud.
  • Send service-related emails (billing, security, important updates).
  • Provide customer support and respond to enquiries.
  • Improve our agents, prompts, and platform — using aggregated, de-identified data only unless you have explicitly opted in.
  • Comply with legal obligations.

We do not train foundation models on your data. Your BrandBrain, prospect lists, and conversations are not used to train large language models. They are used at inference time to operate the swarm on your behalf.

4. Lawful bases (UK GDPR)

We process personal data on the following lawful bases:

  • Contract: to provide the Service you have signed up for.
  • Legitimate interests: to secure the Service, prevent fraud, and improve the product, balanced against your rights.
  • Consent: for optional marketing communications and certain cookies.
  • Legal obligation: to meet tax, accounting, and regulatory requirement

5. Sub-processors

We use the following sub-processors to deliver the Service. Each is bound by a data processing agreement and offers appropriate safeguards.

  • Supabase — primary database and authentication (EU region).
  • Vercel — frontend hosting and edge delivery.
  • Railway — backend agent runtime.
  • OpenAI — AI inference for several agents (zero data retention enabled).
  • Anthropic — AI inference for BrandBrain extraction and Luna conversations (zero data retention enabled).
  • Apollo — prospect data sourcing and enrichment.
  • Google (Gmail, Calendar) — outbound email and meeting booking on your behalf.
  • Stripe — payment processing.
  • Resend — transactional and notification emails.

We update this list when sub-processors change. Subscribe to privacy@revenueswarm.xyz if you want to be notified in advance of additions.

6. International transfers

Your data is primarily stored in the European Union (Supabase EU region). Some sub-processors are based in the United States (e.g. OpenAI, Anthropic, Stripe). Where data is transferred outside the UK or EEA, we rely on the UK International Data Transfer Agreement, the EU Standard Contractual Clauses, or an adequacy decision, as applicable.

7. Data retention

We retain your data for as long asaccount is active. After account cancellation, we retain data for up to 30 days to allow account recovery, then delete or anonymise it, except where we are required to retain longer for legal, tax, or accounting reasons (typically 6 years for financial records).

You can request earlier deletion at any time by contacting us — see "Your rights" below.

8. Your rights

Under UK GDPR, you have the right to:

  • Access — request a copy of the personal data we hold about you.
  • Rectification — correct inaccurate data.
  • Erasure — request deletion of your data.
  • Restriction — limit how we process your data.
  • Portability — receive your data in a portable format.
  • Object — object to processing based on legitimate interests.
  • Withdraw consent — where processing is based on consent.

To exercise any of these rights, email privacy@revenueswarm.xyz. We will respond within one calendar month.

You also have the right to complain to the UK Information Commissioner's Office (ICO) at ico.org.uk.

9. Security

We use industry-standard security measures:sit, encryption at rest for sensitive credentials, role-based access controls, and audit logging. No system is perfectly secure — if you believe your account has been compromised, contact us immediately at security@revenueswarm.xyz.

10. Cookies

See our Cookie Policy for detail on cookies and tracking technologies.

11. Children

The Service is not intended for users under 18. We do not knowingly collect information from children.

12. Changes to this policy

We may update this Privacy Policy. Material changes will be communicated by email or in-product notification at least 14 days before they take effect. The "Last updad" date at the top of this page indicates the most recent version.

13. Contact

For privacy questions or data subject requests, contact:

Ridiculous Corporation Limited
1 Bentham House, Haywards Heath
West Sussex, RH16 4WG
United Kingdom
privacy@revenueswarm.xyz