Privacy Policy

1. Introduction

RevTrackr is operated by NFTeam s.r.o. (“we”, “our”, or “us”), a company registered in the Slovak Republic, with its seat at Hradná 168/2, 945 01 Komárno, Slovak Republic, IDČO: 50 599 500, DIČ: 21 2040 8719. We are committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our financial management platform (the “Service”).

By using RevTrackr, you agree to the collection and use of information in accordance with this policy. If you do not agree with our policies and practices, please do not use our Service.

2. Information We Collect

2.1 Information You Provide

We collect information that you voluntarily provide, including:

• Account information: name, email address, password (stored as a hash), and contact details.
• Business information: business name, type, country, currency, and tax-related settings.
• Financial data: transactions, income, expenses, receipts, invoices, and other financial records you enter or upload.
• Payment information: billing details processed through our payment provider, Stripe. We do not receive or store your full card numbers.
• Communications: messages you send to our support team.

2.2 Information Collected Automatically

• Usage data: pages visited, features used, time spent, and interaction patterns.
• Device and log data: IP address, browser type, operating system, device identifiers, and access times.
• Cookies and similar technologies: used to maintain sessions, remember preferences, and analyze performance.

3. How We Use Your Information

We use the information we collect to:

• Provide, operate, and maintain the Service.
• Process transactions, manage subscriptions, and send related billing communications.
• Calculate tax estimates, generate reports, and surface financial insights.
• Improve, personalize, and expand the features of the Service.
• Send transactional emails such as tax deadline reminders and account notifications.
• Detect, prevent, and address fraud, abuse, and security incidents.
• Comply with legal obligations.

4. How We Share Your Information

We do not sell your personal information. We share information only with the following categories of recipients:

• Service providers (sub-processors): trusted vendors who process data on our behalf:
  • Supabase — database, authentication, and file storage (receipts, documents, uploads).
  • Vercel — application hosting, deployment, and edge delivery (including request logs).
  • Stripe — payment processing, subscription management, and billing.
• Legal and regulatory authorities: when required by law, court order, or to protect our rights and the safety of others.
• Business transfers: in connection with a merger, acquisition, or asset sale, with notice to you.
• With your consent: any other party you authorize.

5. Data Security

We implement industry-standard technical and organizational measures to protect your data, including encryption in transit (TLS), encryption at rest on Supabase and Vercel infrastructure, hashed passwords, and access controls. However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.

6. Data Retention

We retain your personal data for as long as your account is active or as needed to provide you the Service. You may request deletion of your account at any time. We may retain certain information after deletion to comply with legal obligations, resolve disputes, and enforce agreements.

7. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

• Access the personal data we hold about you.
• Correct inaccurate or incomplete data.
• Request deletion of your data.
• Restrict or object to certain processing of your data.
• Receive a portable copy of your data.
• Withdraw consent where processing is based on consent.
• Lodge a complaint with a supervisory authority.

To exercise any of these rights, contact us at hello@nfteam.eu.

8. International Data Transfers

We are based in the Slovak Republic and process data within the European Economic Area where possible. Some of our sub-processors (such as Vercel and Stripe) may transfer or process data outside the EEA, including in the United States. Where such transfers occur, we rely on appropriate safeguards such as the European Commission’s Standard Contractual Clauses or equivalent mechanisms.

9. Cookies

We use essential cookies to keep you signed in and to remember your preferences. We may also use analytics cookies to understand how the Service is used. You can control cookies through your browser settings, but disabling some cookies may affect functionality.

10. Children’s Privacy

The Service is not intended for individuals under the age of 16. We do not knowingly collect personal information from children. If you become aware that a child has provided us with personal data, please contact us so we can delete it.

11. Third-Party Links

Our Service may contain links to third-party websites or services. We are not responsible for the privacy practices of those third parties. We encourage you to read their privacy policies before providing them with personal data.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the new policy on this page and updating the “Last updated” date. Your continued use of the Service after changes become effective constitutes acceptance of the revised policy.

13. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, contact us at: