This Policy outlines Revaalo Labs.’s and its affiliates’ (“we”, “us”, or “our”) practices in relation to the storage, use, processing, and disclosure of personal data that you have chosen to share with us or that we collect about you (including, for example, when you contact us through the information available on our website https://revaalolabs.com/ ( “Website”). This Policy explains how we process and use your personal data.
Certain jurisdictions require you to consent to the processing of your data, or otherwise require you to accept these terms of this Policy. In this regard and subject to the data protection laws that apply to you, by using the Website, you agree and consent to the collection, use, storage, disclosure, and sharing of your information as described and collected by us in accordance with this Policy. Please contact us if you have questions on our practices in your country or region.
All references to “you” across this Policy are to an end user who (a) shares their personal data with us or (b) whose personal data we collect or process.
(a) About Us:
If you have any questions on this Policy, questions on how we process or handle your personal data, or otherwise, you may reach out to us with your grievances, feedback, and comments. Our contact details are:
Name: Revaalo Labs Pvt Ltd
(b) Review and Updates:
(c) Third-Party Services:
(a) We collect different types of personal data about you in various ways, which we have grouped together as follows. The information that we collect may include:
(b) We also collect, use, and share aggregated data such as statistical or demographic data for any purpose. Aggregated data could be derived from your personal data but is not considered personal data under law as it does not directly or indirectly reveal your identity. However, if we combine or connect aggregated data with your personal data so that it can directly or indirectly identify you, we treat the combined data as personal data which will be used in accordance with this Policy.
(c) What happens if I refuse to provide my personal data?
Where we need to collect personal data by law, or under the terms of a contract we have with you, and you fail to provide that data when requested, we may not be able to perform the contract we have or are trying to enter into with you. In this case, we may have to cancel a service you have with us.
We use different methods to collect your data, including through:
(a) Direct Interactions. You provide us your personal data when you interact with us. This includes personal data you provide when you request marketing to be sent to you, or when you give us feedback or contact us.
(b) Automated technologies or interactions. As you interact with the Website, we will automatically collect Technical Data about your equipment, browsing actions, and patterns. We collect this personal data by using cookies, server logs, and other similar technologies. We may also receive Technical Data about you if you visit other websites that employ our cookies.
(c) Third parties or publicly available sources. We will receive personal data about you from various third parties. For example, we collect Technical Data from analytics providers such as Google.
(a) We will only use your personal data when the law allows us to. Most commonly, we will use your personal data where we need to perform the contract we are about to enter into or have entered into with you, where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests, or where we need to comply with a legal obligation. We use your personal data for the following purposes:
(b) Where applicable laws permit us to, we rely on your consent as a ground to process your personal data.
(c) Where applicable law does not permit us to rely on your consent to process personal data, we rely on the following legal bases for processing your personal data:
(d) We will only use your personal data for the purposes for which we collected it, unless we reasonably consider that we need to use it for another reason and that reason is compatible with the original purpose. If you wish to get an explanation as to how the processing for the new purpose is compatible with the original purpose, please contact us. If we need to use your personal data for an unrelated purpose, we will notify you and we will explain the legal basis which allows us to do so.
(e) Please note that we may process your personal data without your knowledge or consent, in compliance with the rules above where this is required or permitted by law.
(a) Cookies are small files that a site or its service provider transfers to your computer’s hard drive through your web browser (if you allow) that enables the sites or service provider’s systems to recognise your browser and capture and remember certain information.
(d) We use the following cookies:
[gtag.js (Google Analytics 4) - cookie usage]
(e) You can find more information about the individual cookies we use and the purposes for which we use them in the table below:
|_ga||2 years||Used to distinguish users.|
|_gid||24 hours||Used to distinguish users.|
|_ga_< container-id >||2 years||Used to persist session state.|
|_ga_< container-id >||90 days||Contains campaign related information. If you have linked your Google Analytics and Google Ads accounts, Google Ads website conversion tags will read this cookie unless you opt-out.|
|acceptCookie||18 hours||Used to remember user acceptance for Cookie usage.|
(f) You can block cookies by activating the setting on your browser that permits you to refuse the setting of all or some cookies. However, if you use your browser settings to block all cookies (including essential cookies), you may not be able to access all or parts of the Website.
(a) We do not share, sell, trade, or otherwise transfer to any third parties or allow third party to access your personally identifiable information. However, we may share your personal data with third parties set out below for the purposes set out in Section 4:
(b) We require all third parties to respect the security of your personal data and to treat it in accordance with the law. We do not allow our third-party service providers to use your personal data for their own purposes and only permit them to process your personal data for specified purposes and in accordance with our instructions.
(a) The personal data that we process may be transferred to countries other than where you are based. For example, we transfer your personal data to the United States of America and India, where our servers are located. Where applicable law permits such transfer, we rely on consent to transfer such data. If you are based in the EU, we rely on standard data protection clauses that are approved by the European Commission for the onward transfer of personal data.
(b) You can find out more about these transfer mechanisms by contacting us.
We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used, or accessed without authorisation, altered, or disclosed.
(a) We will only retain your personal data for as long as reasonably necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, regulatory, or reporting requirements. We may retain your personal data for a longer period in the event of a complaint or if we reasonably believe there is a prospect of litigation in respect of our relationship with you. In case your information is no longer required for any purpose of lawful processing, then we will ensure it is disposed of in a secure manner.
(b) In some circumstances, we may anonymise your personal data (so that it can no longer be associated with you) for research or statistical purposes, in which case we may use this information indefinitely without further notice to you.
(a) Subject to the data protection laws that apply to you, you may have the right to:
(b) If you wish to exercise any of the rights set out above, please contact us at the details provided in Section 1(a).
(c) We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal data (or to exercise any of your other rights). This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it. We may also contact you to ask you for further information in relation to your request to speed up our response.
(d) We try to respond to all legitimate requests within one month. Occasionally it could take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated.
(a) We may occasionally update this Policy. If we make changes to this Policy, we will notify you of the changes through the Website or through other means, such as email. To the extent permitted under applicable law, by using our Website after such notice, you consent to updates made to this Policy.
(b) We encourage you to periodically review this policy for the latest information on our privacy practices. We will also make prior versions of our privacy policies available for review.