Skip to main content

Privacy Policy

Last updated: February 18, 2026

What Data We Collect

When you use RevProof, we collect the following information:

  • Your email address and basic profile information through our authentication provider
  • Your Stripe account information including account ID and business name
  • Your Monthly Recurring Revenue (MRR) data from your Stripe account
  • Usage data such as when you generate badges or update your profile
  • Technical data including IP address, browser type, and device information

How We Use Your Data

We use your information exclusively for:

  • Verifying your MRR and generating accurate badges
  • Maintaining your user account and preferences
  • Sending important service updates and notifications
  • Improving our service and user experience
  • Complying with legal obligations

Important: What We DON'T Store

We never store your financial transaction data, customer information, or payment details. We only access your MRR totals through Stripe's secure API to generate verification badges.

Stripe OAuth Permission Scope

When you connect your Stripe account, we request read-only access to:

  • read_only - General account information
  • subscription.read - Subscription data for MRR calculation

These permissions are read-only and cannot be used to modify your Stripe account, process payments, or access customer data.

Data Retention

We retain your data for 30 days after you disconnect your Stripe account or delete your profile. During this period, you can reconnect and restore your badge without losing your verification history. After 30 days, all associated data is permanently deleted from our systems.

Data Sharing

We do not sell, rent, or share your personal information with third parties, except:

  • With service providers who help us operate our platform (hosting, analytics)
  • When required by law or to protect our legal rights
  • In the event of a business transfer (acquisition, merger, etc.)

Your Rights Under GDPR

If you're in the European Union, you have the right to:

  • Access - Request a copy of your personal data
  • Rectification - Correct inaccurate personal data
  • Erasure - Request deletion of your personal data
  • Portability - Receive your data in a machine-readable format
  • Restrict processing - Limit how we process your data
  • Object - Object to processing based on legitimate interests

To exercise these rights, contact us at support@goodepoch.com

Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. This includes encryption in transit and at rest, secure API connections, and regular security audits.

Cookies and Tracking

We use essential cookies for authentication and session management. We also use analytics cookies to understand how our service is used and improve user experience. You can control cookie preferences through your browser settings.

Changes to This Policy

We may update this privacy policy from time to time. When we do, we'll notify you via email and update the "Last updated" date at the top of this page. Continued use of our service after changes constitutes acceptance of the updated policy.

Contact Us

If you have questions about this privacy policy or how we handle your data, please contact us at:

Email: support@goodepoch.com

For data deletion requests, please include "Data Deletion Request" in your email subject.