Legal
Privacy Statement
Last updated: March 2026
This Privacy Statement explains how we collect, use, store, and protect your personal data when you use this web-based revision tool (the “Service”). We are committed to handling your information responsibly and in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
Please read this statement carefully. By using the Service, you acknowledge that you have read and understood how we handle your personal data.
1. Who We Are (Data Controller)
This Service is operated by Revise Assistant (“we”, “us”, or “our”). As the operator of the Service, we act as the data controller for the personal data you provide.
If you have any questions or concerns about how we handle your data, please contact us using the details above.
2. What Personal Data We Collect
We may collect the following categories of personal data:
Account Information
- Name and email address (when you register)
- Password (stored in encrypted form — we never have access to your plain-text password)
- Account preferences and settings
Usage Data
- Pages visited and features used within the Service
- Date and time of access
- Device type, browser type, and operating system
- IP address
Content Data
- Text and documents you submit to the Service for revision purposes
Payment Information
- If you purchase a subscription, payment is processed by a third-party payment provider. We do not store your full card details.
Communications
- Messages you send us via email or any contact form
3. How We Collect Your Data
We collect personal data in the following ways:
- Directly from you — when you register, submit content, make a payment, or contact us
- Automatically — through cookies and similar technologies when you use the Service (see Section 8)
- From third parties — such as payment processors or authentication providers, where applicable
4. Why We Process Your Data (Legal Basis)
Under UK GDPR, we must have a lawful basis for processing your personal data. The bases we rely on are:
| Purpose | Legal Basis |
|---|---|
| Providing and operating the Service | Performance of a contract |
| Processing payments | Performance of a contract |
| Sending service-related communications | Performance of a contract |
| Improving and securing the Service | Legitimate interests |
| Complying with legal obligations | Legal obligation |
| Sending optional marketing emails | Consent (you may withdraw at any time) |
5. How We Use Your Data
We use your personal data to:
- Create and manage your account
- Provide, operate, and improve the Service
- Process payments and manage subscriptions
- Respond to your enquiries and support requests
- Send you important service notices (e.g. updates to these terms)
- Monitor and protect the security and integrity of the Service
- Comply with applicable legal obligations
- Send marketing communications, where you have consented
We will never sell your personal data to third parties.
6. How Long We Keep Your Data
We retain your personal data only for as long as necessary for the purposes set out in this statement, or as required by law.
| Data Type | Retention Period |
|---|---|
| Account information | Until you delete your account, plus 30 days |
| Content you submit | Until you delete it or close your account |
| Usage and log data | Up to 12 months |
| Payment records | Up to 7 years (legal/tax obligation) |
| Communications | Up to 2 years |
When data is no longer needed, we will securely delete or anonymise it.
7. Sharing Your Data
We do not sell or rent your personal data. We may share it with:
Service Providers — third-party companies that help us operate the Service (e.g. hosting providers, payment processors, analytics services). These providers act as data processors and are contractually required to handle your data only as we instruct, and to maintain appropriate security standards.
Legal Authorities — where required to do so by law, court order, or to protect the rights, property, or safety of ourselves or others.
We require all third parties to respect the security of your data and to treat it in accordance with applicable law.
8. Cookies
We use cookies and similar tracking technologies to operate and improve the Service. Cookies are small files stored on your device.
Types of cookies we use:
- Essential cookies — necessary for the Service to function (e.g. keeping you logged in). These cannot be disabled.
- Analytics cookies — help us understand how users interact with the Service so we can improve it.
- Preference cookies — remember your settings and preferences.
You can control or disable non-essential cookies through your browser settings or via any cookie consent tool provided on the Service. Note that disabling certain cookies may affect your experience.
9. Data Security
We take reasonable technical and organisational measures to protect your personal data against unauthorised access, loss, or misuse. These measures include:
- Encryption of data in transit (HTTPS/TLS)
- Encrypted storage of passwords
- Access controls limiting who can access personal data
- Regular security reviews
However, no system is completely secure. We cannot guarantee absolute security and encourage you to use a strong, unique password for your account.
10. International Transfers
Where we use third-party service providers based outside the UK or European Economic Area (EEA), we ensure appropriate safeguards are in place (such as UK adequacy decisions or Standard Contractual Clauses) before transferring your data.
11. Your Rights
Under UK GDPR, you have the following rights in relation to your personal data:
- Right of access — to request a copy of the data we hold about you
- Right to rectification — to ask us to correct inaccurate or incomplete data
- Right to erasure — to request deletion of your data, subject to certain conditions
- Right to restrict processing — to ask us to limit how we use your data
- Right to data portability — to receive your data in a structured, machine-readable format
- Right to object — to object to processing based on legitimate interests or for direct marketing
- Right to withdraw consent — where processing is based on consent, you may withdraw it at any time
To exercise any of these rights, please contact us at the details in Section 1. We will respond within one month of receiving your request. We may need to verify your identity before fulfilling your request.
12. Children's Privacy
The Service is not directed at children under the age of 13. We do not knowingly collect personal data from children under 13. If we become aware that we have inadvertently collected such data, we will delete it promptly. If you believe a child has provided us with their personal data, please contact us.
13. Links to Other Websites
The Service may contain links to third-party websites. This Privacy Statement applies only to the Service. We are not responsible for the privacy practices of any third-party sites and encourage you to review their privacy policies before providing any personal data.
14. Changes to This Privacy Statement
We may update this Privacy Statement from time to time to reflect changes in the law, our practices, or the Service. We will update the “Last updated” date at the top of this page and, where appropriate, notify you by email or through the Service.
Your continued use of the Service after any changes constitutes your acceptance of the updated statement.
15. Complaints
If you are unhappy with how we handle your personal data, please contact us in the first instance so we can try to resolve your concern.
You also have the right to lodge a complaint with the UK's data protection supervisory authority:
This Privacy Statement was last updated in March 2026.