Legal

Privacy Policy

Last updated: April 2026

Who we are

Revela Tech Ltd operates the Revela Tech | Cyber service at cyber.revelatech.co.uk. We are the data controller for personal data collected via this website. You can contact us at hello@revelatech.co.uk.

What data we collect and why

We collect personal data through two forms on this website:

  • Start Here form: first name, last name, email address, business name, business size, country, sector, service interest, and whether you have had a prior review. We use this data to assess whether our services are suitable for you, to route your enquiry correctly, and to send you the appropriate next steps by email. Legal basis: legitimate interests (to process a pre-contractual service enquiry).
  • Contact form: name, email address, and free-text message. We use this data solely to respond to your question. Legal basis: legitimate interests (to respond to a direct enquiry).

We do not use tracking pixels, analytics cookies, or behavioural advertising tools on this website. No third-party marketing data is collected.

How we store your data

Data submitted via the Start Here form is stored in our secure internal CRM, hosted on a UK-based server. Access is restricted to authorised personnel only. Contact form submissions are logged and responded to by the founder directly.

How long we keep your data

  • Enquiries that do not become clients: retained for 12 months from the date of submission, then deleted.
  • Clients: retained for the duration of the engagement plus 5 years, in accordance with standard business record-keeping obligations.
  • Contact form messages: retained for 6 months from the date of submission, unless a client relationship results.

Who we share your data with

We do not sell or share your personal data with third parties for marketing purposes. We may share data with the following categories of processor in order to deliver the service:

  • Stripe: for payment processing (Baseline Cyber Review). Stripe is a PCI-DSS certified payment processor. Their privacy policy is available at stripe.com/gb/privacy.
  • Email service provider: for sending transactional emails (enquiry confirmations, next steps). We use a GDPR-compliant provider.

Cookies

This website uses only a session cookie for form processing (to enable the post-submit redirect and confirmation display). This cookie is functional and strictly necessary. No consent is required. No advertising, analytics, or tracking cookies are set.

Your rights

Under UK GDPR you have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data (where no overriding legal obligation applies)
  • Object to processing based on legitimate interests
  • Lodge a complaint with the ICO at ico.org.uk

To exercise any of these rights, email us at hello@revelatech.co.uk. We will respond within one calendar month.

Changes to this policy

We may update this policy from time to time. The date at the top of this page shows when it was last revised. Continued use of the site after a revision constitutes acceptance of the updated policy.