Revo Supplier

Legal

Privacy Policy

How we collect, use, and protect personal data across the markets we serve.

Revo Supplier FZ-LLC ("Revo Supplier", "we", "us") respects your privacy and is committed to protecting personal data we collect through our website, email, telephone, messaging channels, and brokerage engagements.

This Privacy Policy explains what data we collect, why we collect it, how we use and share it, and the rights you have under applicable data protection laws — including the UAE Personal Data Protection Law (Federal Decree-Law No. 45 of 2021), the EU and UK GDPR, the California Consumer Privacy Act / CPRA, Canada's PIPEDA, Brazil's LGPD, and other comparable regimes.

1. Who we are (Data Controller)

Revo Supplier FZ-LLC is a commercial brokerage incorporated in the Ras Al Khaimah Economic Zone (RAKEZ), United Arab Emirates. Trade License No. 5027968.

Registered address: MBAM0336, Compass Building, Al Shohada Road, Al Hamra Industrial Zone-FZ, Ras Al Khaimah, UAE.

For privacy enquiries, write to info@revosupplier.com with the subject line "Privacy request".

2. The personal data we collect

We collect only the data we need to operate our brokerage and respond to your enquiries. Categories include:

  • Identification & contact data — name, job title, employer, business email, phone number, country.
  • Commercial data — details of the products or services you wish to source or supply, target markets, volumes, timelines, certifications.
  • Communication data — the content of emails, messages, call notes, and forms you submit.
  • Technical data — IP address, device type, browser, language, referring page, and pages visited (collected via cookies and server logs).
  • Marketing preferences — your choices regarding newsletters or commercial outreach (only where you have opted in).

3. Lawful bases for processing

Where the EU/UK GDPR or analogous laws apply, we rely on the following legal bases:

  • Performance of a contract — to scope, deliver, and invoice brokerage engagements you have requested.
  • Legitimate interests — to respond to enquiries, run and secure our website, prevent fraud, and develop our services. We balance these interests against your rights.
  • Consent — for non-essential cookies, marketing emails, or any sensitive processing. You can withdraw consent at any time.
  • Legal obligation — to comply with UAE commercial, anti-money-laundering, sanctions, tax, and accounting requirements, and equivalent rules in other jurisdictions.

4. How we use your data

  • Respond to quote requests, contact forms, and direct enquiries.
  • Match buyers and suppliers and facilitate introductions.
  • Issue proposals, contracts, invoices, and trade documentation.
  • Conduct KYC, sanctions, and counter-party due diligence.
  • Maintain accounting, audit, and statutory records.
  • Improve our website, content, and service quality (using aggregated analytics).
  • Send commercial communications where we have a lawful basis to do so.

5. Sharing your data

We do not sell personal data. We share it only with:

  • Counter-parties (suppliers or buyers) where you have asked us to broker an introduction or transaction.
  • Service providers acting on our behalf — hosting, email, analytics, CRM, accounting, and professional advisors — under written confidentiality and data-processing terms.
  • Banks, customs, freight forwarders, and inspection bodies where required to execute a transaction.
  • Regulators, courts, and law-enforcement authorities where legally compelled, including UAE authorities and equivalent bodies abroad.
  • Acquirers or successors in the event of a merger, acquisition, or business transfer (subject to confidentiality).

6. International transfers

Because we operate across global markets, your data may be transferred to and processed in countries outside your own, including the UAE, the European Economic Area, the United Kingdom, the United States, and other jurisdictions where our counter-parties or service providers are located.

Where required, we rely on appropriate safeguards — such as adequacy decisions, the European Commission's Standard Contractual Clauses, the UK International Data Transfer Addendum, or equivalent mechanisms recognised under the UAE PDPL — and apply additional technical and contractual measures where needed.

7. Data retention

We keep personal data only for as long as necessary to fulfil the purposes for which it was collected, and to meet legal, accounting, and regulatory obligations. As a general guide:

  • Enquiry and quote data: up to 24 months from last contact, unless an engagement begins.
  • Active client and counter-party records: for the duration of the engagement plus 7 years for tax and audit purposes.
  • KYC and sanctions records: as required by UAE AML/CFT rules and other applicable laws.
  • Marketing data: until you unsubscribe or object, plus a short suppression period.
  • Server logs and analytics: typically up to 14 months.

8. Your rights

Subject to local law, you may have the right to:

  • Access the personal data we hold about you.
  • Request correction of inaccurate or incomplete data.
  • Request erasure of your data ("right to be forgotten").
  • Restrict or object to certain processing, including direct marketing.
  • Receive your data in a portable, machine-readable format.
  • Withdraw consent where processing is based on consent.
  • Lodge a complaint with the UAE Data Office, your national supervisory authority, the California Privacy Protection Agency, or another competent regulator.
  • Designate an authorised agent to act on your behalf (where local law permits).

9. Region-specific disclosures

California (CCPA/CPRA): In the past 12 months we have collected the categories of data described in section 2 for the business purposes in section 4. We do not "sell" or "share" personal information for cross-context behavioural advertising. California residents may exercise rights to know, delete, correct, and limit the use of sensitive personal information.

Brazil (LGPD): You may contact our team to exercise rights under Articles 18–22 of the LGPD, including confirmation, access, anonymisation, portability, and information about shared third parties.

UAE (PDPL): You may submit complaints to the UAE Data Office where you believe your rights under Federal Decree-Law No. 45 of 2021 have not been respected.

EEA / UK: You may contact your national Data Protection Authority. If we do not have an EU/UK establishment, we will respond directly through info@revosupplier.com.

10. Security

We use industry-standard technical and organisational measures — including TLS encryption in transit, access controls, least-privilege permissions, vendor due diligence, and routine security reviews — to protect personal data. No system is perfectly secure; if a breach affects your data and is likely to result in a high risk to your rights, we will notify you and the relevant authorities as required by law.

11. Children

Our services are directed at businesses. We do not knowingly collect personal data from children under 16. If you believe a child has provided us data, contact us and we will delete it.

12. Changes to this policy

We may update this Privacy Policy from time to time. The "Last updated" date at the top reflects the latest revision. Material changes will be communicated through our website or by direct notice where appropriate.

13. Contact us

Questions, requests, or complaints? Email info@revosupplier.com or write to Revo Supplier FZ-LLC, MBAM0336, Compass Building, Al Hamra Industrial Zone-FZ, Ras Al Khaimah, UAE.

Back to top