1. Controller and contact
Revampion AG, Zurich, Switzerland ("Revampion", "we", "us" or "our") is responsible for the processing of personal data described in this Privacy Policy unless a separate agreement states otherwise. You can contact us at hello@revampion.com.
If you contact us on behalf of a company, investor, founder, advisor, fiduciary, asset manager or other organisation, you confirm that you are authorised to share the relevant business contact details and information with us.
2. Scope
This Privacy Policy applies to our website, online communications, inbound enquiries, investor and founder briefings, advisor conversations, and related business development activities. Separate confidentiality agreements, transaction documents, investor documentation, employment documents or due diligence arrangements may provide additional or different rules.
3. Applicable data protection framework
Revampion is based in Switzerland. We process personal data in accordance with the Swiss Federal Act on Data Protection (FADP) and its implementing rules. Where the EU or UK General Data Protection Regulation applies to a particular processing activity, we also apply the relevant GDPR principles, including transparency, purpose limitation, data minimisation, security, retention limitation and respect for data subject rights.
4. Personal data we may process
Depending on how you interact with us, we may process: identification and contact data; role, employer and professional affiliation; investor type, suitability indicators and communication preferences; founder, advisor, company and transaction-related information voluntarily provided to us; NDA status and meeting history; email and correspondence content; website usage data such as IP address, device information, browser type, referring page, pages viewed, timestamps and security logs; and information necessary for compliance, sanctions, anti-money laundering, conflict, fraud prevention or legal assessment purposes.
Please do not send us sensitive personal data, bank details, health data, criminal records, government identifiers or confidential transaction files unless we have specifically requested them and an appropriate secure channel or agreement is in place.
5. Purposes of processing
We process personal data to operate and secure the website; respond to enquiries; arrange confidential founder, investor and advisor conversations; assess whether a potential business, investor or partner relationship may be appropriate; prepare and administer NDAs; maintain professional relationships; protect our rights, people, systems and counterparties; comply with legal, regulatory, accounting and tax obligations; prevent fraud, misuse, unauthorised access or unlawful activity; and improve the quality, relevance and security of our communications.
6. Legal bases
Where a legal basis is required, we rely on one or more of the following: performance of pre-contractual or contractual measures; our legitimate interests in operating, protecting and developing our business; your consent where required; compliance with legal or regulatory obligations; establishment, exercise or defence of legal claims; and, where necessary, overriding public or private interests recognised by applicable law.
7. Website logs, cookies and similar technologies
Our website and infrastructure providers may automatically generate technical logs to deliver pages, maintain security, prevent abuse, diagnose errors and understand basic usage. These logs may include IP address, user agent, request URL, referrer, timestamp and similar technical data.
We do not intentionally use intrusive advertising cookies on this website. If analytics, embedded media, security tools, consent tools or other third-party technologies are added later, this Privacy Policy may be updated and, where required, consent or additional notice will be provided.
8. Hosting, infrastructure and service providers
We may use reputable hosting, content delivery, email, security, collaboration, analytics, legal, accounting, banking, advisory, data room and IT service providers. These providers may process personal data only as necessary to provide services to us, subject to contractual, technical and organisational safeguards appropriate to the nature of the service.
9. Disclosure of personal data
We may disclose personal data to Revampion team members, advisors, lawyers, accountants, auditors, tax advisors, banks, insurers, IT providers, data room providers, potential transaction counterparties, investors, co-investors, fiduciaries, asset managers, authorities, courts or regulators where necessary for the purposes described in this Privacy Policy. We do not sell personal data.
Founder, investor and advisor conversations are treated discreetly. However, confidentiality obligations should be documented separately in an NDA or transaction document when sensitive information is exchanged.
10. International transfers
Personal data may be processed in Switzerland, the European Economic Area, the United Kingdom, the United States or other jurisdictions where our service providers, counterparties or advisors operate. Where required, we use recognised safeguards such as adequacy decisions, contractual commitments, standard contractual clauses, data processing agreements, access controls and risk-based due diligence.
11. Retention
We retain personal data only as long as reasonably necessary for the relevant purpose, including business relationship management, legal limitation periods, regulatory documentation, accounting and tax obligations, dispute prevention, security, transaction assessment, audit trails and legitimate business records. If a relationship does not proceed, we may still retain limited records to document our communications, protect our rights, maintain conflict checks and comply with legal obligations.
12. Security
We use reasonable technical and organisational measures designed to protect personal data against unauthorised access, loss, misuse, alteration or disclosure. No website, email system or internet transmission is completely secure. You should avoid sending highly confidential or sensitive material by ordinary email unless an appropriate secure channel has been agreed.
13. Your rights
Subject to applicable law and limitations, you may request access to your personal data, correction of inaccurate data, deletion, restriction, objection to processing, data portability where applicable, withdrawal of consent where processing is based on consent, and information about certain automated decisions. We may need to verify your identity and may refuse or limit requests where legal privileges, confidentiality, third-party rights, retention obligations, trade secrets, transaction confidentiality or other legal grounds apply.
14. No automated investment decisions
We do not use the website to make automated decisions that produce legal or similarly significant effects for investors, founders or other visitors. Any potential investment, acquisition or partnership process requires human review and separate documentation.
15. Children
This website is intended for adults and professional business users. It is not directed at children, and we do not knowingly collect personal data from children.
16. Updates
We may update this Privacy Policy at any time. The version published on this website is the current version. Material changes may be communicated through the website or other appropriate channels.