Titan RevOS is a revenue operating system built for evidence-backed selling and governed execution. References to "we", "us", or "Titan RevOS" mean the entity operating this service.

• • Request-access form: name, work email, company, role, country, and optional notes you submit.
• • Application usage: session tokens, audit events (actions you take inside the app), and metadata needed to enforce access controls.
• • Inferred location: country code from your IP address, used only for pricing region detection. The raw IP is not stored.
• • Standard server logs: request timestamps, status codes, and User-Agent strings retained per our hosting provider's policy.

We do not collect payment card data directly. We do not sell your personal data.

• • To respond to access requests and route leads to the appropriate sales or success team.
• • To operate, secure, and improve the application.
• • To produce audit logs required by the product's own governance model.
• • To detect abuse and enforce rate limits.

Rwanda's Law No. 058/2021 on the Protection of Personal Data and Privacy requires a stated lawful basis for processing personal data. Our bases are:

• • Contract: processing necessary to deliver the service you requested.
• • Legitimate interests: security monitoring, fraud prevention, and product improvement.
• • Consent: the request-access form includes a disclosure; submission constitutes consent to follow-up contact.

Depending on your jurisdiction, you may have the right to:

• • Access the personal data we hold about you.
• • Correct inaccurate data.
• • Delete your data (subject to legal retention obligations).
• • Restrict or object to certain processing.
• • Data portability: receive a copy of your data in a machine-readable format (Rwanda Law 058/2021, Art. 24; CCPA §1798.100).
• • Opt out of sale: we do not sell personal data, so this right is satisfied by default (CCPA §1798.120).

To exercise any of these rights, email privacy@titanrevos.com. We will respond within 30 days.

Data is stored on infrastructure operated by Supabase (PostgreSQL) and Vercel (compute, edge functions). Both providers operate data centres in multiple regions. Rwanda customers: data may be processed outside Rwanda; we rely on appropriate safeguards (standard contractual clauses or equivalent) for such transfers as required by Law 058/2021, Art. 41.

Request-access form submissions are retained until you ask us to delete them or 3 years after last contact, whichever comes first. In-app audit logs are retained per your workspace's configured retention window (default: 2 years). Server logs are retained for 90 days.

We use strictly necessary session cookies (Supabase auth tokens) to keep you logged in. We do not use tracking or advertising cookies. No cookie consent banner is required under our current cookie scope.

Data controller enquiries, rights requests, or complaints: privacy@titanrevos.com

Rwanda users may also lodge a complaint with the Rwanda Utilities Regulatory Authority (RURA), which oversees data protection enforcement under Law 058/2021.