How we collect, use, share, and protect your personal information — including the AI systems we use, the processors we rely on, and the rights you have.
Last updated · 18 April 2026
This Privacy Policy explains how RevOps Rocks Pty Ltd (ACN 670 974 606) (“we”, “us”) handles personal information collected through the RevOps Roles website and related services (the “Service”).
We comply with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs). We also take reasonable steps to comply with the EU and UK General Data Protection Regulations and the California Consumer Privacy Act / California Privacy Rights Act where those laws apply to you. Your specific rights under each regime are set out in Section 10.
This Privacy Policy should be read alongside our Terms and Conditions.
We only collect information that is reasonably necessary to run the Service. In summary:
Legal bases under the GDPR: performance of a contract (account and posting services), our legitimate interests (analytics, product improvement, fraud prevention), consent (non-essential cookies, marketing where applicable), and legal obligation (tax, accounting, responding to lawful requests). Under the APPs, we collect personal information that is reasonably necessary for, or directly related to, one or more of our functions or activities.
We do not sell your personal information, and we do not share it with third parties for their own direct marketing.
We use large language models to automatically classify job listings into our taxonomy, to extract metadata such as tools and seniority, and to flag potential quality issues. For this purpose we send job listing text(the employer’s own job description, title, and company name) to Anthropic, PBC, our AI processor, via the Claude API.
We do not send user accounts, saved searches, email addresses, or other user personal information to Anthropic as part of this classification. Anthropic processes the data on our behalf under its commercial API terms, which do not permit Anthropic to use API inputs or outputs to train its foundation models.
The AI’s output is informational only. It does not produce any legal or similarly significant automated decision about you.
This processing is carried out by us as data controller for the narrow purpose described above. It is not a permission for third parties to use RevOps Roles content, classifications, or any other Service data to train or develop their own AI or machine-learning models — which remains prohibited under our Terms and Conditions.
Most listings on the Service are discovered automatically from third-party applicant tracking systems (for example Greenhouse, Lever, Ashby, SmartRecruiters, Workable, Workday, and others). When you click Applyon a listing, you leave RevOps Roles and are taken to the employer’s own application page on their ATS. From that point onwards, any information you submit (including your CV, contact details, and answers to their questions) is collected and controlled by the employer and their ATS, not by us. Their own privacy policy applies.
We do not receive a copy of your application, and we do not know which roles you applied to unless you tell us.
We use the following service providers to run RevOps Roles. Each is engaged under its own data processing terms and handles personal information only as needed to provide its service to us.
| Processor | Purpose | Location |
|---|---|---|
| Supabase | Database, authentication, file storage | AWS, Mumbai (ap-south-1) |
| Vercel | Website hosting and serverless functions | United States (global edge) |
| Railway | Background workers, Meilisearch, Redis | United States |
| Cloudflare | CDN, DNS, edge proxies | Global |
| Stripe | Payment processing for paid job postings | United States |
| Resend | Transactional and alert email delivery | United States |
| PostHog | Product analytics, session metrics | United States or European Union (per instance) |
| Anthropic | AI classification of job listings (see “Automated processing and AI” below) | United States |
| Brandfetch | Company logo lookup | European Union |
We may also disclose personal information where required by law, in response to a valid legal process, or to protect our rights, users, or the public from harm.
We use a small number of cookies and similar technologies:
We do not use third-party advertising or cross-site tracking cookies.
Our database is hosted in AWS’s Asia Pacific (Mumbai) region. Many of our other processors (including Vercel, Railway, Stripe, Resend, PostHog, and Anthropic) are based in the United States. This means that if you are located in Australia, the EU/UK, or elsewhere, your personal information may be transferred to and stored in countries whose data protection laws differ from those in your country of residence.
We rely on APP 8 for transfers out of Australia, on Standard Contractual Clauses (or applicable adequacy decisions) for transfers out of the EU/UK, and we take reasonable steps to ensure that overseas recipients handle your personal information consistently with this Policy.
We may retain information for longer where required by law or where we reasonably need to retain it to defend legal claims.
Under the APPs you have the right to request access to the personal information we hold about you, and to ask us to correct it if it is inaccurate, out of date, incomplete, irrelevant, or misleading. We will respond to access and correction requests within a reasonable time (usually within 30 days).
If you have a privacy concern, please contact us first (see Section 14). If you are not satisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au.
Subject to the conditions set out in the GDPR and UK GDPR, you have the right to access, rectify, erase, restrict processing of, and port your personal information, and to object to processing based on our legitimate interests. Where we process data on the basis of consent, you may withdraw consent at any time without affecting the lawfulness of prior processing. You may lodge a complaint with your local data protection authority.
Under the CCPA/CPRA you have the right to know what personal information we have collected, to request deletion, to request correction, and to opt out of the sale or sharing of personal information. We do not sell or share personal information as those terms are defined under the CCPA/CPRA. The processors listed in Section 6 act as service providers or contractors under the CCPA/CPRA and are contractually restricted from using your personal information for their own commercial purposes. We will not discriminate against you for exercising these rights.
To exercise any of the above rights, email us at hello@revopsroles.com. We may need to verify your identity before we action a request.
We take reasonable steps to protect personal information from misuse, interference, loss, and unauthorised access, modification, or disclosure. These include encryption in transit (HTTPS), hashed passwords, access controls, and monitoring. No system is perfectly secure, and we cannot guarantee absolute security.
If a data breach likely to result in serious harm occurs, we will notify affected individuals and the OAIC in accordance with the Notifiable Data Breaches scheme (Part IIIC of the Privacy Act). Where the GDPR or UK GDPR applies, we will notify the relevant supervisory authority within 72 hours of becoming aware of the breach where required, and affected individuals without undue delay where the breach is likely to result in a high risk to their rights and freedoms.
RevOps Roles is intended for use by adults. The Service is not directed at children under 16 and we do not knowingly collect personal information from them. If you believe a child has provided personal information to us, please contact us and we will delete it.
We may update this Privacy Policy from time to time. When we do, we will update the “Last updated” date at the top of the page. For material changes, we will take reasonable steps to notify account holders (for example by email) before the changes take effect.
Privacy questions, access or correction requests, and complaints can be sent to hello@revopsroles.com. Please put “Privacy” in the subject line so we route it correctly.