Built for Australian dealer-grade security and compliance.

1Data residency

All data is hosted in Australia (Supabase AU region). It is never transferred offshore. It is never used for AI training outside your dealership's context — your customer data trains nothing.

2Encryption

• → Encrypted in transit (TLS 1.3) and at rest (AES-256)
• → Database access restricted by row-level security per dealership — no cross-dealership data exposure is architecturally possible
• → Credentials never stored in plaintext

3ACMA + Privacy Act compliance

• → Mandatory opt-out on every first message
• → Contact hours enforced server-side: Mon–Fri 9am–8pm, Sat 9am–5pm, no Sundays
• → DNC register check before every voice call
• → Complete audit trail of every message, call, opt-out, and compliance event — exportable for ACMA queries in minutes
• → Independent AU legal review of disclosure standards (ACL s18 + Privacy Act)

4AI transparency

Every first message identifies as a virtual assistant: "Hi, this is [Salesperson]'s virtual assistant from [Dealership]..." This disclosure is hardcoded and validated before every send — it cannot be bypassed by configuration. Customers always know they're talking to an AI, and can be connected to a human at any point.

This satisfies Australian Consumer Law s18 (no misleading conduct) and Privacy Act obligations. Reviewed by an AU lawyer.

5Your data is yours

• → Month-to-month subscription, cancel anytime
• → Full CSV export on cancellation delivered within 7 days
• → All data deleted from our systems within 30 days of cancellation
• → No vendor lock-in, no exit fees, no contract

6Founder accountability

• → Founder personally responsible for security incidents
• → Direct contact: hello@revlos.com.au
• → Response within 24 hours for security concerns