Revolut explicitly promises it will never sell your personal data to third parties for money.
This analysis describes what Revolut's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
This is a meaningful consumer protection commitment that goes beyond a legal minimum, particularly relevant for users aware of data broker practices in the financial technology industry.
This provision provides assurance that Revolut's data sharing practices do not include selling your personal data, distinguishing commercial data sharing from data sales, though the policy does permit sharing with third-party service providers and partners for service delivery purposes.
Cross-platform context
See how other platforms handle Commitment Not to Sell Personal Data and similar clauses.
Compare across platforms →Monitoring
Revolut has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 10 platforms.
"Our promises: we will always keep your personal data safe. We will never sell your personal data. We will always try to give you as much control as possible over how we use your personal data.— Excerpt from Revolut's Revolut Privacy Policy
(1) REGULATORY LANDSCAPE: In the UK context, this commitment is voluntary and exceeds the baseline requirements of UK GDPR, which does not specifically prohibit data sales but requires a lawful basis for any sharing. Under the CCPA in California, businesses must provide opt-out rights for data sales; this commitment would satisfy that requirement if Revolut serves California residents through any US entity. The FTC monitors deceptive practices, and any breach of this stated commitment could constitute an unfair or deceptive act. (2) GOVERNANCE EXPOSURE: Low as a standalone provision, but medium from an audit and enforcement perspective. The commitment creates a binding representation to users; any undisclosed arrangement that could be characterized as a data sale, including certain data sharing for advertising or analytics purposes, could expose Revolut to regulatory scrutiny and reputational risk if the definition of 'sell' is interpreted broadly. (3) JURISDICTION FLAGS: California's CCPA defines 'sale' broadly to include sharing for valuable consideration; legal teams should confirm that Revolut's data sharing arrangements with advertising or analytics partners do not meet the CCPA definition of a sale if any US-facing entity is involved. UK GDPR does not use the sale concept but requires lawful bases for all sharing. (4) CONTRACT AND VENDOR IMPLICATIONS: This commitment should be reflected in data processing agreements with third-party vendors to ensure no downstream arrangement inadvertently constitutes a data sale. Procurement teams should review commercial data sharing arrangements against this representation. (5) COMPLIANCE CONSIDERATIONS: Compliance teams should maintain documentation confirming that no data sharing arrangement meets the definition of a sale under applicable law, particularly CCPA if US operations are in scope, and should conduct periodic reviews of commercial data arrangements against this public commitment.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Watcher: 10 platforms + same-day alerts. No credit card required.
Professional Governance Intelligence
Need to monitor specific governance provisions?
Professional includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
This is a meaningful consumer protection commitment that goes beyond a legal minimum, particularly relevant for users aware of data broker practices in the financial technology industry.
This provision provides assurance that Revolut's data sharing practices do not include selling your personal data, distinguishing commercial data sharing from data sales, though the policy does permit sharing with third-party service providers and partners for service delivery purposes.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Revolut.