You have the right to access, delete, or restrict the use of your personal data, and you can exercise these rights either through the Revolut app or by emailing dpo@revolut.com.
This analysis describes what Revolut's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
Knowing your rights and the practical steps to exercise them means you can actively control what Revolut knows about you and how it uses that information.
You can request a copy of all data Revolut holds about you, ask for it to be deleted, or stop Revolut using it for marketing purposes at any time, with clear contact details and in-app tools provided to make this practical.
Cross-platform context
See how other platforms handle User Rights Over Personal Data and similar clauses.
Compare across platforms →Monitoring
Revolut has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 10 platforms.
"Your rights: you have control over your personal data. You can ask for a copy of it, ask us to delete it or ask us to stop using it (especially for marketing) by contacting dpo@revolut.com. You can also manage your privacy preferences directly in-app.— Excerpt from Revolut's Revolut Privacy Policy
(1) REGULATORY LANDSCAPE: UK GDPR provides data subjects with rights including access, erasure, restriction of processing, data portability, objection, and rights in relation to automated decision-making. These rights are enforceable against the controller and must generally be responded to within one month. The ICO can investigate complaints about failure to honour these rights and impose enforcement action. (2) GOVERNANCE EXPOSURE: Medium. Providing clear rights exercise mechanisms and responding within statutory timeframes is a core UK GDPR compliance obligation. A dedicated DPO email address is disclosed, which is consistent with best practice; however, the volume of rights requests in a large fintech operation creates operational compliance challenges. (3) JURISDICTION FLAGS: UK GDPR governs these rights for UK customers. For EEA customers, EU GDPR rights apply under the relevant Revolut EU entity. California residents have CCPA rights including the right to know, delete, and opt out of sale if a US entity is involved. Response timeframes and rights scope vary by jurisdiction. (4) CONTRACT AND VENDOR IMPLICATIONS: Where personal data has been shared with third-party processors, the ability to fulfil erasure or portability requests depends on the data processing agreements in place with those processors. Legal teams should ensure DPAs include provisions enabling Revolut to fulfil subject rights requests that affect data held by processors. (5) COMPLIANCE CONSIDERATIONS: Compliance teams should audit the subject rights request handling process to confirm response timeframes, identity verification procedures, and documentation practices meet UK GDPR standards. The in-app privacy preference mechanism should be tested to confirm it accurately reflects and updates processing activities. Escalation paths to the ICO should be clearly communicated to users who are not satisfied with Revolut's response.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Watcher: 10 platforms + same-day alerts. No credit card required.
Professional Governance Intelligence
Need to monitor specific governance provisions?
Professional includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
Knowing your rights and the practical steps to exercise them means you can actively control what Revolut knows about you and how it uses that information.
You can request a copy of all data Revolut holds about you, ask for it to be deleted, or stop Revolut using it for marketing purposes at any time, with clear contact details and in-app tools provided to make this practical.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Revolut.