Legal
Privacy Policy
Effective date: February 24, 2026 · Revenue Path Group
1. Overview
Revenue Path Group (“we,” “us,” or “our”) operates Navi, a B2B sales intelligence platform. This Privacy Policy explains how we collect, use, and protect information about you when you use the Service.
By using Navi, you agree to the collection and use of information in accordance with this policy.
2. Information We Collect
2a. Information You Provide Directly
- Name and email address when registering or accepting an invitation.
- Password (stored as a one-way bcrypt hash — we never store plaintext passwords).
- Company name and role associated with your account.
2b. Information from Google Sign-In
When you sign in with Google, we request the following permissions and collect the corresponding data:
| Scope | Data Collected & Purpose |
|---|---|
| .../auth/userinfo.email | Your primary Google Account email address, used to identify and link your account |
| .../auth/userinfo.profile | Your name and basic profile information, used to personalize your experience within the app |
| openid | Your Google identity, used to authenticate you via OpenID Connect |
We do not access your Google contacts, Google Drive, Gmail messages, or any other Google data beyond the scopes listed above.
2c. Information from Microsoft Entra ID Sign-In
When you sign in with Microsoft, we request the following permissions and collect the corresponding data:
| Scope | Data Collected & Purpose |
|---|---|
| openid | Your Microsoft user identifier, used to authenticate you |
| Your email address, used to identify and link your account | |
| profile | Your display name and basic profile, used to personalize the app |
| offline_access | A refresh token stored securely, used to maintain your session without requiring you to re-authenticate on every visit |
| Mail.Send | Allows the Email Outreach feature to send emails from your Microsoft account on your behalf, only when you explicitly initiate a send action |
| Mail.Read | Reads email context to enrich sales intelligence and conversation history within Navi |
| OnlineMeetings.ReadWrite | Creates and manages Microsoft Teams meetings for sales activities initiated within the platform |
2d. Usage Data
We collect telemetry and usage data (such as pages visited, features used, and error events) through Azure Application Insights for the purpose of monitoring platform health, diagnosing errors, and improving the Service. This data is associated with your session but is not sold to third parties.
3. How We Use Your Information
We use the information we collect to:
- Authenticate you and maintain your session.
- Provide, operate, and improve the Service.
- Enable features such as signal generation, curating content, and chatting with agents, where you have granted the relevant permissions.
- Monitor platform health and diagnose technical issues.
- Comply with legal obligations.
We do not sell your personal information to third parties.
4. Data Retention
We retain your account data for as long as your account is active or as necessary to provide the Service. If you request account deletion, we will delete or anonymize your personal data within a reasonable timeframe, subject to any legal obligations that require retention.
Microsoft refresh tokens stored for session management are deleted from our database upon account deletion or when you revoke access via your Microsoft account settings.
5. Data Security
We implement industry-standard security measures to protect your data, including encrypted storage, secure token handling, and access controls. OAuth tokens are stored in a secured database and access is restricted to authenticated, server-side processes only.
However, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security.
6. Third-Party Services
The Service integrates with the following third-party providers, each governed by their own privacy policies:
- Google — for Google Sign-In authentication.
- Microsoft Azure — for Microsoft Entra ID authentication, AI services, and email/meeting features.
- OpenAI — for AI-generated content (signal summaries, email drafts, chat responses).
- Neon (PostgreSQL) — for secure database storage.
- SendGrid — for transactional emails such as password reset and invitation emails.
- Upstash Redis — for rate-limiting and session management.
7. Your Rights
Depending on your jurisdiction, you may have the right to:
- Access the personal data we hold about you.
- Request correction of inaccurate data.
- Request deletion of your data.
- Withdraw consent for data processing where consent is the legal basis.
- Revoke Microsoft or Google OAuth permissions at any time via your respective account settings.
To exercise any of these rights, contact us at naviSupport@revenuepathgroup.com.
8. Children's Privacy
Navi is a business-to-business platform intended for professional use. We do not knowingly collect personal information from individuals under the age of 18. If you believe a minor has provided us with personal information, please contact us and we will take steps to delete it.
9. Changes to This Policy
We may update this Privacy Policy periodically. When we do, we will update the effective date at the top of this page. We encourage you to review this policy whenever you use the Service to stay informed about how we protect your data.
10. Contact Us
If you have questions or concerns about this Privacy Policy, please contact us:
Revenue Path Group