Frequently asked questions to help your business

How do I sign up for a business account?

We are not currently accepting applications to be included in the app. However, if your company is added to our database, you may then receive a subject access request (SAR) enabling you to action the request through our preliminary secure verification process, without the need for an account.

Details of how you can sign up with an enhanced Revoke Business Plus account will be made available soon.

Which countries is Revoke for businesses available in?

Revoke is currently available to businesses with a registered head office or physical presence within the European Economic Area (EEA).

This includes the following countries: 
Austria, Belgium, Bulgaria, Croatia, Republic of Cyprus, Czech Republic, Denmark, Estonia, Finland, France, Germany, Gibraltar, Greece, Hungary, Iceland, Ireland, Isle of Man, Italy, Jersey, Latvia, Liechtenstein, Lithuania, Luxembourg, Malta, Netherlands, Norway, Poland, Portugal, Romania, Slovakia, Slovenia, Spain, Sweden, Switzerland and the United Kingdom.

If your country is not on the above list, please register your details here and one of our customer support team will contact you.

Is this available on a Mac/PC?

Revoke is a consumer mobile application (iOS and Android) with a business portal for organisations that is fully compatible with Macs and PCs.

Can businesses charge a subject for requesting their data?

You cannot charge the person (or their agent) for obtaining their data on their behalf under the GDPR, provided the request is not unreasonable. All requests made via Revoke are basic requests under the GDPR.

Can a business insist that a subject follows a specific process to obtain their personal data?

If a subject has requested correspondence by email, the business is obliged to respond and correspond by email.

What happens if my company does not respond within 30 days?

If a company does not fulfill its obligations with respect to the GDPR, then it could face a fine of up to 20 million euros or an amount equivalent to 4% of annual revenues, globally, always opting for the largest financial year. Regulatory bodies will consider several factors to determine the fine, including its nature, severity and, of course, the duration of the infraction. Likewise, the level of damage suffered by individuals and any action taken by the organization to mitigate the damage suffered by individuals will be considered. Regulatory agencies may impose a wide range of penalties, including the prohibition of processing personal data. In addition, organizations that fail to comply with the GDPR may be subject to private claims for compensation by individuals or consumer protection entities on behalf of individuals.

Is GDPR a legislation?


When did GDPR begin?

May 25th, 2018.

What is GDPR replacing?

The GDPR replaces the 1995 EU Data Protection Directive and goes into force on May 25, 2018. It also supersedes the 1998 UK Data Protection Act.

Cyber Essentials certified logo

Cyber Essentials Certified

We take security seriously which is why we’ve been assessed and certified for addressing cybersecurity effectively and mitigating the risk from Internet-based threats.