Privacy Policy
Last updated: July 15, 2026
REVA Agent (“REVA Agent”, “the app”, “we”, “us”) is an internal Revenue Cycle Management (RCM) tool operated by The Functionary. This Privacy Policy explains what data the app accesses — in particular Google user data — and how we handle it.
REVA Agent is used by The Functionary's own operations staff. It is not a consumer product and does not offer public sign-up. It requests read-only access to a designated Google Drive folder in order to sync internal billing playbooks.
1. Google user data we access
When an administrator connects REVA Agent to Google, the app requests a single scope:
https://www.googleapis.com/auth/drive.readonly— read-only access to view files and metadata in Google Drive.
Using this access, REVA Agent reads:
- File and folder metadata (name, ID, MIME type, modification time, version, checksum, size, parent folder) for the documents inside one Drive folder that an administrator explicitly configures; and
- The contents of those documents (billing playbooks and standard operating procedures), which are exported or downloaded so their text can be indexed inside the RCM platform.
The app reads only the folder our administrator designates. It does not browse or index a user's entire Drive, and — because access is read-only — it cannot create, modify, move, or delete any file in Google Drive.
2. How we use Google user data
Data obtained from Google Drive is used for one purpose only:
- To keep The Functionary's internal billing playbooks and standard operating procedures synchronized inside REVA Agent, so the tool can validate medical claims against current procedures.
We do not use Google user data for advertising, and we do not use it to train generalized artificial intelligence or machine-learning models.
3. How we store and protect the data
- OAuth tokens are stored encrypted at rest on The Functionary's infrastructure and are used only to perform the sync described above.
- Synced document content is stored within our access-controlled RCM platform, available only to authorized Functionary staff.
- Access is limited to the single administrator-configured folder and can be revoked at any time (see Section 6).
4. Sharing and disclosure
We do not sell Google user data. We do not transfer Google user data to third parties except as necessary to provide the sync feature (for example, our cloud hosting provider acting on our behalf), to comply with applicable law, or as part of a merger or acquisition in which the data is subject to this policy.
Limited Use disclosure. REVA Agent's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.
5. Data retention
Synced document content is retained only while the corresponding files remain in the configured Drive folder and the integration is active. When files are removed from the folder, or when the integration is disconnected, the associated content and OAuth tokens are deleted from our systems.
6. Revoking access
An administrator can disconnect REVA Agent from within the tool at any time, and any Google account owner can revoke the app's access at myaccount.google.com/permissions. Revoking access stops all further syncing.
7. Changes to this policy
We may update this Privacy Policy from time to time. Material changes will be reflected by the “Last updated” date above.
8. Contact us
Questions about this policy or REVA Agent's data practices can be sent to ayman.awartani@thefunctionary.com.