Last updated: January 15, 2025

Privacy Policy

Your privacy is our priority. Here's how we protect and handle your data.

GDPR Compliant
CCPA Compliant
SOC 2 Certified

Quick Navigation

1. Overview

At LeadFlex, we are committed to protecting your privacy and ensuring transparency about how we collect, use, and safeguard your personal information. This Privacy Policy explains our practices regarding data handling for our AI-powered lead generation services.

Our Commitment: We never sell your personal data and only use it to provide and improve our services.

2. Data We Collect

We collect different types of information to provide you with the best possible service:

Account Information

  • Name, email address, phone number
  • Company name and role
  • Billing and payment information
  • Account preferences and settings

Usage Data

  • Platform interactions and feature usage
  • Search queries and filters applied
  • Campaign performance metrics
  • Login times and session duration

Technical Data

  • IP address and device information
  • Browser type and version
  • Operating system and screen resolution
  • Referral source and page views

3. How We Use Your Data

We use your information exclusively for legitimate business purposes:

  • Service Delivery: Provide AI-powered lead generation and targeting
  • Account Management: Manage your subscription and billing
  • Customer Support: Respond to inquiries and provide assistance
  • Platform Improvement: Analyze usage patterns to enhance our services
  • Communication: Send important updates, security alerts, and feature announcements
  • Compliance: Meet legal obligations and prevent fraud

Legal Basis: We process data based on contract performance, legitimate interests, and legal compliance (GDPR Articles 6(1)(b), 6(1)(f), and 6(1)(c)).

4. Data Sharing

We do not sell, rent, or trade your personal information. We only share data in these limited circumstances:

  • Service Providers: Trusted third parties who help us operate our platform (payment processing, hosting, analytics)
  • Legal Requirements: When required by law, court order, or to protect our legal rights
  • Business Transfers: In the event of a merger, acquisition, or sale of assets
  • Consent: When you explicitly authorize us to share your information

Third-Party Services: Stripe (payments), AWS (hosting), Google Analytics (anonymized usage data). All partners are contractually bound to protect your data.

5. Data Storage & Retention

Your data is stored securely and retained only as long as necessary:

  • Active Accounts: Data retained while your account is active
  • Closed Accounts: Personal data deleted within 90 days of cancellation
  • Legal Requirements: Some records kept for tax, legal, or regulatory compliance (typically 7 years)
  • Anonymized Data: Usage statistics may be retained indefinitely in anonymized form

Data Location

Primary data centers: United States (AWS US-East), European Union (AWS EU-West) for GDPR compliance. Data is encrypted in transit and at rest.

6. Your Privacy Rights

You have comprehensive rights regarding your personal data:

Access

Request a copy of all personal data we hold about you

Rectification

Correct any inaccurate or incomplete personal information