Privacy Policy

Last updated: April 6, 2026

1. Introduction

Leadly ("we", "our", or "us") is committed to protecting your personal information. This Privacy Policy explains what data we collect, how we use it, and your rights regarding that data when you use the Leadly web application (the "Service").

2. Information We Collect

We collect the following categories of information:

  • Account information: Your email address and password (stored as a secure hash) when you register.
  • Lead data: Names, email addresses, project types, deal values, notes, and follow-up records you enter into the Service. This data belongs to you.
  • Usage data: Pages visited, actions taken (e.g., marking a follow-up complete), and timestamps. Used to improve the Service.
  • Payment information: Billing details for Pro subscriptions, handled entirely by Stripe. We never store card numbers or CVVs.

3. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve the Service
  • Send follow-up reminder emails to you (not to your leads without your action)
  • Process subscription payments and manage your billing
  • Respond to support requests and communicate important updates
  • Detect and prevent fraudulent or abusive activity

We do not sell your data to third parties. We do not use your lead data for advertising purposes.

4. Data Storage and Security

Your data is stored in Supabase (PostgreSQL), hosted on AWS infrastructure with encryption at rest and in transit. Row-level security (RLS) policies ensure that users can only access their own data.

The Service is hosted on Vercel and delivered over HTTPS. While we implement reasonable security measures, no system is completely secure and we cannot guarantee absolute security.

5. Cookies

We use session cookies provided by Supabase Auth to keep you logged in. These are strictly necessary for the Service to function and cannot be disabled while using Leadly. We do not use third-party tracking or advertising cookies.

6. Third-Party Services

We use the following third-party services to operate Leadly:

  • Supabase — authentication and database (supabase.com)
  • Stripe — payment processing (stripe.com)
  • Resend — transactional email delivery (resend.com)
  • Vercel — web hosting and deployment (vercel.com)

Each of these services has its own privacy policy and processes data only as necessary to provide their services to us.

7. Data Retention

We retain your account and lead data for as long as your account is active. If you delete your account, your data will be permanently removed from our systems within 30 days, except where we are required to retain it by law (e.g., payment records for tax purposes).

8. Your Rights

You have the right to:

  • Access — request a copy of the personal data we hold about you
  • Correction — update or correct inaccurate data via your account settings
  • Deletion — delete your account and all associated data at any time from Settings
  • Portability — request an export of your lead data

To exercise any of these rights, contact us at hello@leadlyapp.net.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by email or via an in-app notice. The "Last updated" date at the top of this page reflects the most recent revision.

10. Contact

If you have any questions or concerns about this Privacy Policy, please reach out at hello@leadlyapp.net.