Last updated: 10 May 2026
1 · What we collect
When you sign up for LeadPilot, we collect:
- Account details: name, email address, hashed password
- Authentication metadata from Google OAuth (if you choose that flow)
- Searches you run, leads you generate, and emails you send through our platform
- Email engagement events (opens, clicks, bounces, replies) for messages sent via LeadPilot
2 · What we don't do
- We don't sell your data, your prospects' data, or anyone else's data.
- We don't maintain a resold contact database — every lead is generated for you on-demand.
- We don't use your campaign content to train AI models.
3 · Cookies
We use a single first-party cookie for authentication (session token). No third-party marketing or advertising trackers.
4 · Your rights
You can at any time:
- Export all your data (CSV / JSON) from the dashboard
- Delete your account, which removes all your leads, searches, and messages within 30 days
- Request a copy of all data we hold on you (email privacy@leadpilot.app)
For prospects whose data appears in your account, the lead-level opt-out endpoint at /api/leads/opt-out removes them from our system across all users.
5 · Lawful basis (GDPR Art. 6)
For business contact data sourced from public listings (Google Places, Yelp), we rely on legitimate interest under Article 6(1)(f) for the purpose of B2B outreach, balanced against the data subjects' rights and freedoms.
6 · Contact
Privacy queries: privacy@leadpilot.app.