RefreshLeads AI

Privacy Policy

Last updated: December 29, 2025

1. Introduction

RefreshLeads AI (“we,” “our,” or “us”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service.

2. Information We Collect

2.1 Account Information

When you create an account, we collect:

  • Email address (via Google OAuth or Magic Link)
  • Name (from your Google profile, if applicable)
  • Organization name

2.2 Usage Data

We automatically collect:

  • Job creation and execution data
  • Credits usage and billing information
  • Search queries and parameters
  • Suppression list uploads

2.3 Technical Data

  • IP address
  • Browser type and version
  • Device information
  • Session data

3. How We Use Your Information

We use collected information to:

  • Provide and maintain our service
  • Process your email discovery jobs
  • Manage your account and billing
  • Send service notifications
  • Improve our service and user experience
  • Comply with legal obligations

4. Data Storage and Security

Your data is stored securely using Supabase (Postgres database) with:

  • Encryption at rest and in transit (TLS 1.3)
  • Row-Level Security (RLS) for tenant isolation
  • API keys encrypted with industry-standard encryption
  • Regular security audits and updates

5. Data Sharing

We do not sell your personal information. We may share data with:

  • Service Providers: Supabase (hosting), Stripe (payments), email validation services
  • Legal Requirements: When required by law or to protect our rights
  • Business Transfers: In connection with a merger, acquisition, or asset sale

6. Your Rights (GDPR & CCPA)

You have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Request deletion of your data
  • Object to or restrict processing
  • Data portability
  • Withdraw consent

To exercise these rights, contact us at: privacy@refreshleadsai.com

7. Cookies and Tracking

We use:

  • Essential Cookies: For authentication and session management
  • Analytics: PostHog for usage analytics (anonymized)
  • Error Tracking: Sentry for error monitoring

8. Data Retention

We retain your data:

  • Account data: Until you delete your account
  • Job results: 90 days after job completion
  • Billing records: 7 years (legal requirement)
  • Suppression lists: Until you delete them

9. Children's Privacy

Our service is not intended for users under 18. We do not knowingly collect data from children.

10. International Data Transfers

Your data may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place.

11. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of material changes via email or in-app notification.

12. Contact Us

For privacy-related questions or requests, contact us at:

  • Email: privacy@refreshleadsai.com
  • Address: [Your Company Address]