Privacy Policy

LeaderHQ (“LeaderHQ,” “we,” “us,” or “our”), a division of Know Freedom Technologies, operates the LeaderHQ command center and the Leader Suite of products (LeaderLeads, LeaderCal, LeaderStreams, LeaderAffiliate, and related services). This Privacy Policy explains what information we collect when you visit our marketing sites or use our products, how we use it, who we share it with, and the choices you have. By using LeaderHQ, you agree to the practices described here.

Information we collect

We collect the following categories of information:

• Account information. Your name, email address, password (stored as a salted hash), and — if you sign in with Google — the basic profile fields Google returns to us.
• Organization data. Information you add to LeaderHQ to run your business: your comp plan, team roster, downline structure, contacts, leads, notes, tasks, and calendar entries.
• Connected accounts. When you link a third-party tool (such as Google Calendar or your MLM back office), we store the OAuth tokens and the data required to deliver the integration. Tokens are encrypted at rest.
• Usage data. Basic product telemetry such as feature usage, page views, error reports, IP address, browser, and device type. We use this to fix bugs and improve the product.
• Billing information. We do not store full payment card numbers. Stripe processes payments and shares back only the subscription metadata required for billing (status, plan, last four digits, expiration).
• Cookies and session data. A first-party session cookie keeps you signed in. See Cookies & tracking below.

How we use it

We use the information we collect to:

• Provide, maintain, and improve the Leader Suite.
• Read your comp plan and connected tools to generate the daily “who to call, what to do” brief that is the core of LeaderHQ.
• Send transactional and account-related email — sign-in codes, password resets, billing receipts, lead alerts, and Memory Moment notifications.
• Process subscriptions, renewals, and refunds.
• Detect, prevent, and respond to fraud, abuse, and security incidents.
• Comply with legal obligations and enforce our Terms of Service.

We do not use your organization data to train machine-learning models for other customers, and we never sell your personal information.

Sharing & third parties

We share information only with the vendors and parties required to operate the service:

• Stripe — payment processing and subscription management.
• Postmark — transactional email delivery (sign-in codes, alerts, receipts).
• Vercel — hosting and content delivery for our marketing sites and web apps.
• Google — when you sign in with Google or connect Google Calendar.
• Self-hosted infrastructure — our application servers and PostgreSQL database run on dedicated infrastructure we manage directly.

We may disclose information if required by law, subpoena, or court order, or to protect the rights, property, or safety of LeaderHQ, our users, or the public. If we are ever involved in a merger, acquisition, or sale of assets, we will provide notice before your information is transferred and becomes subject to a different privacy policy.

Your rights

Regardless of where you live, you can access, correct, export, or delete your account data at any time from inside the app, or by emailing privacy@leaderhq.io.

California residents (CCPA/CPRA): you have the right to know what personal information we collect, to request deletion, to correct inaccurate information, to limit the use of sensitive personal information, and to opt out of any “sale” or “sharing” of your information. We do not sell or share personal information as those terms are defined under California law.

EU/UK residents (GDPR/UK GDPR): you have the right to access, rectify, erase, restrict, and port your personal data, and to object to certain processing. Where we rely on consent, you can withdraw it at any time. Our lawful bases for processing are contract performance (running the service you signed up for), legitimate interests (security, fraud prevention, product improvement), and legal obligation (tax and accounting records).

We will not retaliate against you for exercising any of these rights. We respond to verified requests within 30 days.

Cookies & tracking

We use a small number of first-party cookies, primarily to keep you signed in across the Leader Suite via a shared.leaderhq.iosession cookie. We do not run third-party advertising trackers, fingerprinting scripts, or cross-site behavioral profiling on our marketing sites or in the product.

We may use a privacy-respecting analytics provider to count aggregate page views and feature usage. This data is not tied to your identity and is not shared with advertisers.

Data retention & deletion

We keep your account data for as long as your account is active. When you delete content inside the app, we remove it from our primary database promptly and from encrypted backups within 90 days.

When you close your account, we delete your organization data within 30 days, except where we are required to retain certain records — such as billing invoices for tax and accounting compliance — for the period prescribed by law. Server logs containing IP addresses are retained for up to 90 days for security and abuse-prevention purposes.

To request immediate deletion, email privacy@leaderhq.io from the address on file.

Security

We use industry-standard technical and organizational safeguards to protect your information: encryption in transit (TLS 1.2+), encryption at rest for OAuth tokens and other sensitive fields, hashed passwords, scoped database credentials, and least-privilege access for our team. No method of transmission or storage is perfectly secure, but we work hard to limit access and respond quickly if something goes wrong.

Children

LeaderHQ is not directed to children under 16, and we do not knowingly collect personal information from anyone under 16. If you believe a child has provided us with personal information, contact us and we will delete it.

International data transfers

LeaderHQ is operated from the United States. If you access the service from outside the U.S., you understand that your information will be transferred to, stored in, and processed in the United States. Where required, we rely on Standard Contractual Clauses or equivalent safeguards for cross-border transfers.

Changes to this policy

We may update this Privacy Policy as the product evolves. When we do, we will revise the effective date above and, for material changes, notify account holders by email at least 14 days before the change takes effect.

Contact us

For privacy requests, data deletion, or questions about this policy, reach out to: