Privacy Policy

1. Introduction

LeadEdge ("we", "us", "our") operates the leadedge.dev website and API service. This Privacy Policy explains how we collect, use, and protect your personal information when you use our service.

2. Information we collect

We collect the following information:

Account information: When you sign up using Google or GitHub OAuth, we receive your email address and display name from the authentication provider. We do not receive or store your passwords.

API usage data: We log API requests including endpoint, method, response time, and status code for rate limiting and service monitoring. We do not log request or response bodies.

Payment information: Payment processing is handled entirely by Stripe. We store your Stripe customer ID and subscription status but never have access to your credit card number or payment details.

3. How we use your information

We use your information to:

— Provide and maintain the LeadEdge API service

— Authenticate your API requests

— Enforce rate limits and usage quotas

— Process subscription payments via Stripe

— Send service-related communications (outages, breaking changes)

We do not sell, rent, or share your personal information with third parties for marketing purposes.

4. Data storage and security

Your data is stored in Supabase (PostgreSQL) with row-level security enabled. API keys are stored as SHA-256 hashes — we cannot see or recover your full API key after creation. All data is transmitted over HTTPS/TLS. Our infrastructure runs on Railway with automated deployments and monitoring.

5. Third-party services

We use the following third-party services:

Supabase — database and authentication (privacy policy)

Stripe — payment processing (privacy policy)

Railway — hosting infrastructure (privacy policy)

Google / GitHub — OAuth authentication

6. Data retention

We retain your account information for as long as your account is active. API usage logs are retained for 90 days. Signal data is retained indefinitely as part of the service's historical record. If you delete your account, your personal information and API keys will be removed within 30 days. Anonymized usage statistics may be retained.

7. Your rights

You have the right to:

— Access the personal data we hold about you

— Request correction of inaccurate data

— Request deletion of your account and data

— Export your data in a machine-readable format

To exercise any of these rights, contact us at support@leadedge.dev.

8. Cookies

We use essential cookies only for authentication session management. We do not use tracking cookies, analytics cookies, or advertising cookies.

9. Changes to this policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by updating the "Last updated" date and, where appropriate, by email. Continued use of the service after changes constitutes acceptance of the updated policy.

10. Contact

If you have any questions about this Privacy Policy, contact us at support@leadedge.dev.