Skip to content
LeadSmart AI
Notice: This page is the product's pre-launch scaffold. It covers the topics a real privacy policy must address but is not legal advice and must be replaced with counsel-reviewed or generator-produced copy before paid launch.

Privacy Policy

Last updated: April 17, 2026

1. Introduction

LeadSmart AI (“LeadSmart,” “we,” “us,” or “our”) operates the website leadsmart-ai.com and provides AI-assisted lead management, CRM, SMS follow-up, email automation, and related services (the “Service”). This Privacy Policy explains what information we collect, how we use and share it, and the choices you have.

By using the Service you agree to the practices described here. If you do not agree, please do not use the Service.

2. Information we collect

We collect information in three buckets:

  • Information you give us directly — account details (name, email, phone, brokerage, role), billing information processed through our payment processor, content you create in the Service (lead records, contacts, messages, notes, preferences), and support communications.
  • Information about how you use the Service — pages viewed, features used, device and browser identifiers, IP address, approximate location derived from IP, session duration, referrer, and crash or error diagnostics.
  • Information from integrations you connect — lead sources such as Zillow, Realtor.com, Follow Up Boss, kvCORE, Sierra Interactive, Facebook Lead Ads, Google, and any IDX site you link. We receive only what the integration scope permits.

[REQUIRES LEGAL REVIEW] Enumerate the specific categories of personal information collected for CCPA/CPRA purposes (identifiers, commercial information, internet activity, geolocation, professional information, inferences).

3. How we use information

We use the information described above to:

  • Operate, maintain, and improve the Service.
  • Send automated SMS and email on your behalf to leads and contacts you manage (only where consent has been captured — see section 6, “SMS and email compliance”).
  • Personalize the product experience and generate AI-assisted recommendations.
  • Provide customer support and respond to inquiries.
  • Detect and prevent fraud, abuse, and violations of our Terms of Service.
  • Comply with legal obligations and enforce our rights.
  • Send you product updates, security notices, and (with your consent) marketing communications.

[REQUIRES LEGAL REVIEW] Confirm whether aggregated/de-identified data is used for general model improvement; if so, disclose here with an opt-out.

4. AI processing

LeadSmart uses third-party AI providers — currently OpenAI and Anthropic — to generate messages, summarize calls, and rank leads. When the Service sends data to these providers:

  • Only the content needed for the specific task is transmitted.
  • Providers act as data processors under agreements that prohibit using the data to train their models for other customers.
  • Generated output is treated as your data and subject to the same protections as the input.

[REQUIRES LEGAL REVIEW] Confirm sub-processor DPA terms, list each AI provider and its purpose, and state whether content is retained by the provider after processing.

5. How we share information

We share information only with:

  • Service providers that help us operate the Service — hosting (Vercel, Supabase), SMS delivery (Twilio), email delivery (SendGrid / Resend), payments (Stripe), AI inference (OpenAI, Anthropic), analytics, and customer support tools.
  • Your leads and contacts — messages you or LeadSmart send on your behalf disclose your identity to those recipients.
  • Legal and safety — when required by law, subpoena, court order, or to protect the rights, property, or safety of LeadSmart, our users, or the public.
  • Business transfers — in connection with a merger, acquisition, or sale of assets.

We do not sell personal information in exchange for monetary consideration. [REQUIRES LEGAL REVIEW] Confirm with counsel whether any data sharing constitutes a “sale” or “share” under CCPA/CPRA definitions, which are broader than intuitive.

6. SMS and email compliance

LeadSmart sends SMS and email on your behalf only when consent has been established. By using the Service, you represent and warrant that:

  • You have obtained prior express written consent (as required by the Telephone Consumer Protection Act, 47 U.S.C. § 227, and FCC rules) from every recipient before a marketing SMS is sent on your behalf.
  • For non-marketing SMS (informational / transactional), you have a legitimate business relationship with the recipient.
  • Every marketing email complies with the CAN-SPAM Act, including an unsubscribe link and accurate sender identification.
  • You will honor STOP / UNSUBSCRIBE / HELP requests immediately — LeadSmart automatically suppresses these numbers and addresses on your behalf, but compliance is ultimately your responsibility.

[REQUIRES LEGAL REVIEW] Confirm whether the product signup flow captures written consent that transfers responsibility to LeadSmart for sending messages, or whether the agent / operator remains the sole obligor.

7. Cookies and tracking

We use cookies and similar technologies to keep you signed in, remember preferences, measure usage, and improve the Service. You can control cookies through your browser settings. Blocking essential cookies will break functions like staying signed in.

[REQUIRES LEGAL REVIEW] Add explicit category breakdown (strictly necessary, functional, analytics, advertising) and wire a consent banner for EU/California visitors.

8. Your rights

Depending on where you live, you may have the right to:

  • Access the personal information we hold about you.
  • Correct inaccurate information.
  • Delete your account and associated personal information.
  • Export your data in a portable format.
  • Object to or restrict certain processing.
  • Withdraw consent to marketing communications.
  • Opt out of any “sale” or “sharing” of personal information as defined under CCPA/CPRA (even though we do not believe we engage in either).

To exercise any of these rights, email support@leadsmart-ai.com. We will respond within the timeframes required by applicable law.

[REQUIRES LEGAL REVIEW] Add California-specific “Do Not Sell or Share My Personal Information” link if applicable, plus EU Data Protection Authority contact paths.

9. Retention

We keep personal information for as long as your account is active and for a reasonable period afterward to handle support issues, enforce agreements, and comply with law. When your account is deleted we remove or anonymize personal information within 90 days, except where retention is required for legal, accounting, or fraud-prevention purposes.

[REQUIRES LEGAL REVIEW] Confirm retention windows per data category and align with counsel on minimum legal retention (financial records, TCPA opt-in proof, etc.).

10. Security

We apply industry-standard administrative, technical, and physical safeguards, including encryption in transit (TLS) and at rest, access controls, audit logging, and regular security reviews. No method of transmission or storage is 100% secure, but we work to protect your information and promptly investigate and address incidents.

11. Children

The Service is not directed to children under 16. We do not knowingly collect personal information from children. If you believe we have inadvertently collected information from a child, contact us so we can delete it.

12. Changes to this policy

We may update this Privacy Policy from time to time. Material changes will be notified via email or a prominent notice in the Service at least 30 days before they take effect. The “last updated” date at the top of this page always reflects the current version.

13. Contact

Questions about this Privacy Policy can be directed to support@leadsmart-ai.com.

See also our Terms of Service. ← Back to Home