Lead Monster

Privacy Policy

Last updated: May 4, 2026

LeadMonster ("LeadMonster", "we", "our", or "us") provides a signal-based prospecting platform that helps founders and sales teams identify and reach the right prospects at the right time. This Privacy Policy explains what information we collect, how we use it, when we share it, and the choices you have. It applies to your use of our website, applications, and services (collectively, the "Service").

By using the Service, you agree to the collection and use of information in accordance with this policy.

1. Information We Collect

Information you provide

  • Account information. When you sign up, we collect your name, email address, password (stored hashed), and workspace details.
  • Billing information. Subscription payments are processed by Stripe. We do not store full payment card numbers; we receive limited identifiers (e.g., last four digits, card brand, billing country) and subscription status from Stripe.
  • Workspace content. Information you input into the Service, including target customer profiles, search criteria, lead lists, notes, tags, and conversation drafts.
  • Communications. Messages you send to us (e.g., support requests, feedback) and your responses to surveys.

Information we collect automatically

  • Usage data. Pages viewed, features used, click events, search queries, session timing, and similar interaction data, collected via product analytics.
  • Device and log data. IP address, browser type and version, operating system, referring URL, and timestamps.
  • Cookies and similar technologies. Authentication cookies (to keep you signed in), preference cookies (e.g., theme), and analytics cookies. See "Cookies" below.

Information from third parties

  • Public buying-signal data. The Service surfaces publicly available information about companies and decision-makers — including funding announcements, job postings, leadership changes, technology footprint, and public social posts — aggregated from public sources and licensed data providers. We do not collect or surface non-public personal data scraped from private accounts or behind login walls, except where ingestion is performed under your own credentials at your direction (e.g., when you connect a LinkedIn account for your workspace).
  • Connected accounts. If you connect a third-party account (e.g., email, calendar, or LinkedIn) to the Service, we receive the data and tokens needed to perform the connected actions you authorize.

2. How We Use Information

  • To provide, maintain, and improve the Service.
  • To authenticate you and secure your account.
  • To process subscriptions, billing, and renewals.
  • To generate, score, and rank prospect signals on your behalf.
  • To communicate with you about your account, product updates, and support.
  • To send marketing communications where permitted; you can opt out at any time using the unsubscribe link or by emailing us.
  • To detect, investigate, and prevent fraud, abuse, and security incidents.
  • To comply with legal obligations and enforce our terms.

3. Legal Bases (EEA / UK)

If you are in the European Economic Area or the United Kingdom, we process your personal data on the following legal bases: performance of a contract (to provide the Service), legitimate interests (to operate, secure, and improve the Service and pursue prospecting activities you direct), consent (where required, e.g., for certain cookies or marketing), and compliance with legal obligations.

4. Sharing of Information

We share information only as described below:

  • Service providers (subprocessors). Vendors that help us operate the Service under written contracts with confidentiality and security obligations, including, without limitation:
    • Convex — application database and authentication
    • Stripe — payment processing
    • Vercel — application hosting
    • Cloudflare — content delivery, storage, and security
    • PostHog — product analytics
    • Resend — transactional and marketing email delivery
    • Browserbase — managed browser infrastructure for signal ingestion
    • OpenAI — large language model processing for signal extraction and ranking
    • Typesense — search indexing
  • Within your workspace. Content you create within a workspace may be visible to other members of that workspace.
  • Business transfers. In connection with a merger, acquisition, financing, or sale of assets, we may transfer information as part of that transaction, subject to standard confidentiality protections.
  • Legal and safety. When we believe disclosure is required to comply with applicable law, legal process, or governmental request, or to protect the rights, property, or safety of LeadMonster, our users, or others.
  • With your consent. When you direct us to share information with a third party.

We do not sell personal information for monetary consideration.

5. International Data Transfers

LeadMonster operates primarily in the United States, and our service providers may be located in the United States or other countries. Where required, we rely on appropriate safeguards such as Standard Contractual Clauses for cross-border transfers of personal data from the EEA, UK, and Switzerland.

6. Data Retention

We retain personal information for as long as your account is active and for a reasonable period thereafter to comply with legal obligations, resolve disputes, and enforce agreements. Workspace content is generally deleted within 30 days after account deletion, except where we are required to retain records longer (for example, billing records for tax purposes).

7. Your Rights and Choices

Depending on where you live, you may have the right to access, correct, delete, port, or restrict the processing of your personal information, and to object to certain processing. You may exercise these rights by emailing [email protected]. We will respond within the time required by applicable law. You also have the right to lodge a complaint with your local data protection authority.

California residents have additional rights under the CCPA/CPRA, including the right to know what personal information we collect and the right to request deletion. We do not sell or "share" personal information for cross-context behavioral advertising as those terms are defined under California law.

8. Cookies

We use cookies and similar technologies for the following purposes:

  • Strictly necessary: authentication, security, and core functionality.
  • Preferences: remembering your settings, such as theme.
  • Analytics: understanding how the Service is used so we can improve it.

You can control cookies through your browser settings. Disabling strictly necessary cookies may impair Service functionality.

9. Security

We implement administrative, technical, and physical safeguards designed to protect personal information, including encryption in transit, access controls, and security monitoring. No method of transmission or storage is completely secure; if you suspect unauthorized access to your account, contact us immediately at [email protected].

10. Children

The Service is intended for use by businesses and is not directed to children under 16. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, contact us and we will take appropriate action.

11. Third-Party Links and Services

The Service may contain links to or integrate with third-party websites and services. We are not responsible for the privacy practices of those third parties and encourage you to review their privacy policies.

12. Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you by email or through the Service before the changes take effect. The "Last updated" date at the top reflects the most recent revision.

13. Contact Us

Questions, requests, or concerns? Email [email protected] or visit leadmonster.co.

Lead Monster