Privacy Policy

Last updated: June 28, 2026

This Privacy Policy explains how LeedECard (“LeedECard,” “we,” “us”) collects, uses, and protects information when you use our website and services at leedecard.com (the “Service”). By using the Service you agree to the practices described here. If you do not agree, please do not use the Service.

Information we collect

Information you provide

  • Account information — your email address and authentication details when you sign up (including via Google sign-in).
  • Card content — the name, title, photo, contact details, services, links, and styling you add to your digital business card(s).
  • Lead information — details that people submit through your card’s contact form (such as their name and contact info), which we store so you can follow up with them.
  • Billing information — when you subscribe to Pro, payments are processed by Stripe. We do not store your full card number; Stripe handles payment data under its own privacy policy.

Information collected automatically

  • Usage and analytics — anonymous events such as card views and link clicks, used to give you basic analytics about your card.
  • Technical data — standard server logs (e.g. IP address, browser type) used to operate and secure the Service.

Google account data & Gmail

LeedECard offers an optional feature that sends follow-up emails to your leads from your own Gmail account. If you choose to connect Gmail, Google asks you to grant the https://www.googleapis.com/auth/gmail.send permission.

  • We use this access only to send the follow-up emails you set up, from your account, on your behalf.
  • We do not read, search, or store the contents of your inbox. The gmail.send scope is send-only and does not grant us read access to your mail.
  • We securely store the OAuth refresh token needed to send on your behalf. It is held server-side with restricted access and is never exposed to your browser or to other users.
  • You can disconnect Gmail at any time from the Sequences page in your dashboard, which revokes our stored token and stops all sending. You can also revoke access directly at myaccount.google.com/permissions.

Limited Use disclosure. LeedECard’s use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. We do not use Google user data for advertising, do not sell it, and do not transfer it except as needed to provide the sending feature you requested, to comply with law, or as part of a merger or acquisition.

How we use information

  • To operate and maintain your card(s), lead capture, analytics, and follow-up features.
  • To send the follow-up emails you configure (via your connected Gmail) and transactional emails about your account.
  • To process subscriptions and billing through Stripe.
  • To secure the Service, prevent abuse, and comply with legal obligations.

Service providers

We share data only with providers that help us run the Service, under their own privacy terms:

  • Supabase — database, authentication, and storage.
  • Vercel — application hosting.
  • Stripe — subscription billing.
  • Google — sign-in and, if you connect it, Gmail sending.
  • OpenAI — generating draft follow-up text from the lead details you provide. We do not send your Gmail contents to OpenAI.

We do not sell your personal information.

Data retention & deletion

We keep your information for as long as your account is active. You can delete your cards and leads from your dashboard. To delete your account and associated data, contact us at [email protected] and we will remove it, except where we must retain limited records to meet legal or accounting obligations.

Security

We use industry-standard measures — encryption in transit, access controls, and row-level security on our database — to protect your data. No method of transmission or storage is 100% secure, but we work to safeguard your information.

Your rights

Depending on where you live, you may have rights to access, correct, export, or delete your personal data. To exercise any of these, email us at [email protected].

Children

The Service is not directed to children under 16, and we do not knowingly collect their personal information.

Changes to this policy

We may update this policy from time to time. We will revise the “Last updated” date above and, for material changes, provide additional notice where appropriate.

Contact

Questions about this policy or your data? Email [email protected]. See also our Terms of Service.