Privacy Policy
Last updated: 30 June 2026
This Privacy Policy explains how LeadSnipper Technologies (“we”, “us”) collects, uses, stores, and protects personal information when you use our websites, applications, and services, including LeadSnipper (cold email and outbound) and SocialSnipper (LinkedIn content and scheduling), and when you make purchases through our platform (collectively, the “Services”).
1. Who we are
LeadSnipper Technologies operates LeadSnipper and SocialSnipper. For privacy requests, contact privacy@leadsnipper.com or hello@leadsnipper.com. Our principal place of business is in Indore, Madhya Pradesh, India.
2. Information we collect
- Account data: name, email, password hash, company details, timezone, product preference (LeadSnipper or SocialSnipper), and onboarding responses.
- Billing and payment data: subscription plan, invoices, transaction references, and billing email. Card and UPI details are processed by our payment provider (Razorpay); we do not store full payment card numbers on our servers.
- Usage and technical data: IP address, device and browser metadata, API logs, feature usage, and security events.
- LeadSnipper — email and outreach data: domains and senders you verify, lead and recipient lists you upload, campaign content, delivery and engagement metrics (opens, clicks, bounces, complaints), mailbox configuration for warmup, and optional encrypted mailbox credentials for deliverability features.
- LeadSnipper — verification data: email addresses submitted for verification (including via Reoon or similar providers) and verification results.
- SocialSnipper — LinkedIn data: only data you authorize through LinkedIn's official OAuth connection, such as profile identifiers, posting permissions, scheduled content, and analytics about your published posts. We do not store your LinkedIn password.
- Communications: support messages, approval notifications (e.g. Telegram or WhatsApp where you connect them), and product emails you opt into.
- Cookies and similar technologies: session cookies, authentication tokens, and analytics on our marketing site (see Section 8).
3. Gmail and Google Workspace Data
When you connect a Google / Gmail account to LeadSnipper (for example to send cold-email campaigns or enable email warmup), we access data through Google's official OAuth 2.0 APIs. This section explains exactly what we access, why, and your rights.
3a. What Gmail data we access
- Send email on your behalf — we use the
gmail.sendscope to compose and deliver outbound messages (campaigns and warmup emails) that you authorise. - Read warmup replies — we use the
gmail.readonlyorgmail.modifyscope solely to detect auto-generated warmup replies so we can mark them as read and move them out of your inbox. We never read your personal or business emails. - OAuth tokens — we store encrypted OAuth access and refresh tokens so your mailbox stays connected without you needing to re-authenticate every session.
- We do not access attachments, contacts, calendar data, drafts, or any other Gmail data beyond what is explicitly listed above.
3b. Why we access Gmail data
- Campaign sending: to deliver the outbound emails you set up inside LeadSnipper, using your mailbox as the sending address.
- Email warmup: to send and receive low-volume warmup messages that improve your domain's sender reputation with email providers.
- Deliverability monitoring: to detect bounces and warmup-reply threads so we can report accurate metrics to you.
3c. How long we store Gmail data
- OAuth tokens are retained for as long as your sending account is connected. They are deleted immediately when you disconnect the account or delete your LeadSnipper account.
- Sent-email metadata (subject, recipient, timestamp, open/click status) is retained for up to 24 months or until you request deletion, whichever comes first.
- Message content (body text) of emails sent through our platform is retained for up to 90 days to support delivery retries and reporting, then permanently deleted.
- Warmup reply content is never stored — we only process it in memory to perform the inbox-cleanup action and immediately discard it.
3d. We do not sell Gmail data
We never sell, rent, share, or monetise any data obtained through Google APIs — including Gmail data — to third parties. Gmail data is used exclusively to provide the LeadSnipper features you have explicitly enabled. It is not used for advertising, profiling, training AI models, or any other purpose unrelated to operating the Service on your behalf.
3e. How to revoke Google access
You can revoke LeadSnipper's access to your Google account at any time using either of the following methods:
- Inside LeadSnipper: go to Settings → Sending Accounts, find the Gmail address, and click Disconnect. This immediately invalidates our stored tokens.
- Via Google Account settings: visit myaccount.google.com/permissions and remove LeadSnipper from the list of connected apps. Once revoked, we will be unable to access your Gmail and no further emails will be sent through that account.
3f. How to delete your Gmail data
To request deletion of all Gmail-related data we hold about you:
- Email privacy@leadsnipper.com with the subject line "Gmail Data Deletion Request". Include the Gmail address(es) connected to your account.
- We will permanently delete all OAuth tokens, sent-email metadata, and any stored message content associated with that address within 30 days of receiving your verified request.
- You may also delete your entire LeadSnipper account from Settings → Account → Delete Account, which triggers immediate deletion of all your data including Gmail data.
4. How we use information
- Provide, operate, and secure the Services and your account.
- Process subscriptions, usage-based credits, and payments through Razorpay.
- Send and track email campaigns, verify leads, and optimize deliverability on your instructions (LeadSnipper).
- Generate, schedule, publish, and analyze LinkedIn content you approve (SocialSnipper).
- Detect abuse, enforce our terms, and protect platform integrity.
- Improve accuracy, reliability, and product experience.
- Send service notices; send marketing only where you have opted in.
5. Legal bases (where applicable)
For users in the EEA, UK, and similar jurisdictions, we process personal data based on: (a) contract — to provide the Services you sign up for; (b) legitimate interests — security, fraud prevention, and product improvement; (c) consent — where required (e.g. marketing, optional integrations); and (d) legal obligation — tax, accounting, and lawful requests.
6. Sharing with third parties
We share data only as needed to run the Services:
- Infrastructure: cloud hosting, CDN, logging, and monitoring (e.g. AWS).
- Email delivery: AWS SES (managed or your BYO-SES credentials you connect).
- Email verification: Reoon or comparable verification providers when you use verification features.
- Payments: Razorpay for checkout, subscriptions, and refunds per our Refund Policy.
- LinkedIn: official LinkedIn APIs when you connect SocialSnipper.
- Analytics: privacy-oriented or product analytics tools to understand usage.
- Legal and safety: when required by law or to protect rights, safety, and integrity of the Services.
We do not sell your personal information. We require processors to handle data under appropriate contractual safeguards.
7. International transfers
Your data may be processed in India and other countries where our providers operate. We use reputable vendors and appropriate safeguards (including standard contractual clauses where applicable) for cross-border transfers.
8. Data retention
We retain account, billing, and usage records while your account is active and as needed for legal, tax, and security purposes. Campaign and lead data are retained per your plan and deletion requests. Logs may be kept for a limited period for security auditing. You may request account deletion; some records may be retained where required by law.
9. Cookies
Our marketing site and app use essential cookies for authentication and security. We may use analytics cookies to understand traffic; you can control non-essential cookies through your browser settings where available.
10. Your responsibilities (customer data)
When you upload leads or connect LinkedIn, you act as the controller of that contact data. You must have a lawful basis (consent, legitimate interest where permitted, etc.) and comply with CAN-SPAM, GDPR, CASL, India's DPDP Act, and other laws applicable to you. We process recipient data only on your documented instructions as a processor.
11. Your rights
Depending on your location, you may have rights to access, correct, delete, restrict, or port your personal data, and to object to certain processing. To exercise these rights, email privacy@leadsnipper.com. You may lodge a complaint with your local supervisory authority where applicable.
12. Security
We use encryption in transit, access controls, and monitoring. Sensitive credentials (e.g. mailbox or API secrets) are encrypted at rest where stored. No method is 100% secure; protect your account credentials.
13. Children
The Services are for business users aged 18 and over. We do not knowingly collect data from children under 16.
14. Changes
We may update this policy when our practices or legal requirements change. We will update the “Last updated” date and, for material changes, provide notice through the Service or email.
15. Contact
Privacy questions: privacy@leadsnipper.com. General support: hello@leadsnipper.com.