Our Commitment To You

Privacy Policy

Last Updated: July 2, 2025

1. Introduction

This Privacy Policy explains how Lead Mapper collects, uses, stores, and shares personal data when you use our services. Lead Mapper is operated as a sole proprietorship by [Your Full Name], based in [Your Address], and is committed to complying with the General Data Protection Regulation (GDPR) and other applicable data protection laws.

2. Controller Information

Lead Mapper
Andrin Iten
Sankt Gallen, Switzerland

3. Data We Process

Account and Contact Data

  • Name, email address, phone number, address
  • Login credentials (hashed)

Customer Relationship Data (CRM Sync)

  • Data synchronized from your connected CRM (e.g., names, emails, phone numbers, notes, tasks)

Usage and Device Data

  • IP address, browser type, operating system, device type
  • Interactions within the app
  • Timestamps and log data

Location Data

  • Anonymized geolocation and routing data for map and optimization features

Payment and Subscription Data

  • Transaction metadata (amount, currency, timestamp)
  • Billing email address (via Stripe, RevenueCat)

Communication Data

  • Messages sent via Crisp Chat

4. Purposes and Legal Basis for Processing

  • Account setup and management: Art. 6(1)(b) GDPR
  • CRM synchronization: Art. 6(1)(b), (f) GDPR
  • Routing/geolocation tools: Art. 6(1)(b), (f) GDPR
  • Usage analytics (Google, PostHog): Art. 6(1)(a) GDPR (consent)
  • Payment processing: Art. 6(1)(b), (f) GDPR
  • Customer support (Crisp Chat): Art. 6(1)(b), (f) GDPR
  • Legal compliance: Art. 6(1)(c) GDPR

5. Data Sharing and Subprocessors

We only share data with third parties to the extent necessary for operating our service:

  • Firebase (Google) – Backend hosting – USA
  • Supabase – Data storage – USA
  • Stripe – Payment processing – USA
  • RevenueCat – Subscription management – USA
  • Google Analytics – Usage analytics – USA/EU
  • PostHog – Analytics – EU
  • Crisp Chat – Customer support – France
  • Mapbox – Geolocation (anonymized) – USA
  • Geoapify – Geolocation (anonymized) – Germany
  • HERE Technologies – Routing (anonymized) – Germany

Standard Contractual Clauses (SCCs) and other safeguards are in place for all transfers to third countries.

6. International Transfers

Data may be transferred to countries outside the EU/EEA, primarily the USA. Such transfers are conducted under valid legal mechanisms such as SCCs.

7. Data Retention

Personal data is retained for as long as necessary to provide the services, fulfill legal obligations, and resolve disputes. Upon account deletion, data will be erased unless legal obligations require retention.

8. Data Subject Rights

  • Access to your personal data (Art. 15 GDPR)
  • Rectification (Art. 16 GDPR)
  • Erasure (“right to be forgotten”) (Art. 17 GDPR)
  • Restriction of processing (Art. 18 GDPR)
  • Data portability (Art. 20 GDPR)
  • Objection to processing (Art. 21 GDPR)
  • Withdrawal of consent (Art. 7(3) GDPR)

To exercise these rights, contact: [Your Email Address]

9. Security

Lead Mapper implements appropriate technical and organizational security measures, including encryption, access controls, logging, and secure data centers. Regular audits and incident response mechanisms are in place.

10. Cookies and Tracking

We use cookies and tracking technologies for:

  • Analytics (Google Analytics, PostHog)
  • Application performance

Consent is obtained where required. You can manage cookie preferences in your browser settings.

11. Children

Lead Mapper is not intended for children under 16 years of age. We do not knowingly collect personal data from children.

12. Updates to this Policy

We may update this Privacy Policy as required by law or business changes. The latest version is always accessible via our website or app.

13. Contact

Contact Us