Privacy Policy

1. Who we are

We are LeadRecover AI ("[Trading/company details placeholder]"). You can contact us regarding this Privacy Policy by emailing us at hello@leadrecover.ai.

2. What personal data we collect

We may collect and process the following information:

• Contact details: Name, Business name, Email address, Phone number, Business type.
• Enquiry details: Messages, missed-call audit form data, and general correspondence.
• Service data (for clients): Call event data when you use our service, such as caller number, called number, call time, call status, notes, and follow-up status.
• Communication metadata: SMS and email alert metadata.
• Technical data: IP address, browser/device information, and basic analytics/cookie data (if analytics are enabled).

3. How we collect data

We collect data through:

• Website forms you fill out.
• Direct email or phone contact.
• Client phone system integrations.
• Automation workflows such as n8n.
• SMS and email service providers.
• Website analytics and cookies (if enabled).

4. Why we use personal data

We use your personal data to:

• Respond to your enquiries.
• Provide free missed-call audits.
• Set up and operate missed-call recovery workflows for our clients.
• Send alerts and reports.
• Provide customer support.
• Improve our service.
• Meet our legal and accounting obligations.

5. Lawful bases under UK GDPR

Our lawful bases for processing your data include:

• Consent: Where you submit forms or explicitly opt in.
• Contract: To perform a contract with you or take steps before entering one.
• Legitimate interests: For responding to business enquiries, operating the service securely, and service improvement.
• Legal obligation: Where we are required to process data by law.

6. Call data and communications

When a client uses our service, call event data may be processed to trigger alerts, logs, reports, and follow-up workflows. Our clients remain responsible for ensuring their own customers and staff receive appropriate privacy information and, where required, call recording notices and consents.

7. SMS and email notifications

Transactional and service messages may be sent as part of the missed-call recovery workflow. Marketing SMS or email will only be sent where lawful under PECR and UK GDPR.

8. Sharing data with service providers

We may share data with trusted third-party service providers, including:

• Hosting providers.
• Workflow automation platforms (e.g., n8n).
• Email and SMS providers (e.g., Esendex or alternatives).
• Cloud storage and productivity tools (e.g., Google Workspace/Sheets).
• Phone, PBX, and SIP providers.
• Accounting, legal, or professional advisers where needed.

9. International transfers

Some of our service providers may process data outside the UK. Where this happens, we ensure appropriate safeguards are in place to protect your personal data in accordance with UK data protection laws.

10. Data retention

We keep enquiry data only as long as needed to respond and manage our relationship with you. Client service data is kept for the duration of the service and a reasonable period afterwards to handle follow-up queries. Legal and accounting records are kept as required by law (e.g., [Placeholder] years).

11. Individual rights

Under the UK GDPR, you have the right to:

• Access your personal data.
• Rectification of inaccurate data.
• Erasure of your data ("right to be forgotten").
• Restriction of processing.
• Objection to processing.
• Portability of your data.
• Withdraw consent at any time.
• Complain to the ICO (Information Commissioner's Office).

12. Complaints

If you have any concerns about our use of your personal information, you can make a complaint to us at hello@leadrecover.ai.

You can also complain to the ICO if you are unhappy with how we have used your data. The ICO’s address: Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF. Website: ico.org.uk.

13. Security

We use reasonable technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction.