LocalLeadSignal
Sign in

Privacy Policy

Effective June 9, 2026

1. Introduction

LocalLeadSignal LLC (“LocalLeadSignal,” “we,” “us,” or “our”) operates the LocalLeadSignal platform at localleadsignal.com (the “Platform”). We provide AI-powered local marketing management services to small and medium-sized businesses in the United States, including medical practices, law firms, financial and professional service providers, and other local service businesses.

This Privacy Policy explains how we collect, use, disclose, and protect information when you use our Platform and services, and when we collect publicly available business information for our own marketing. By using LocalLeadSignal, you agree to the collection and use of information in accordance with this policy.

If you have questions, contact us at privacy@localleadsignal.com.

2. Roles: Controller and Processor

For information about your own business (your account, your business profile, your billing details), LocalLeadSignal acts as a controller.

For information about your customers, patients, clients, leads, or website visitors that we process on your behalf (for example, leads captured through a lead-capture form we install on your website, or visitor analytics we read from your connected analytics accounts), you are the data controller and LocalLeadSignal acts solely as your service provider/processor. You are responsible for having a lawful basis and any required notices or consents for that information, and for your own privacy obligations to those individuals. We process such information only to provide the contracted service and in accordance with your instructions and this policy.

3. Information We Collect

3.1 Information You Provide

  • Business profile information: business name, address, phone number, website URL, business category, and service descriptions
  • Account credentials: email address and hashed password for your LocalLeadSignal account
  • Third-party platform authorizations: tokens, credentials, or similar grants you provide to authorize the Platform to read from and write to services your business uses (such as local listings platforms, content management systems, professional and social networking accounts, and analytics services) on your behalf
  • Business questionnaire responses: information about your services, target customers, specialties, and geographic service area
  • Photographs and media: images and other media you upload for use in your content library, which may include identifiable individuals where you have provided the required consents and releases (see Section 5)
  • Payment information: billing name, address, and payment card details, processed directly by our third-party payment processor; we do not store full card numbers on our servers
  • Communications: emails, support requests, and any feedback you send to us

3.2 Information Generated Through the Service

  • AI-generated content: blog posts, local listings updates, review-response drafts, and email content created on your behalf using third-party large language model providers
  • Content approval records: timestamps and decisions when you approve or reject AI-generated content, or when content is published automatically under your publication settings
  • Audit reports: the personalized local marketing audit generated from publicly available data prior to or during onboarding
  • Published content logs: records of content published to your website, GBP, connected platforms, and email subscribers
  • Lead-capture data: information submitted by visitors through any lead-capture form we install on your website, which we process on your behalf as described in Section 2
  • Terms acceptance records: when you accept the Terms of Service, Privacy Policy, and Acceptable Use Policy at signup, we record the document version, timestamp, IP address, and user agent

3.3 Information Collected Automatically

  • Usage data: pages visited, features used, login timestamps, session duration, and interaction events
  • Device and browser information: browser type, operating system, and IP address
  • Log data: server logs, error reports, and performance metrics
  • Cookies and similar technologies: see Section 9 below

3.4 Information from Third Parties

  • Public business data: publicly available information about your business (name, address, phone, category, listing health, review counts and ratings) retrieved from the third-party platforms on which your business is listed
  • Payment processor: our payment processor provides transaction confirmations, subscription status, and dispute notifications

4. How We Use Your Information

We use the information we collect to:

  • Provide the Service: create, schedule, and publish AI-generated marketing content to your website, Google Business Profile, connected platforms, and email list on your behalf
  • Manage your local marketing presence: publish content, upload photos, and maintain listing accuracy on the third-party platforms you have authorized the Platform to access
  • Generate personalized content: calibrate AI content agents to match your business voice, vertical, and local market context
  • Process payments: manage your subscription, billing, and plan changes via our payment processor
  • Communicate with you: send service notifications, content-approval requests, monthly performance digests, and support responses
  • Improve the Platform: analyze usage patterns, diagnose errors, and improve AI content quality
  • Comply with legal obligations: respond to lawful requests, enforce our Terms, and meet regulatory requirements
  • Protect security: detect, prevent, and respond to fraud, abuse, and security incidents

5. Photographs, Faces, and Generated Imagery

Where you upload photographs or media, or use any feature that generates or edits imagery (including AI editing or face-related features where offered), you are responsible for obtaining and maintaining all rights, consents, and releases from any identifiable individual depicted, and for compliance with applicable right-of-publicity and biometric-privacy laws (such as the Illinois Biometric Information Privacy Act and similar state laws). The Platform may flag images that appear to contain identifiable faces for your confirmation, but that flagging is a convenience only and does not transfer responsibility to LocalLeadSignal or constitute legal review. Do not upload images of individuals for whom you do not hold the necessary consents.

6. How We Share Your Information

6.1 Service Providers

We engage third-party vendors who help us operate the Platform. These vendors are contractually bound to protect your data and to process it only in accordance with our instructions and this Privacy Policy. Categories of vendors we engage include cloud infrastructure providers (computing, database, file storage, and transactional email); large language model providers (to which prompts containing your business name, category, and service context are sent to generate marketing content from the inputs you provide); payment processors; browser-automation and listings/citation providers (used to publish and correct listings on platforms that do not expose direct APIs); and product-analytics providers. We may add, remove, or change vendors from time to time, provided that we maintain equivalent confidentiality, security, and data-processing obligations with any replacement.

6.2 Legal Disclosures

We may disclose your information if required by law, court order, or governmental authority, or to protect the rights, property, or safety of LocalLeadSignal, our customers, or the public.

6.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred. We will provide notice before your information becomes subject to a different privacy policy.

6.4 What We Do Not Do

  • We do not sell your personal information to third parties
  • We do not share your business data with competitors or use it for advertising
  • We do not use your customers’ information (e.g., patient, client, or lead data) for any purpose beyond delivering the contracted service

7. Healthcare, Legal, and Financial Industry Customers

7.1 Healthcare Customers (HIPAA)

LocalLeadSignal does not process Protected Health Information (PHI) and is not a HIPAA Business Associate. We do not execute Business Associate Agreements. Do not transmit patient-identifying information, treatment records, diagnostic data, or any other PHI to LocalLeadSignal through the Platform, in support communications, in content prompts, in photo uploads, or in any other channel.

Our AI content pipeline generates marketing content from publicly available information and the general service descriptions you provide; it does not operate on individual patient records. Note that responding to online reviews can itself implicate HIPAA: any review-response feature is a drafting aid only, the drafts are designed to avoid confirming a patient relationship or clinical detail, and you remain responsible for reviewing and approving every response before it is posted. If you inadvertently include PHI in a prompt, questionnaire, photo, or support communication, you remain the sole data controller for that information. LocalLeadSignal assumes no obligation to monitor or audit your content for compliance; on notice, LocalLeadSignal may purge the data and disclaims responsibility for downstream uses or legal liability under HIPAA, except to the extent caused by LocalLeadSignal’s gross negligence or willful misconduct. The customer’s licensed practitioner of record carries professional liability for all content published under their name.

7.2 Legal Services Customers (UPL)

We provide marketing content management only, not legal advice. We do not access client files, case information, or attorney-client privileged communications. You are responsible for ensuring AI-generated content complies with your state bar’s advertising rules and unauthorized-practice-of-law (UPL) regulations. Review all content before publication.

7.3 Financial and Tax Services Customers

We provide marketing content management only, not financial, investment, securities, insurance, or tax advice. Do not submit client financial-account data, tax returns, investment-account information, or other confidential client financial records. You are responsible for ensuring AI-generated content complies with applicable SEC, FINRA, state, and IRS advertising and conduct rules.

7.4 No Third-Party Rights

This Privacy Policy and our Terms of Service are solely for the benefit of LocalLeadSignal and the registered Customer. No end-user, patient, consumer, lead, or client of the Customer is an intended third-party beneficiary of this policy. This does not limit any rights such individuals may have directly against the Customer as the controller of their information, or any non-waivable rights they may have under applicable law.

8. Data Retention

  • Account and billing data: retained for 7 years following account closure for tax and financial record-keeping
  • Published content logs: retained for 3 years to support performance reporting and dispute resolution
  • Lead-capture data: retained on your behalf for the duration of your account and deleted or returned within 90 days following account termination, unless you request earlier deletion
  • Support communications: retained for 2 years
  • Usage and analytics data: aggregated anonymized data retained indefinitely; identifiable logs retained for 12 months
  • Authorization tokens: revoked promptly following account termination and deleted in the ordinary course of routine data hygiene
  • Terms acceptance records: retained indefinitely as a legal compliance record

You may request deletion of your account and data at any time by emailing privacy@localleadsignal.com. We will honor deletion requests except where, and only for as long as, retention is required for our legal, tax, accounting, or dispute-resolution obligations.

9. Cookies and Tracking Technologies

  • Strictly necessary cookies: session management, authentication tokens, and CSRF protection, required for the Platform to function
  • Analytics cookies: usage tracking via a third-party product-analytics service to understand feature adoption, anonymized where possible
  • Preference cookies: storing your UI preferences such as dashboard layout

You can control cookies through your browser settings. Disabling strictly necessary cookies will prevent use of the Platform. We do not use advertising cookies or sell cookie data.

10. Security

  • Encryption in transit: industry-standard transport security for all data between your browser and our servers
  • Encryption at rest: industry-standard encryption with managed keys for databases and file storage, with logical isolation between customer tenants
  • Access controls: role-based access control (RBAC) and least-privilege service permissions
  • Secrets management: API keys and authorization tokens are held in a dedicated secrets-management system and are never embedded in application code
  • Authentication: multi-factor authentication available for all accounts

No security system is impenetrable, and no method of electronic transmission or storage is 100% secure. LocalLeadSignal cannot and does not guarantee that unauthorized access, hacking, data loss, or security breaches will never occur. In the event of a security incident affecting your account data, LocalLeadSignal will provide notification to the extent, and within the timelines, required by applicable state or federal law.

The Platform is operated from the United States. All processing and storage of your data occurs in the United States.

11. Your Privacy Rights

11.1 All Users

  • Access your account data through the Platform dashboard at any time
  • Update or correct your business profile information
  • Delete your account by emailing privacy@localleadsignal.com
  • Revoke Google Business Profile or other OAuth access through the relevant provider’s settings
  • Request an export of your account data, including published content metadata, in a portable format by emailing privacy@localleadsignal.com

11.2 California Users (CCPA/CPRA)

California residents have the following rights:

  • Right to know: request information about categories and specific pieces of personal information collected
  • Right to delete: request deletion of your personal information, subject to exceptions
  • Right to correct: request correction of inaccurate personal information
  • Right to opt out of sale or sharing: we do not sell or share personal information for cross-context behavioral advertising
  • Right to non-discrimination: we will not discriminate for exercising CCPA rights

Submit California privacy requests to privacy@localleadsignal.com with subject line “California Privacy Request.”

12. Children’s Privacy

The Platform is for business use only and is not directed to individuals under 18. We do not knowingly collect personal information from minors. Contact privacy@localleadsignal.com if you believe we have inadvertently collected such information.

13. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated by email at least 14 days before the change takes effect. The most current version is always available at localleadsignal.com/privacy.

14. Contact Us

LocalLeadSignal LLC

Email: contact@localleadsignal.com

Privacy Requests: privacy@localleadsignal.com

Website: localleadsignal.com

Mailing Address: 1713 Doris Walter Lane, Saint Charles, MO 63303