Leado — Privacy Policy

Last updated: 22 May 2026

This Privacy Policy explains how Netgate ("we", "us", "our") collects, uses, stores, and shares personal information when you use the Leado mobile application (the "App") for iOS. By using the App, you agree to this Policy.

1. Who we are

The Leado App is operated by Netgate, an Australian business.

• Contact: info@ngate.com.au
• Website: ngate.com.au

2. Information we collect

Information you provide

• Account details: name, email address, password (when you register or sign in).
• Business details: business name, ABN, logo, address, phone number, payment account details (added in Settings).
• Customer / lead data: the names, phone numbers, email addresses, addresses and job notes of your customers and leads that you enter, import, or that arrive via your inbound lead feeds.
• Quotes & invoices: line items, pricing, payment status, and PDF documents generated by the App.

Information collected automatically

• Device push token: Firebase Cloud Messaging (FCM) registration token used to deliver push notifications.
• Diagnostic data: crash and error logs from the App.

Information from third parties (with your authorisation)

• Inbound lead provider: calls placed to your 1800 number generate a lead record (caller name, phone number, call summary) which is sent to your Leado account.
• AI voice assistant: if you enable optional AI call answering, our AI assistant provider may capture caller details and a summary of the conversation, which it sends to your Leado account.
• Stripe Express: if you enable in-app payments, Stripe collects payer card and identity information directly; we receive payment status and limited metadata.
• Google integrations: if you connect Google Search Console, Google Analytics, or Google My Business, we read data from those services using OAuth scopes you approve. We never receive your Google password and we do not write to those services.

3. How we use information

• To provide the core features of the App (managing leads, sending quotes and invoices, taking payments, showing performance metrics).
• To send transactional emails to you and to your customers on your behalf (via Resend, from info@ngate.com.au).
• To send you push notifications about new leads and reminders.
• To detect and fix bugs and security issues.
• To comply with our legal obligations.

We do not sell your personal information or your customers' personal information. We do not use your data for advertising or for training AI models.

4. Service providers (sub-processors)

We share data only with providers who help us run the App. Each is bound by their own privacy and security obligations.

• Google Firebase — authentication, database (Firestore), file storage, push notifications, and cloud functions. Data is hosted in the United States (us-central1).
• Stripe — payment processing (Stripe Express Connect).
• Transactional email provider — delivery of quote and invoice emails on your behalf.
• AI voice assistant provider — optional AI call answering.
• Google APIs — Search Console, Analytics, and My Business data read on your behalf when you connect those accounts.

5. International data transfer

Your data and your customers' data is stored on Google Firebase servers located in the United States. By using the App you consent to this transfer.

6. How long we keep data

• Account and business data: for as long as your account is active.
• Leads, quotes, and invoices: retained until you delete them or close your account.
• After account closure, data is deleted within 30 days, except where we are required to retain records by law (e.g. Australian tax records).

7. Your rights

Under the Australian Privacy Act 1988 and equivalent overseas laws, you may:

• Request a copy of the personal information we hold about you.
• Ask us to correct or delete your data.
• Withdraw consent for optional features (e.g. AI calls, Google integrations) at any time in the App's Settings.
• Lodge a complaint with the Office of the Australian Information Commissioner (oaic.gov.au).

To exercise these rights, contact us at info@ngate.com.au.

8. Customer data you upload

If you add a customer's details to the App, you are the data controller for that information and you are responsible for having a lawful basis to handle it. We process that data on your behalf as your service provider.

9. Security

We use industry-standard safeguards including encrypted transport (HTTPS), Firebase Authentication, and access controls. No system is perfectly secure; if we become aware of a breach affecting your data we will notify you as required by law.

10. Children

The App is intended for business users aged 18 and over. We do not knowingly collect personal information from children.

11. Changes to this Policy

We may update this Policy from time to time. When we do, we will update the "Last updated" date above and, where the change is material, notify you in the App.

12. Contact

Questions or requests: info@ngate.com.au