Privacy Policy – Leader Connect (Meta Lead Ads)

Last updated: 15 Aug 2025

Leader (“we”, “our”, “us”) provides Leader Connect, a business tool that lets our customers
connect their Facebook Pages and receive leads generated via Meta (Facebook) Lead Ads directly
into their Leader account or API. This policy explains how we handle data received from Meta.

Who is the controller?

For Meta Lead Ads, our customers (the businesses that connect their Pages) are the
data controllers. Leader acts as their data processor/service provider, processing lead data
on their behalf and under their instructions.

What data do we process?

When a customer connects a Facebook Page and enables Lead Ads, we may receive:

  • Lead form responses (e.g., name, email, phone, and any custom questions configured in the form)
  • Form identifiers and metadata (form_id, leadgen_id, page_id, ad_id/adset_id/campaign_id where available)
  • Timestamps related to the lead submission

During onboarding we also obtain a Page access token to subscribe the Page to Meta’s leadgen
webhook. Tokens are stored securely and are used only to maintain the connection and deliver leads.

How do we use the data?

  • To deliver lead data from Meta to our customer’s Leader workspace and/or to the API endpoint
    the customer configures inside Leader
  • To operate, secure, and troubleshoot the connection (e.g., verifying subscriptions, handling
    retries, auditing abuse)

We do not sell lead data. We do not use lead data for our own marketing.

Sharing

We share lead data only with: (a) the customer’s Leader workspace and their configured systems
(per their settings).

Retention

Lead payloads and related logs are retained only as long as necessary to provide the service, comply with law, or as instructed by our customer. Customers can request deletion at any time (see “Data deletion”).

Optional auto-anonymization. Customers may enable an anonymization policy that automatically removes personal contact fields (e.g., name, email, phone) from stored leads after a customer-defined period (e.g., 34 days). When enabled, we retain only non-personal attribution data (such as form/campaign/ad identifiers and timestamps) so the customer can analyze channel performance without storing personal details.

Security

We use industry-standard technical and organizational measures to protect data in transit and at rest,
including TLS and restricted access controls.

Your rights

If you submitted a lead on Facebook and want to access, correct, or delete it, please contact the
business (Page) that collected your lead. You may also contact us and we will assist the controller
in responding to your request.

Data deletion

Instructions are available here: https://www.leader.online/meta-data-deletion.

Contact

For privacy questions or requests, please use our Support Center contact form:
https://www.leader.online/support.
We respond to verified requests and, where applicable, will coordinate with the relevant Facebook Page owner (data controller).

This policy applies specifically to our processing of data received from Meta (Facebook) Lead Ads via Leader Connect.
For our general privacy practices, please contact us using the details above.