LeaCall is an AI-powered lead qualification platform that uses advanced voice agents to automate outbound calls, smart follow-ups, and lead scoring, helping businesses qualify leads faster and more cost-effectively.

How does AI voice calling work?

Our AI voice agents use natural language processing to have human-like conversations with leads. They can ask qualifying questions, handle objections, schedule appointments, and score leads based on their responses.

Can LeaCall integrate with my CRM?

Yes, LeaCall integrates seamlessly with popular CRMs including Salesforce, HubSpot, Pipedrive, and many others. All call data and lead scores are automatically synced to your CRM.

Is it LeaCall, Lea Call, LeCall, or Le Call?

Our official brand name is LeaCall (one word, capital L and C). You might see it written as Lea Call, LeCall, Le Call, or Lecall — they all refer to the same AI-powered lead qualification platform at leacall.com.

LeaCall | AI-Powered Lead Qualification Platform

LeaCall is committed to protecting personal data and ensuring compliance with the General Data Protection Regulation (GDPR) and other applicable data protection laws. This page outlines our data protection practices, your rights as a data subject, and the technical and organizational measures we implement to safeguard your information.

1. Our Role in Data Processing

LeaCall as Data Processor

When you use LeaCall to manage your calling campaigns, we act as a Data Processor on your behalf. You (our customer) are the Data Controller, determining the purposes and means of processing personal data of your leads and contacts.

LeaCall as Data Controller

For your account information, billing details, and platform usage data, LeaCall acts as the Data Controller and processes this data in accordance with our Privacy Policy.

2. Data Processing Agreement (DPA)

LeaCall provides a comprehensive Data Processing Agreement (DPA) that governs how we process personal data on your behalf. Our DPA includes:

Description of processing activities and categories of data
Our obligations as a Data Processor under Article 28 GDPR
Sub-processor list and notification procedures
Standard Contractual Clauses (SCCs) for international transfers
Technical and organizational security measures
Data subject rights assistance procedures
Data breach notification commitments
Audit rights and compliance verification

To request our DPA, please contact clients@leacall.com

3. Data Residency & Dedicated Hosting

Enterprise Data Residency Options

For enterprise clients with specific data residency requirements, LeaCall offers dedicated server hosting in your preferred geographic region:

European Union

Germany (Frankfurt)
France (Paris)
Netherlands (Amsterdam)
Ireland (Dublin)

Other Regions

United Kingdom (London)
United States (Multiple)
Canada (Toronto)
Custom locations on request

With dedicated hosting, your data never leaves your chosen jurisdiction. All call data, recordings, transcripts, and lead information are stored exclusively in your designated region.

4. Legal Basis for Processing

LeaCall processes personal data based on the following legal grounds:

Contract Performance (Art. 6(1)(b)): Processing necessary to provide our Services
Legitimate Interests (Art. 6(1)(f)): Platform security, fraud prevention, and service improvement
Legal Obligation (Art. 6(1)(c)): Compliance with applicable laws and regulations
Consent (Art. 6(1)(a)): Where specifically required, such as for marketing communications

5. Data Subject Rights

Under GDPR, individuals have the following rights regarding their personal data:

Right of Access

Obtain confirmation of processing and access to your data

Right to Rectification

Correct inaccurate or incomplete personal data

Right to Erasure

Request deletion of your personal data

Right to Restriction

Limit processing in certain circumstances

Right to Portability

Receive data in a structured, machine-readable format

Right to Object

Object to processing based on legitimate interests

Rights Related to Automated Decisions

Not be subject to solely automated decisions with legal effects

Right to Withdraw Consent

Withdraw consent at any time where processing is based on consent

For LeaCall Customers: Exercise your rights by contacting support@leacall.com

For End Users (Leads/Contacts): If you received a call through LeaCall and wish to exercise your rights, please contact the company that called you directly. They are the Data Controller responsible for your data. You may also contact LeaCall at support@leacall.com, and we will assist in directing your request appropriately.

6. International Data Transfers

When personal data is transferred outside the European Economic Area (EEA), LeaCall ensures adequate protection through:

Adequacy Decisions: Transfers to countries with EU adequacy decisions (e.g., UK, Canada, Japan)
Standard Contractual Clauses: EU-approved SCCs for transfers to other countries
EU-U.S. Data Privacy Framework: For U.S. sub-processors that are certified
Supplementary Measures: Additional technical and organizational safeguards where required

Enterprise customers can eliminate international transfers entirely by choosing EU-only data residency.

7. Technical & Organizational Measures

LeaCall implements comprehensive security measures in accordance with Article 32 GDPR:

Technical Measures

AES-256 encryption for data at rest
TLS 1.3 encryption for data in transit
End-to-end encryption for call recordings
Multi-factor authentication (MFA)
Role-based access control (RBAC)
Regular vulnerability scanning and penetration testing
Intrusion detection and prevention systems
Automated backup and disaster recovery

Organizational Measures

SOC 2 Type II certification
Employee security awareness training
Background checks for personnel with data access
Incident response procedures
Business continuity planning
Regular security audits by independent third parties
Data minimization and purpose limitation practices

8. SOC 2 Compliance

SOC 2 Type II Certified

LeaCall maintains SOC 2 Type II certification, demonstrating our commitment to the highest standards of security, availability, processing integrity, confidentiality, and privacy.

Our SOC 2 certification covers:

Security: Protection against unauthorized access
Availability: System availability as per service commitments
Processing Integrity: Complete, valid, accurate, and timely processing
Confidentiality: Protection of confidential information
Privacy: Collection, use, retention, and disposal of personal information

Enterprise customers may request our SOC 2 report under NDA by contacting clients@leacall.com

9. Data Breach Notification

In the event of a personal data breach, LeaCall will:

Notify affected customers within 72 hours of becoming aware of a breach affecting their data
Provide detailed information about the nature of the breach, data affected, and remedial measures
Assist customers in fulfilling their own notification obligations to supervisory authorities and data subjects
Document all breaches and response actions
Implement measures to prevent recurrence

10. Sub-Processors

LeaCall engages carefully vetted sub-processors to deliver our Services. All sub-processors are bound by data processing agreements with equivalent protections to those we provide to you.

We maintain an updated list of sub-processors and will notify customers of any changes, providing an opportunity to object to new sub-processors in accordance with our DPA.

To request our current sub-processor list, contact support@leacall.com

11. Data Retention & Deletion

We retain personal data only for as long as necessary for the purposes outlined in our Privacy Policy. Upon account termination or deletion request:

Customer data is made available for export for 30 days
All personal data is securely deleted within 90 days
Backup copies are purged according to our backup retention schedule
Certain data may be retained longer if required by law

Enterprise customers can configure custom retention policies and immediate deletion capabilities.

12. Platform Moderation & Compliance

LeaCall Administration Oversight

LeaCall maintains active moderation and compliance monitoring to ensure our platform is used responsibly and in accordance with applicable laws. Our administration team:

Monitors platform usage for compliance with our Terms of Service
Reviews flagged content and reported violations
Conducts periodic audits of calling activities
Enforces acceptable use policies

Right to Suspend or Terminate: LeaCall reserves the right to immediately suspend or terminate any account found to be in violation of our Terms of Service, applicable laws, or engaged in harmful activities including but not limited to fraud, harassment, or illegal calling practices.

13. Supervisory Authority

If you are located in the European Economic Area and believe we have not addressed your data protection concerns adequately, you have the right to lodge a complaint with your local Data Protection Authority (DPA).

LeaCall's lead supervisory authority is the Commission Nationale de l'Informatique et des Libertés (CNIL) in France.

Data Protection Contact

For GDPR and data protection inquiries:

LeaCall
Support: support@leacall.com
Clients: clients@leacall.com

We respond to all GDPR-related requests within 30 days as required by regulation.

GDPR & Data Protection

GDPR Compliant

SOC 2 Type II

EU Data Residency