1. Introduction

LeedR AI (“we,” “us,” or “our”) is committed to protecting the privacy of our clients, their leads, and their patients. This policy outlines how we collect, use, and safeguard personal and health information through our AI automation services and Retrieval-Augmented Generation (RAG) systems.

2. Information We Collect

We process data on behalf of our clients across three categories:

• Client Data: Business contact details, technical infrastructure credentials, and financial information.
• Lead Data: Name, contact information, and interaction history collected via webchat, DMs, and email.
• Health Information: Specific to our medical aesthetics clients, this includes patient inquiries, treatment interests, and relevant health history processed for automated qualification.

3. Use of Artificial Intelligence and Data Processing

Data is processed using advanced Large Language Models (LLMs) and Vector Databases.

• RAG Systems: Lead and patient data are converted into numerical embeddings and stored in secure vector stores to provide context-aware automation.
• Third-Party AI: Data may be processed by providers such as OpenAI or Anthropic. We utilize enterprise-grade API connections ensuring that data submitted is not used to train public foundational models.
• Automation: Workflow automation (via n8n) handles the movement of data between lead intake and client CRMs.

4. Data Sovereignty and Security

We implement industry-standard security measures, including:

• Hosting: Technical infrastructure is hosted on secure VPS environments (e.g., Hetzner) with strict firewall protocols.
• Encryption: Data is encrypted at rest and in transit using TLS/SSL protocols.
• Compliance: For healthcare clients, we adhere to the requirements of the Office of the Australian Information Commissioner (OAIC) and the NZ Privacy Commissioner, including conducting Privacy Impact Assessments (PIA) where required.

5. Data Retention and Rights

We retain data only as long as necessary to fulfill our service obligations. Individuals (Leads/Patients) have the right to:

• Access their personal information.
• Request correction of inaccurate data.
• Request deletion of their data from our vector stores and databases.

1. Scope of Service

LeedR AI provides AI-driven B2B and B2C lead generation, automated nurturing, and operational infrastructure. Our services include the development and maintenance of “Flow Supervisor” intelligence layers and integrated RAG systems.

2. Client Responsibilities

The Client is responsible for:

• Ensuring all leads provided to the system have been collected in compliance with local anti-spam and privacy laws.
• Providing accurate business data for the RAG knowledge base.
• Maintaining the security of their own technical infrastructure and API keys provided to LeedR AI.

3. AI Performance and Hallucination Disclaimer

• Nature of AI: The Client acknowledges that AI agents operate on probabilistic models. While we implement “Supervisor” layers to minimize errors, LeedR AI does not guarantee 100% accuracy in AI-generated responses.
• Human Oversight: Our systems are designed to assist, not replace, professional judgment. Clients are encouraged to implement human-in-the-loop (HITL) reviews for high-stakes healthcare interactions.

4. Healthcare and Medical Aesthetics

• Non-Clinical Advice: AI agents are configured for lead qualification and administrative scheduling only. They are strictly prohibited from providing clinical diagnoses or medical advice.
• Compliance: LeedR AI will cooperate with the Client to ensure all automations satisfy regional medical privacy standards.

5. Limitation of Liability

To the maximum extent permitted by law, LeedR AI shall not be liable for any indirect, incidental, or consequential damages resulting from AI hallucinations, system downtime, or unauthorized access to the Client's third-party accounts (e.g., CRM, Email, WhatsApp).

6. Fees and Payment

• Setup Fees: Non-refundable fees for initial infrastructure deployment and RAG ingestion.
• Retainers: Monthly fees for system maintenance, API monitoring, and performance optimization.
• Termination: Either party may terminate the service with 30 days' written notice. Upon termination, LeedR AI will provide a transition export of the Client's specific vector data.