1. Scope

ICombooster is a product by Latenode.com. This Privacy & Security statement applies to all data collected via icombooster.com and app.icombooster.com (together, “Service”).

2. Data We Collect

• Intercom Leads: email, name, signup timestamp, and custom profile attributes.
• Enrichment Results: 40+ data points (company size, industry, funding, etc.) for each lead.
• Usage Metrics: API calls, feature usage, error logs for system monitoring.
• Payment Info: no credit‑card details stored—billing handled exclusively by Stripe.

3. How We Use Your Data

• To enrich your Intercom leads in real time.
• To power our Self‑Learning AI support (when available).
• To bill you accurately based on actual enriched leads or AI resolutions.
• To monitor system health and prevent abuse.

4. Hosting & Encryption

All ICombooster data is hosted on AWS (us‑east‑1). We enforce:

• Data in transit encrypted via TLS 1.2+.
• Data at rest encrypted with AWS KMS (AES‑256‑GCM).
• MFA and private VPC for AWS management access.

5. OAuth & API Keys

Integration with Intercom uses OAuth where possible. All tokens and keys are:

• Encrypted at rest in our database.
• Rotated regularly.
• Removable by you at any time via app.icombooster.com/connections.

6. Third‑Party Processors

• Stripe: handles all payments—ICombooster never stores card details.
• Intercom: we access your account only to read leads & write enrichment tags.
• Cloudflare WAF: protects against DDoS and web threats.

7. Data Retention & Deletion

You may delete any enriched data or revoke OAuth/API keys at any time. Upon account cancellation, we retain billing records for legal compliance but purge all other data after 90 days.

8. Your Rights

• Access, correction, or deletion of your personal data.
• Data portability—export your leads and enrichment results.
• Opt‑out of non‑essential communications via your dashboard.

9. Contact & Reports

To report security issues or abuse: security@latenode.com