Trust
Security
Last updated: June 17, 2026 · Operated by LeadRecoverly
LeadRecoverly is built around revocable access and explicit user control. The promise is simple: the free scan never changes your records, and any paid update requires your approval. This page summarizes how we protect your data and how to report a vulnerability.
Access and permissions
- The free scan reads contacts, companies, deals, owners, and available timestamps. It does not write, edit, merge, or delete records.
- Write access is never granted by default. To enable approved actions you reconnect HubSpot and explicitly grant write scope; you can decline and still use everything read-only.
- We request least-privilege scopes for what the product actually does, and you can revoke access from inside HubSpot at any time, which ends our access immediately.
Data protection
- HubSpot access tokens are encrypted at rest using AES-256-GCM.
- All traffic is served over TLS, with HSTS enabled.
- Application secrets live in environment configuration and are not included in the deployed code package.
- We do not keep a standing mirror of your full CRM; raw records are read to compute findings and then discarded.
- We do not log full CRM record contents in the browser or expose them in client-side logs.
Approved actions
- Every write is a single-record property update that you preview and approve. Nothing runs automatically or in the background.
- We read and store the prior value before each change, and log who approved it, the old and new values, and the result.
- We do not perform early bulk or destructive actions. See the Approved-action disclaimer.
Responsible disclosure
If you believe you have found a security vulnerability, please email security@leadrecoverly.com with steps to reproduce. Please do not test against data or accounts that are not yours, do not access or modify other users' data, and give us a reasonable chance to respond before any public disclosure. We appreciate good-faith reports and will work with you in good faith.