Legal & Compliance

CCPA / GDPR / TCPA Compliance

LiveLeadz is built for enterprise procurement. SHA-256 hashing, consent-first data collection, opt-out infrastructure, and a full DPA are standard — not add-ons.

CCPA CompliantGDPR ReadyTCPA Safe HarborSHA-256 HashedDPA Available

Frameworks

Regulatory Frameworks We Operate Under

CCPA

California Consumer Privacy Act

  • All California residents have the right to opt out of data sale
  • LiveLeadz maintains a Do Not Sell list updated in real-time
  • Data subject requests honored within 45 days (CCPA standard)
  • Annual data inventory and category disclosures maintained
GDPR

General Data Protection Regulation

  • Data Processing Agreement (DPA) available upon request
  • EU visitor signals suppressed from identity resolution
  • Purpose limitation: data used only for stated commercial intent matching
  • Lawful basis documentation maintained per Article 6
TCPA

Telephone Consumer Protection Act

  • All phone numbers carrier-verified before delivery
  • DNC registry suppression applied to every outbound lead
  • TCPA safe harbor language available for client campaigns
  • Litigator scrub applied to all phone data at delivery

Data Practices

How We Handle Your Data

SHA-256 Hashing

All personally identifiable information (PII) transmitted via API or file upload is SHA-256 hashed before transfer. This applies to email, phone, and name fields delivered to Meta Ads, Google Customer Match, and third-party CRMs.

Consent-First Collection

LiveLeadz sources data from publisher networks that operate under opt-in consent frameworks. No data is collected from sources that do not disclose commercial data sharing in their privacy policies.

First-Party Pixel Data

The LiveLeadz Identity Resolution Pixel collects first-party session signals (IP, device entropy, behavioral patterns). It does not set third-party cookies and operates independently of browser cookie consent prompts.

Opt-Out Mechanism

Any individual can submit an opt-out request via our privacy portal. Opt-outs are propagated to all downstream integrations (CRMs, ad platforms) within 24 hours. Phone numbers are added to our permanent suppression list.

Data Retention Limits

Lead records are retained for a maximum of 90 days in the LiveLeadz platform. Clients are responsible for their own retention policies within their CRMs per their applicable regulations.

Data Processing Agreement

Enterprise clients can execute a full DPA that covers data controller/processor roles, data transfer safeguards (SCCs for EU), security obligations, and breach notification timelines. Available upon request.

FAQ

Compliance Questions

Can my legal team review LiveLeadz's compliance documentation?

Yes. We provide a full DPA, privacy policy, and data flow diagram upon request. These documents are designed to satisfy enterprise legal and procurement reviews.

How does SHA-256 hashing work in practice?

Before transmitting email or phone data to third-party platforms like Meta Ads or Google Customer Match, LiveLeadz applies SHA-256 cryptographic hashing. The platforms receive only the hashed value — they match it to their own hashed user records. The raw PII never leaves LiveLeadz systems.

What happens if a lead opts out after I've already received them?

If an individual submits an opt-out request, LiveLeadz notifies all connected integrations via webhook within 24 hours. We recommend your CRM automation delete or suppress that contact record immediately upon receipt of the opt-out webhook.

Are leads compliant for telephone outreach under the 2024 FCC TCPA ruling?

Yes. Following the January 2024 FCC TCPA one-to-one consent ruling, LiveLeadz verifies that all consent records in our network include explicit, named company consent for telephone marketing. Our legal team reviews consent chain documentation regularly.

Is LiveLeadz listed as a data broker in any state registries?

LiveLeadz is registered as a data broker in California (CCPA) and Texas where required. We maintain compliance with all applicable state data broker registration requirements.

Request Our DPA and Compliance Package

Enterprise procurement teams receive a full Data Processing Agreement, privacy policy, data flow diagram, and consent chain documentation.

Request Compliance Package
LiveLeadz is a high-performance data intelligence platform specializing in real-time search intent interception and identity resolution. Operating across all 50 US states, we provide verified contact data—including phone, email, and physical address—for high-ticket sectors such as Real Estate, Merchant Cash Advance, Solar Energy, and Enterprise SaaS. Our proprietary identity graph and CCPA-compliant pixel technology allow businesses to de-anonymize website traffic and capture leads the moment intent is signaled.