Privacy Policy
Lead-Lens (“the app”, “we”, “us”) is a business-card scanner app for iPhone and iPad. This policy explains, in plain English, what data the app handles, where it goes, and what choices you have.
If anything below isn't true any more, we'll update this page and bump the “Last updated” date. Material changes will also be called out in the app's “What's New” notes.
1. The short version
- Your scanned cards live on your device. We don't have a copy.
- We don't run third-party analytics, advertising, or crash-reporting SDKs in this version of the app.
- The only times data leaves your device are when you explicitly ask the app to send it — for example, tapping “Export to Outlook”.
- We never sell your data. There's nobody to sell it to: we don't have it.
2. What we store, and where
On your device
The following data is stored locally in the app's private SwiftData container, encrypted at rest by iOS Data Protection (Class C):
- The contents of every card you scan, type, or import — name, job title, company, phone numbers, email, website, address, social handles, notes, tags, custom category, scan date, and the optional card image.
- Your “My Card” (the digital business card you share with others).
- Your settings — language preference, sort order, favourites, follow-up reminder schedule, and which features (e.g. AI Assist) you've turned on.
If you ever uninstall the app, iOS deletes this data. We have no way to recover it.
In the iOS Keychain
Standard OAuth access and refresh tokens for the third-party services
you voluntarily connect (currently Microsoft 365 and Microsoft
Dynamics 365). Tokens are stored under the
com.saeedsaf.LeadLens.tokens Keychain service and
protected with kSecAttrAccessibleAfterFirstUnlock.
Removing a connection from Settings → Connections deletes the
matching token.
On our servers
3. When data leaves your device
Only on your explicit action. The complete list, as of v1.0:
| Action you take | What we send | Where |
|---|---|---|
| Tap Export to Microsoft 365 (Outlook) | The fields of the card you chose to export, formatted as a Microsoft Graph contact. | https://graph.microsoft.com/v1.0/me/contacts — i.e. your own Outlook mailbox. |
| Tap Export to Microsoft Dynamics 365 | The same fields, formatted as a Dataverse contact. | The Dataverse environment URL you supplied when connecting (e.g. https://contoso.crm4.dynamics.com). |
| Tap Save to iOS Contacts | The contact card. | The on-device Contacts database, which then syncs according to your iCloud / Exchange Contacts settings — those are not Lead-Lens. |
| Tap Refresh Company (future Pro feature, not enabled in v1) | The company name on the card. | The Azure AI Foundry endpoint configured in Secrets.swift if the app's developer has enabled AI Assist. Off by default unless an endpoint is configured. |
| Tap Open on LinkedIn | A LinkedIn URL or search query containing the contact's name. | The LinkedIn iOS app or linkedin.com. LinkedIn handles it under their privacy policy. |
| The app fetches a company logo | The contact's email domain (e.g. acme.com). |
logo.clearbit.com and, as a fallback, google.com/s2/favicons. The contact's name and personal data are not sent. |
OAuth sign-in itself involves a redirect through
login.microsoftonline.com in an
ASWebAuthenticationSession browser, where Microsoft
authenticates you directly. We never see your password.
4. What we never collect
Lead-Lens does not collect, transmit, store on our servers, or share with any third party:
- Your camera frames (OCR runs entirely on-device using Apple's VisionKit).
- Your photo library beyond the single image you pick to import.
- Your physical location (no Core Location calls).
- Your contacts list beyond what you explicitly choose to import.
- Your microphone, health data, browsing history, or financial information.
- Any unique identifier that could track you across other apps (no IDFA prompt, no analytics SDK, no crash reporter in v1).
5. Children
Lead-Lens is rated 4+ and does not knowingly collect data from anyone. It is also not directed at children under 13. If you believe a child has somehow been affected by the app, contact us at the address below and we will help.
6. Your rights
Because Lead-Lens stores everything on your device, you are already in control:
- Access — every card you've scanned is visible in the app's list view.
- Export — Settings → Export lets you save your entire library as CSV or vCard.
- Delete one card — swipe left on the card.
- Delete everything — Settings → “Erase all data” or simply uninstall the app.
If you live in the EU/UK and rely on GDPR/UK-GDPR rights of access, rectification, erasure, restriction, portability, or objection — these are all satisfied by the in-app controls above. Because we hold no data on our servers, there is nothing for us to forward to a Data Subject Access Request. If you'd nevertheless like written confirmation of that, email us and we'll send it.
The legal basis under GDPR/UK-GDPR Article 6(1)(b) for processing the data you choose to send to Microsoft 365 / Dynamics 365 is performance of the contract you have with Microsoft (your work account); Lead-Lens is a processor only at that moment, and the data is in transit, not at rest with us.
7. Security
- All network traffic is HTTPS (TLS 1.2+). The app blocks plaintext HTTP at the App Transport Security level.
- OAuth tokens are stored only in the iOS Keychain.
- Card data is stored in the app's sandboxed SwiftData store, which iOS protects with file-level encryption tied to your device passcode.
- Optional Face ID / Touch ID lock can be turned on in Settings.
We do not promise that any system is impenetrable, but we follow standard Apple-recommended practices and we do not roll our own cryptography.
8. International transfers
Data only crosses borders when you trigger an export to Microsoft 365 or Dynamics 365. In that case the data goes to the Microsoft tenant region you chose when you set up your work account — not a region we picked. Microsoft's own privacy commitments cover that transfer.
9. Third-party services we touch
| Service | When it's reached | What is shared | Their privacy policy |
|---|---|---|---|
Microsoft Graph (graph.microsoft.com) |
Only when you tap “Export to Microsoft 365”. | The card's fields. | privacy.microsoft.com |
| Microsoft Dynamics 365 (your env URL) | Only when you tap “Export to Dynamics 365”. | The card's fields. | privacy.microsoft.com |
Microsoft sign-in (login.microsoftonline.com) |
Only during the OAuth handshake when you connect a Microsoft account. | Whatever you type into Microsoft's sign-in page (we never see it). | privacy.microsoft.com |
Clearbit Logo API (logo.clearbit.com) |
Each time we display a company logo. | The email domain on the card. | clearbit.com/privacy |
Google Favicon (google.com/s2/favicons) |
Logo fallback only. | The email domain on the card. | policies.google.com/privacy |
LinkedIn (linkedin.com, linkedin://) |
Only when you tap “Open on LinkedIn”. | A search query containing the contact's name. | linkedin.com/legal/privacy-policy |
10. Changes to this policy
We'll update this page when we add features that change what data the app handles. The new policy goes live before the new feature is enabled in a public release.
11. Contact
Questions, complaints, or right-to-erasure requests:
- Email: hello@lead-lens.app
- Postal: (your registered address)
We'll respond within 30 days, usually much sooner.