Grant Leads Privacy Policy

Privacy Policy

Enterprise Data Protection & Analytics

Last Updated: October 2023

1. Introduction

Grant Leads Portal ("we," "our," or "us") is an enterprise B2B Software-as-a-Service platform connecting technology vendors with public grant intelligence. This Privacy Policy describes how we collect, use, and protect data belonging to our client organizations ("Clients") and their authorized users ("Users").

2. Data Collection & B2B Context

We operate exclusively in a B2B context. We collect information necessary to provision enterprise accounts, facilitate payment processing, and provide grant intelligence features. This includes:

  • Authentication Data: Managed securely via Auth providers.
  • Billing Information: Processed directly via Stripe. We do not store raw credit card numbers.
  • Organizational Metadata: Domains, domains, and CRM mappings required for multi-tenant isolation.
  • Usage Logs: Search queries, favorite operations, and PDF export logs used solely to optimize the intelligence engine.

3. Multi-Tenant Data Isolation

Our architecture employs strict Row Level Security (RLS) on our PostgreSQL databases. Client data (favorites, user accounts, and billing history) is cryptographically isolated. A user belonging to Organization A cannot query, access, or infer the existence of data belonging to Organization B.

4. No Data Brokering

We do not sell, rent, or trade Client or User data to third parties. The intelligence generated by User activity remains within the context of their respective Organization. Our business model relies on subscription revenue, not data brokering.

5. Vendor AI Processing

We utilize proprietary algorithms and upstream language models to index public grant data. Client data (such as search history or firmographic profiles) is not used to train global AI models accessible by other tenants or the public.

6. Data Retention & Deletion

Client data is retained for the duration of an active subscription. Upon termination of service, all organizational data is subject to automated pruning protocols, leaving only aggregated, anonymized metadata necessary for financial compliance and systemic health monitoring.