Data Policy

This Data Policy explains how Light Strategy LLC (“Light Strategy,” “we,” “our,” “us”) handles information stored and processed on the LeadOps platform. This includes dealership data, lead information, user accounts, analytics, and communication logs.

1. What Data We Store

  • Account data: dealership profiles, user accounts, permissions, and subscription information.
  • Lead data: customer contact details, inquiry history, communication logs, vehicle interest, and follow-up status.
  • Inventory data: vehicle listings, pricing, photos, and availability information provided by or collected for the dealership.
  • Communication data: inbound and outbound texts, emails, call metadata, and, if enabled, AI-generated responses.
  • Usage data: device information, IP address, dashboard activity, and performance metrics.
  • Automation data: n8n workflow events, webhook triggers, and related metadata.

2. How Data Is Used

We use stored data to provide, maintain, and improve the LeadOps platform. This includes:

  • Routing and managing leads for dealerships.
  • Generating diagnostics, performance insights, and reporting.
  • Sending requested communications such as appointment reminders and follow-ups.
  • Syncing with integrated services like email providers or advertising platforms.
  • Preventing fraud, abuse, and security threats.

3. Where Data Is Stored

  • Primary hosting: Servers located in the United States.
  • Database: MySQL datastore with restricted access credentials.
  • Storage: AWS S3 for attachments, logs, and email files.
  • Email: Amazon SES for outbound messaging infrastructure.
  • Automations: n8n automation server hosted on a secured environment.
  • Telephony: Twilio infrastructure for SMS and calling services.

4. Security Practices

  • Encrypted transport for all dashboards, APIs, and webhooks (HTTPS/TLS).
  • Access controls and authentication for dealership users.
  • API key restrictions for automation and integration endpoints.
  • Database access limited to specific internal servers.
  • Regular monitoring for abnormal API or inbound message activity.

5. Data Sharing

  • Dealerships: data is shared only with the specific dealership that owns the lead or account.
  • Service providers: infrastructure vendors such as hosting servers, email delivery services, SMS/telephony providers, and workflow systems.
  • Legal compliance: information shared when required by law.
  • We do not sell data to third parties.

6. Data Retention

  • Lead data is retained as long as the dealership remains active or until deletion is requested.
  • Communication records are retained for diagnostic and proof-of-delivery purposes.
  • Backups and logs may persist for a limited period for security and continuity.

7. Your Rights and Choices

  • Request access, correction, or deletion of your data where applicable.
  • Opt out of text messages by replying STOP and request help by replying HELP.
  • Ask for account deletion or data export from your dealership’s admin contact.

8. Processing Data for Dealerships

Light Strategy acts as a service provider or processor. The dealership controls the lead and customer information stored on the platform. We process that data based on the dealership’s instructions and applicable agreements.

9. Updates to This Policy

We may update this Data Policy. Changes will be posted on this page with an updated effective date.

10. Contact

Questions about this policy can be sent to info@lightstrategy.com.

Effective Date: November 25, 2025