Legal

Privacy Policy

Last updated: 23 December 2024

Contents

  1. No Legal Obligation to Provide Information
  2. Types of Information Collected
  3. How Information is Used
  4. How Information is Collected
  5. Retention and Removal of Information
  6. Sharing Information with Third Parties
  7. Links to Third Party Websites
  8. Protection of Information
  9. Children's Privacy
  10. Changes to This Privacy Notice
  11. Updating and Reviewing User Information
  12. Contact
  13. Amendments; Governing Law
  14. Appendix 1: Cookies Notice
  15. Appendix 2: LLM Privacy Policy
  16. Appendix 3: Sub-processors

This Privacy Notice (the "Privacy Notice" or "Agreement") describes how Leap and its subsidiaries (collectively, the "Company") treats information that it collects or receives from you (the "Users") through the Company's application and/or through any other means through which the Company's services are provided (the "Services"). Alongside the Company terms for any applicable Service, this Privacy Notice governs your use of the Services. By clicking that you accept the terms and/or using any of the Services, you agree to be bound by this Privacy Notice.

"Personal Data" means any information that refers to, is related to, or is associated with an identified or identifiable individual or household.

Our Role

"Data Processor" means when we collect, process and manage Personal Data in the context of providing Services to our business customers who accepted our terms or otherwise entered into an agreement with us (the "Customers"), the Customer is the data controller with respect to such Personal Data and we are the data processor. This includes Personal Data uploaded to our Services by our Customers' employees, service providers and independent contractors ("Customer Data"). Our processing of such Customer Data on behalf and under the instruction of the respective Customer is governed by our Data Processing Addendum with them.

This Privacy Notice which describes Company's independent privacy and data processing practices as a "data controller" does not apply to the processing of Customer Data (unless otherwise specifically stated). If you have any questions or requests regarding Customer Data, please contact your Account Owner directly.

1. No Legal Obligation to Provide Information

For avoidance of doubt, a User is not legally obligated to use any Services provided by the Company, or to disclose any information whatsoever to the Company. However, if a User chooses to use any of the Services, including without limitation use of the Company's Website or application, provision of certain information is a pre-requisite for such use/receipt of the Services.

2. Types of Information Collected

The Company may collect both Personally Identifying Information and Non-Identifiable Information (together "Information").

  • Personally Identifying Information shall mean information which could (alone or in combination with other information collected by us) personally identify you, including without limitation, name, e-mail, phone number, gender, identification numbers, business addresses, profession, telephone numbers, transaction history, and other personal information.
  • Non-Identifiable Information shall mean information collected regarding the use of the Services or other interactions with the Company which does not enable identification of an individual User.

3. How Information is Used

In general, the Company may use Information in order to provide and improve its Services, to customize and optimize User experience, and for its other business requirements. More specifically, the Company may use aggregated Information for any of the following purposes:

  1. To provide the Services;
  2. To develop, deliver, and improve the Services;
  3. To customize and personalize the Services for each User and to enhance the User experience;
  4. To send important notices, such as communications about the Services, and changes to terms, conditions, and policies;
  5. To compile statistical information and insights related to performance or use of the Services;
  6. To produce or compile reports for Users through the Services;
  7. For marketing purposes, including without limitation, to send Users information and to alert Users to new developments, promotions, specials, products or services or other activities, announcements, promotions, and newsletters;
  8. To improve content and advertising by the Company;
  9. To contact Users with respect to promotional and sales offers;
  10. To identify or locate a User using the Services in order to facilitate the other purposes specified in this section;
  11. To monitor and analyse information regarding User browsing and viewing preferences and to diagnose problems of the Services;
  12. To administer and process payments;
  13. For fraud prevention, internal operations, legal compliance, and other public and security related purposes; and
  14. To enforce any subscription terms and any supplemental terms or policies of the Company.

4. How Information is Collected

The Company may collect Information during User online and offline interactions with the Company and any of its Services, such as, without limitation, when a User registers for the Services or creates an account, by monitoring parameters of a User's use of the Services with the use of certain tools, and when a User communicates with the Company through the Services, by email or otherwise.

The Company also makes use of cookies for the purposes specified in Appendix 1, and also retains Information required to allow Users to log in without entering credentials and passwords each time.

5. Retention and Removal of Information

Except as otherwise specified in this Privacy Notice, Company does not alter the practices detailed herein based upon your selection of the "Do Not Track" setting or other "opt out" setting or feature that may be offered by your browser. A User may contact the Company in writing through the address specified below in order to remove certain Information attained from such User, subject to any applicable law. Unless requested by a User, Company may retain Information for an unlimited period for uses in accordance with this Privacy Notice.

6. Sharing Information with Third Parties

Company may disclose Information to third parties as follows:

  • To applicable Third-Party Services providers as required to provide, develop, improve, support or maintain the Services;
  • To a successor entity of Company by way of merger or acquisition of Company's applicable assets;
  • As required by law and when Company believes that such disclosure is necessary to protect its rights, the integrity of the Services, Company's systems and technology, and/or to comply with a judicial proceeding, court order, or legal process.

7. Links to Third Party Websites

Most of the third-party sites or other resources which are made available via the Service provide legal documents, including terms of use and privacy notices, governing the use thereof. It is always advisable to read third-parties' terms of use and privacy notice documents carefully before using those sites and services.

8. Protection of Information

Company is committed to protect the security of its Users' Information and takes commercially reasonable measures to assure information security. However, no method of internet transmission or electronic storage is 100% secure and Company cannot guarantee the Information's absolute security.

9. Children's Privacy

Our Service does not address anyone under the age of 18. We do not knowingly collect personally identifiable information from anyone under the age of 18. If you are a parent or guardian and you are aware that your child has provided us with Personal Data, please contact us. If we become aware that we have collected Personal Data from children without verification of parental consent, we take steps to remove that information from our servers.

10. Changes to This Privacy Notice

We may update our Privacy Notice from time to time. We will notify you of any changes by posting the new Privacy Notice on this page. We will let you know via email and/or a prominent notice on our Service, prior to the change becoming effective and update the "effective date" at the bottom of this Privacy Notice.

11. Updating and Reviewing User Information

Users are responsible for keeping their information current and up-to-date. Users may update their information by modifying their account, or contacting the Company in the manner specified herein. The Company will use reasonable efforts to process any change made by a User. User acknowledges however that deletion of Information may result in failure to provide User with access or use of the Services.

12. Contact

Any required or permitted notices hereunder must be given in writing:

Notices will be deemed given within 1 business day from the delivery date if sent by e-mail.

13. Amendments; Governing Law

Company may change the terms of this Privacy Notice by posting new terms, such terms shall be effective in respect of each User immediately once posted.

Any disputes or claims arising out of or in connection with this Privacy Notice will be governed by and construed in accordance with the laws of the State of Israel, excluding its conflict of law principles. The parties irrevocably agree that the competent courts of Tel-Aviv shall have exclusive jurisdiction to settle any disputes or claims arising out of or in connection with this Privacy Notice.

Appendix 1: Cookies Notice

This Cookie Notice explains how Leap uses cookies and similar technologies to recognize you when you visit our website at myleap.ai.

What are cookies?

Cookies are computer files containing small amounts of information which are downloaded to your computer or mobile device when you visit a website. Cookies are widely used in order to make websites work, or to work more efficiently, as well as to provide information to the owners of the website.

There are two broad categories of cookies:

  • First party cookies, served directly by us to your computer or mobile device.
  • Third party cookies, which are served by a third party on our behalf. We use third party cookies for functionality, performance/analytics, marketing, preferences and social media purposes.

Types of cookies we use

Classification
Purpose
Your Choices
Strictly Necessary
Enable you to use our Website's features, such as enabling movement between pages and remembering information you enter on forms.
These cookies are essential. Objecting to them may prevent you from using the Website.
Performance and Analytics
Collect information about the use of our Website in order to help improve the way it works.
These cookies may be blocked or managed through your browser settings.
Functionality and Preference
Remember the choices you make such as which language you prefer and provide personalized features.
Manageable through browser settings.
Advertising and Social
Enable you to share our content through third party social networking and other websites.
Manageable through browser settings.

How can I control cookies?

You have the right to decide whether to accept or reject cookies. You can set or amend your web browser controls to accept or refuse cookies. If you choose to reject cookies, you may still use our Website though your access to some functionality and areas may be restricted.

Contact

If you have any questions about our use of cookies or other technologies, please email us at [email protected].

Appendix 2: LLM Privacy Policy

Leap uses OpenAI API as a service to operate its services.

Data Usage for Model Training

By default, OpenAI does not use data submitted through the API to train or improve their models. This means that inputs and outputs from your API interactions are not incorporated into model training unless you explicitly opt in to share your data for this purpose.

Data Access and Security

  • Data at Rest: OpenAI encrypts all data at rest using AES-256 encryption.
  • Data in Transit: Data transmitted between your systems and OpenAI's services is encrypted using TLS 1.2 or higher.

Appendix 3: List of Sub-Processors

AWS
Database, located in EU (Germany). No data transfer to US.
View DPA
Mixpanel
Analytics. Data Processing Addendum including SCCs.
View DPA
SendGrid / Twilio
Email delivery. Data Protection Addendum with SCCs.
View DPA
OpenAI
AI model inference via API.
Pinecone
Memory vectorization. AWS partner. Certified: AICPA SOC, HIPAA, GDPR, ISO27001. Data encrypted at rest and in transit.