Privacy Policy

This privacy policy explains how Stop Wasting Handshakes ("we", "our", or "the Service") collects, uses, and protects information when you use the Stop Wasting Handshakes Scorecard or CRM, whether on the web or through our iOS app.

1. Who we are

Stop Wasting Handshakes is operated by Impact Leadership Group. You can reach us at hello@mylola.ai for any privacy related questions or requests.

2. Information we collect

Account information you provide

• Email address (required to create an account)
• Password (stored hashed by our authentication provider; we never see your raw password)
• Display name (optional)
• Mobile phone number (optional, only if you opt in to SMS reminders)

Activity you log in the Service

• Daily activity counts (meetings, conversations, follow throughs, referrals, etc.) you record yourself
• Weekly goals you set
• Lag indicators you record (opportunities, deals started, deals completed, referrals received)
• If you use the CRM tier: contacts you add, notes, opportunities, and follow through history

Information collected automatically

• Device type (iOS app vs. web browser) and rough usage patterns, used only to operate and improve the Service
• Timestamps on the records you create

We do not collect your location, your photo library, your contacts (other than what you explicitly enter), your microphone audio, or your camera (other than when you explicitly use the business card scanner feature, where the image is sent for one-time text extraction and is not stored).

3. How we use your information

• To provide the Service: store your activity, render your dashboard, sync between web and iOS
• To send transactional messages (account confirmations, password resets, billing receipts when applicable, optional SMS reminders if you opted in)
• To improve the product through aggregated, non identifying analysis of usage patterns
• To prevent fraud, abuse, and unauthorized access

We do not use your personal information for advertising, do not sell it, and do not share it with third parties for their own marketing.

4. How we share information

We use the following service providers, who process information on our behalf and only as necessary to operate the Service:

• Google Firebase for authentication, database storage, and serverless functions (United States)
• Twilio for SMS reminders, only if you opt in and provide a phone number
• Anthropic for one time text extraction from business card images, only when you explicitly use the card scanner feature in the CRM
• Stripe for payment processing, when paid plans become available

Each of these providers is contractually obligated to handle your data in line with applicable law and to use it only for the purposes we direct. We may also disclose information if required by law, to protect the rights or safety of users, or in connection with a corporate transaction such as a merger or acquisition (in which case you will be notified).

5. Your choices and rights

• Access and correction. You can view and edit most information directly inside the app. Email us if you need help.
• Deletion. You can request deletion of your account and all associated data by emailing hello@mylola.ai. We will delete your account and all linked records within 30 days, except where retention is required by law.
• Opt out of SMS. Turn off SMS reminders in the app, or reply STOP to any reminder text.
• California residents have additional rights under the CCPA, including the right to know, the right to delete, and the right to opt out of any sale of personal information (we do not sell).
• EEA and UK residents have rights under GDPR, including access, rectification, erasure, restriction, portability, and objection. The legal basis for our processing is your consent and the performance of our contract with you.

6. Data retention

We retain your information while your account is active. When you delete your account, your records are removed within 30 days. Backups containing residual copies are purged within 90 days. Aggregate, de identified usage data may be retained indefinitely.

7. Security

We use industry standard practices to protect your information: encrypted connections (HTTPS), hashed passwords, server side rules that scope each user's data to their own account, and limited admin access. No system is perfectly secure, and we cannot guarantee absolute security, but we take reasonable steps to safeguard your information and notify affected users in the event of a breach involving personal data.

8. Children

The Service is not directed to children under 13, and we do not knowingly collect information from anyone under 13. If you believe we have collected information from a child, contact us and we will delete it.

9. Changes to this policy

We may update this policy from time to time. When we make material changes, we will update the "Last updated" date above and, when appropriate, notify you by email or in app. Your continued use of the Service after a change indicates acceptance of the updated policy.

10. Contact

Questions, requests, or concerns: hello@mylola.ai.