Security at Leadiary

Trust is the foundation of our platform. Here is how we protect your data, secure your connections, and keep your personal accounts 100% private.

1. Zero-Credential Extension Architecture

Because Leadiary uses a Chrome Extension to monitor public buying signals, privacy and security are built into our core from day one. We intentionally designed our system to work without needing access to your personal accounts.

  • No Passwords or Cookies: We never ask for, capture, or store your passwords or session cookies for any third-party platform (LinkedIn, X, Bluesky, Reddit, etc.).
  • Unique Extension Keys: Instead of syncing your active sessions, we use a custom, dashboard-generated Extension Key. This encrypted key securely routes public data to your workspace without ever touching your personal logins.
  • Strictly Read-Only: Our engine only monitors public feeds and tracked keywords. Leadiary cannot and will not post, comment, like, or send messages on your behalf.

2. Data Encryption

Your data is protected at every step of its journey.

  • In Transit: All communications between your browser, the Leadiary Chrome Extension, and our servers are encrypted using industry-standard TLS 1.2 (or higher) protocols.
  • At Rest: All database backups, Extension Keys, and saved user data (like your Diary and Templates) are encrypted at rest using AES-256 encryption.

3. Infrastructure & Hosting

Leadiary is hosted on enterprise-grade cloud infrastructure. Our servers reside within secure virtual private clouds (VPCs) with strict firewall rules that block unauthorized external access. Only essential, hardened application ports are exposed to the public internet.

4. Account & Data Isolation

Your workspace is exclusively yours. We utilize strict tenant isolation protocols at the database level to ensure that your tracked keywords, captured leads, and account activities can never be accessed by or bleed into another user's workspace.

5. Continuous Monitoring

We actively monitor our application logs, extension activity, and server health to detect and prevent unusual behavior, unauthorized access attempts, or potential vulnerabilities before they can impact our users.

6. Report a Vulnerability

We believe in the power of the security community. If you are a security researcher and believe you have found a vulnerability in the Leadiary web app or Chrome Extension, we want to hear from you immediately.

Contact Security Team: security@leadiary.com