Privacy Policy
Effective Date: April 15, 2026
Lightbulb (“Lightbulb,” “we,” “us,” or “our”) operates lightbulb.com, lightbulb.com/scan, and related services, reports, forms, communications, and consulting offerings (collectively, the “Services”).
This Privacy Policy explains how we collect, use, store, disclose, and delete information when you use the Services, including when you connect a CRM or other third-party system to generate a revenue leakage report.
By using the Services or connecting a third-party system through the Services, you agree to the practices described in this Privacy Policy.
1. Information We Collect
We may collect information you provide directly to us, including your name, email address, company name, job title, phone number, meeting details, messages, and any other information you submit through forms, email, scheduling links, or other communications.
If you use lightbulb.com/scan or otherwise connect a CRM or other third-party system to the Services, we may access and process information made available through that connection and the permissions you grant. Depending on the connected system, this may include organization metadata, CRM object and field metadata, and structured business records and related activity needed to generate the requested report, including data from objects such as Leads, Contacts, Accounts, Opportunities, Campaign Members, Opportunity Contact Roles, Tasks, Events, and related history, mapping, completeness, and configuration data.
We may also automatically collect limited technical information when you use the Services, such as IP address, browser type, device information, timestamps, referring pages, and basic request or system logs.
2. How We Use Information
We may use collected information to:
- provide, operate, maintain, and improve the Services;
- authenticate users and support authorized integrations;
- connect to third-party systems and generate the requested revenue leakage report;
- store the generated report and limited supporting metadata reasonably necessary to deliver, secure, troubleshoot, and support the Services;
- deliver reports, respond to inquiries, and provide support;
- troubleshoot technical issues and monitor system performance;
- protect the security and integrity of the Services; and
- comply with legal obligations and enforce our terms.
We do not use connected CRM data for unrelated purposes that are outside the scope of generating, delivering, storing, securing, troubleshooting, and supporting the requested report and Services.
3. AI Processing
Some parts of the Services may use third-party AI tools or models, including Claude models, to help interpret, classify, analyze, or summarize certain information needed to generate scan outputs.
This may include sending limited structured inputs to those providers, such as field names, object names, labels, mappings, density information, summaries, and other contextual data reasonably necessary for analysis.
We use third-party AI tools only as part of providing the Services described in this Privacy Policy.
4. What We Store and Retain
We may retain:
- the generated report;
- limited supporting metadata related to the report;
- basic service, system, and support records reasonably necessary to operate, secure, troubleshoot, and support the Services.
This may include certain scan output and report-supporting records stored in our systems, including database records needed to deliver and support the report experience.
We do not retain connected CRM data longer than reasonably necessary for these purposes.
Disconnecting a CRM or stopping use of the Services does not automatically delete previously retained report data.
5. How We Share Information
We may share information in the following circumstances:
Service providers
We may share information with vendors and service providers that help us operate the Services, including providers for hosting, infrastructure, databases, analytics, communications, scheduling, and AI processing.
At your direction
We may process or disclose information when you instruct us to do so, including when you choose to connect a CRM, request a report, or request follow-up.
Legal and security reasons
We may disclose information if we believe doing so is reasonably necessary to comply with applicable law, respond to lawful requests, protect rights or safety, investigate misconduct, or prevent fraud, abuse, or security issues.
Business transactions
We may disclose information in connection with a merger, acquisition, financing, reorganization, sale of assets, or similar transaction.
6. Third-Party Platforms and Authorized Connections
The Services may allow you to connect third-party platforms such as Salesforce or other CRM, GTM, or data systems.
By connecting a third-party system, you represent that you are authorized to grant access to that system and to permit Lightbulb to process the data made available through that connection for the purposes described in this Privacy Policy.
We are not responsible for:
- a user's lack of authority to connect a third-party account or system;
- the privacy, security, availability, or practices of third-party platforms; or
- the terms, policies, or acts of third-party providers.
Third-party platforms are governed by their own terms and privacy policies.
7. Deletion Requests
You may request deletion of retained report data by emailing:
Please provide enough information for us to identify the relevant records and verify the request.
Subject to applicable law, legal obligations, security requirements, fraud prevention needs, and technical limitations such as backups, we will use commercially reasonable efforts to delete retained data from our active systems.
8. Data Security
We use commercially reasonable administrative, technical, and organizational measures designed to protect the information we process through the Services. However, no method of transmission over the internet or method of electronic storage is completely secure, and we cannot guarantee absolute security.
9. Children's Privacy
The Services are intended for business and professional use and are not directed to children under 13. We do not knowingly collect personal information from children under 13.
10. International Users
If you access the Services from outside the United States, please be aware that your information may be transferred to, stored in, and processed in the United States or other jurisdictions where our service providers operate.
11. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. If we do, we will post the updated version on this page and update the Effective Date above. Your continued use of the Services after any updated Privacy Policy becomes effective means the updated Privacy Policy applies to your use of the Services.
12. Contact Us
If you have any questions about this Privacy Policy or would like to request deletion of retained data, contact:
Jorge