1. Ownership & Control

 

PredictiveLead.io operates as a strategy and execution partner.
All core assets remain the property of the client at all times, including but not limited to:

​

Domains and sub-domains (e.g. Namecheap, GoDaddy, Cloudflare)

Email inboxes and mail systems (e.g. Google Workspace, Microsoft 365)

CRM platforms (e.g. Pipedrive, HubSpot, Salesforce, Close)

Scheduling and booking tools (e.g. Calendly)

Outbound and enrichment platforms connected to client assets (e.g. Apollo.io, Instantly.ai, Smartlead)

Client data, lead lists, prospect records, and campaign results

 

PredictiveLead.io does not claim ownership of, resell, or reuse any client-owned infrastructure, accounts, or data under any circumstances.

​

2. Access Principles

 

PredictiveLead.io follows a least-access, purpose-limited security model.

We only request access that is:

Necessary for technical setup or campaign execution

Time-bound

Revocable by the client at any time

We do not require permanent or unrestricted administrative access.

​

3. Approved Access Methods

​

3.1 Delegated or Role-Based Access (Preferred)

​

Clients may grant PredictiveLead.io:

Delegated admin access (Google Workspace / Microsoft 365), or

A limited IT role with DNS and inbox configuration permissions​

 

This allows PredictiveLead.io to:

Configure SPF, DKIM, and DMARC

Create or connect outreach inboxes

Monitor deliverability health

No password sharing is required.

​

3.2 Temporary Administrative Access (Setup Only)

​

If delegated access is not available, clients may provide:

A temporary admin login

Two-factor authentication enabled

 

This access is used only for:

Initial domain and inbox setup

Technical verification

 

Clients may revoke or downgrade access immediately after setup.

 

3.3 Tool-Level Access (Ongoing Operations)

​

For daily campaign execution, PredictiveLead.io operates via:

Outreach tools (e.g. Apollo, Instantly, Smartlead)

CRM platforms (if applicable)

 

Clients grant access through user invitations, not shared credentials.

 

 

4. What PredictiveLead.io Will Never Request

 

For security and compliance reasons, PredictiveLead.io will never ask for:

Personal email passwords

Primary company admin passwords

Bank, payment gateway, or financial system access

Access unrelated to outbound marketing execution

 

 

5. Data Protection & Usage

 

PredictiveLead.io commits to:

Using client data solely for agreed campaign purposes

Not reselling, sharing, or reusing data across clients

Maintaining logical separation between client campaigns

Applying industry-standard security practices within our tools

 

PredictiveLead.io does not store client credentials outside of secure, encrypted systems provided by approved third-party tools.

​

6. Access Revocation

 

Clients may:

Modify

Limit

Revoke access

At any time, without penalty.

 

Upon engagement termination:

PredictiveLead.io will cease campaign activity

Tool access will be removed

No client data will be retained beyond contractual requirements

 

 

7. Responsibility Boundaries

 

PredictiveLead.io is responsible for:

Technical outreach setup

Deliverability best practices

Campaign execution and optimisation

Reporting on agreed KPIs

 

PredictiveLead.io is not responsible for:

Client internal IT systems outside outreach scope

Sales calls or closing activities

Internal data security policies beyond granted access

 

 

8. Compliance & Trust

 

This policy aligns with:

General data protection best practices

Australian B2B security expectations

Enterprise SaaS access standards

 

PredictiveLead.io treats client infrastructure with the same care as its own.

 

 

9. Policy Acceptance

 

By engaging PredictiveLead.io services, clients acknowledge and agree to this Client Access & Security Policy.

​​

​

​​Last Updated: December 2025