1. Introduction

Outbound Gen (“we,” “our,” or “us”) provides outbound GTM consulting services to B2B companies. In the course of delivering these services, we may collect, process, and store certain business-related information on behalf of our clients.

We are fully committed to data privacy, compliance, and responsible data handling. This policy outlines what data we process, how we use it, and how we protect it.

2. Scope of This Policy

This Privacy Policy applies to:

Data we process while delivering outbound campaigns on behalf of clients

Leads and contact data enriched or engaged via our tools and integrations

Any data transferred to us or created via workflows in platforms like Clay, Smartlead, or CRM systems

3. Data We Collect

We may collect or process the following categories of business-related data:

Publicly available business data (e.g., LinkedIn profile, company info, job title, company domain)

Business email addresses or work-related contact info

Intent signals and engagement activity (e.g., website visits, ad interactions)

CRM field data if synced for lead scoring or routing purposes

We do not collect or store any sensitive personal information, such as home addresses, phone numbers unrelated to business use, or financial data.

4. How We Use the Data

All data is processed strictly for the purpose of executing GTM workflows on behalf of our clients.

Use cases include:

Enriching CRM records with publicly available or licensed data

Personalizing cold outreach based on role, industry, or behavior

Automating workflows across sales, marketing, and operations teams

We do not resell, share, or use any data for purposes outside the scope of client campaigns.

5. Data Storage and Hosting

Data processed by Outbound Gen may be stored in the following tools:

Smartlead (Email sequencing)

Clay (Lead enrichment, workflow automation)

Slack (Client communication)

Google Workspace (Internal collaboration)

All data is stored in U.S.-based or GDPR-compliant cloud infrastructure, and we rely only on SOC 2–certified, enterprise-grade providers.

We do not self-host any data or maintain persistent local backups.

6. Data Access and Retention

Only authorized Outbound Gen team members have access to campaign data

Access is provisioned on a need-to-know basis and revoked when no longer required

Data is retained for the duration of the client engagement and deleted or handed off upon project completion

7. Subprocessors and Integrations

We may work with subprocessors for campaign execution. These may include:

Smartlead

Clay

Slack

Google Workspace

OutboundSync (optional)

Clearbit (optional, for enrichment)

We only use subprocessors with SOC 2 or equivalent security certifications. Clients may request a full list of active subprocessors at any time.

8. Your Rights and Controls

Clients retain full ownership of all data shared with or generated by Outbound Gen. You may:

Request data deletion at any time

Review or export lead data created by our workflows

Audit usage, storage, and access controls at your request

9. Security Commitments

All logins are secured with 2FA

Data access is scoped to specific client projects

Client domains and inboxes are protected by domain-based email authentication (SPF, DKIM, DMARC)

We comply with security reviews and DPA requirements from enterprise clients