Effective / version: 2026-05-19
Effective / version: 2026-05-19
LEVRG Corp.
Effective date: May 19, 2026
This summary describes security and data-handling measures for the LEVRG platform (the “Service”) for dealership customers and their authorized users. It is a high-level overview. The full Privacy Policy and Terms of Service govern use of the Service.
Contact: support@levrg.ai
Mailing address: 3101 W Drexel Ave Unit 217, Franklin, WI 53132, United States
LEVRG is dealership sales coaching software: deal prep, presentation guidance, objection tactics, rep and manager feedback, and analytics derived from that workflow.
LEVRG does not record customer phone calls or deploy showroom listening devices as part of the standard product. The Service is designed for operational workflow data entered by authorized dealership users—not for collecting consumer Social Security numbers or full credit applications in normal use.
Your dealership (Customer) retains ownership of data entered in the Service. LEVRG processes that data to provide, secure, and improve the Service under the Terms of Service, Privacy Policy, and any executed pilot or master agreement.
We use reasonable administrative, technical, and organizational measures designed to protect information appropriate to the sensitivity of the Service. No method of transmission or storage is completely secure, and we cannot guarantee absolute security.
| Measure | Summary |
|---|---|
| Encryption in transit | TLS (HTTPS) for browser and API traffic |
| Encryption at rest | On managed cloud infrastructure used to host the Service |
| Passwords | One-way cryptographic hashing; not stored in plain text |
| Optional two-factor authentication | Time-based one-time passwords (TOTP) on supported accounts |
| Application-layer encryption | Selected sensitive fields (for example, 2FA secrets and certain finance-related deal fields) |
| Access control | Role-based access (rep, manager, admin); tenant-scoped data in the application |
| Audit logging | Security-relevant actions logged for governance (see Privacy Policy for retention) |
| Rate limiting and abuse controls | Production API protections on authentication, demos, and high-risk routes |
Database row-level security may be applied on production PostgreSQL connections as an additional tenant isolation control when configured for your deployment.
We use established cloud providers to operate the Service. Typical subprocessors include:
| Provider | Role |
|---|---|
| Managed PostgreSQL hosting (for example, Supabase) | Primary database |
| Application hosting (for example, Render) | API / backend |
| Web hosting (for example, Vercel) | Website and application front end |
| OpenAI | AI inference for coaching expansion (talk tracks and presentation guidance) |
| Email provider (for example, SendGrid) | Transactional email (password reset, weekly reports, notifications) |
| Cloudflare Turnstile (when enabled) | Bot protection on public forms |
| Error monitoring (for example, Sentry, when enabled) | Reliability and error alerts |
We do not sell your personal information for money. We do not share dealer-identifying information with competitors for their independent commercial use. See the Privacy Policy for the full processor list and sharing rules.
To deliver expanded talk tracks and presentation guidance, portions of coaching inputs may be sent to third-party AI providers. LEVRG’s Privacy Policy states that customer content is not provided to third-party AI providers for training general-purpose models for those third parties. Outputs are returned to the Service for authorized users. Reps deliver coaching on the floor—LEVRG does not replace human judgment.
Default retention periods are in the Privacy Policy. Highlights:
| Data | Default retention |
|---|---|
| User account identifiers | While active; anonymized within 30 days of a verified deletion request |
| Deal records | 3 years from creation (PII anonymized per deletion workflow where applicable) |
| Post-deal feedback logs | 1 year |
| Audit events | 3 years |
Authenticated users may request a copy of personal data via the in-app export where enabled, or by contacting support@levrg.ai.
For formal security questionnaires, data processing agreements, or compliance documentation beyond this summary, contact support@levrg.ai with your IT contact. We will confirm what documentation is available for pilot review.
LEVRG will provide available security documentation upon request. Do not assume SOC 2, ISO, HIPAA, or PCI certification unless LEVRG has provided written attestation for your review.
This page summarizes LEVRG practices at a high level and does not replace the Privacy Policy, Terms of Service, or executed customer agreements.