HubSpot security and reliability

The app uses HubSpot OAuth, exchanges tokens through HubSpot's date-based OAuth v3 token endpoint, stores refresh tokens encrypted at rest, and does not expose tokens in docs or dashboard UI.

App-card requests are sent by HubSpot to Company Data Guys. The backend validates HubSpot request signatures before processing enrichment requests.

Invalid or missing LinkedIn company URLs are reported in the app card instead of writing unrelated data. The app records last successful card activity for support and review evidence.

Customer HubSpot data is used only to provide the integration. It is not used to train or improve shared AI or machine-learning models.