A webhook is a URL your application listens on. When Piplead has a matched lead for one of your Campaigns, it POSTs a JSON payload to your webhook URL in real time. You acknowledge with a 2xx response; failures are retried with exponential backoff.
Piplead signs every payload with HMAC-SHA256 using a secret shared with your CRM. Verify the signature before processing — that prevents spoofed deliveries.
Every delivery is observable in the Piplead workspace: status code, retry count, full payload, latency. You don't need a separate monitoring tool.