Last updated: 19 February 2026

This Privacy Policy explains how DYNAMIC RESOURCES SRL ("we", "us", or "our") collects, uses, discloses, and protects your personal data when you visit our website (https://dynares.ai) or use the dynares software-as-a-service (SaaS) platform (https://dynares.app) (collectively, the "Service").

1. Data Controller

DYNAMIC RESOURCES SRL, located at Şoseaua BUCUREŞTI-PLOIEŞTI, Nr. 19-21, Băneasa Business Center, Biroul nr. MR8, Etaj 6, Sector 1, 077190 Bucureşti, Romania, is the data controller responsible for your personal data.

For Customer End User data submitted via hosted landing pages, the Customer is the data controller and we act as the data processor.

2. Data We Collect

We may collect and process the following categories of personal data, depending on how you interact with our Website or Platform:

  • Identity and Contact Information: such as your full name, email address, company name, phone number, and billing or business address.
  • Account Information: including usernames, hashed passwords, subscription details, user roles, and activity logs associated with your use of the platform.
  • Payment and Transaction Data: such as invoices, payment confirmations, tax identification numbers, and billing history (processed securely via third-party payment providers).
  • Technical and Device Data: including your IP address, browser type, operating system, device identifiers, access times, and referring URLs, collected automatically via server logs or analytics tools.
  • Usage and Interaction Data: such as pages viewed, time spent on the platform, clicks, session duration, scroll behavior, and form interactions, gathered via cookies and similar technologies.
  • Customer-Submitted Content: any data you upload or enter into the platform, including landing page configurations, campaign inputs, images, keywords, and branding materials. This may also include content automatically extracted from public websites you submit to the platform, which is used to configure your onboarding experience and templates.
  • End-User Data (on behalf of Customers): data submitted by your customers or website visitors through hosted forms on landing pages generated by dynares (e.g., names, emails, phone numbers, responses), which we process strictly on your behalf. See Section 14 for more.
  • Integration Data (Connected Accounts): where you choose to connect third-party integrations (such as Google Ads and HubSpot), we collect and store authentication credentials such as OAuth 2.0 access tokens and refresh tokens, and integration identifiers such as Google Ads Customer ID and/or HubSpot Portal ID. We may also process integration-related event data necessary to perform the requested integration actions (e.g., conversion identifiers, timestamps, and configuration choices you select in the Platform).

3. How We Use Your Data

We use the personal and business data we collect for the following purposes:

  • To provide and maintain the dynares platform and services, including hosting, user authentication, campaign setup, analytics, and customer support.
  • To streamline onboarding, including by analyzing your submitted website (via scraping publicly available content) and using third-party business intelligence sources to enrich your organization’s profile with relevant attributes (e.g., industry, employee count, technologies used, etc.).
  • To personalize your user experience, such as pre-filling templates, aligning content with your brand, or suggesting relevant features.
  • To manage your account and subscription, including billing, usage tracking, and administrative notifications.
  • To respond to inquiries and support requests, including technical issues or onboarding assistance.
  • To improve platform functionality and service quality, through analytics, user behavior tracking, and feedback.
  • To send service communications (“System Emails”): including account verification, security alerts, password resets, billing notices/receipts, service-related notices, and other essential operational messages. These messages are necessary to provide the Service and cannot be unsubscribed from.
  • To send optional account information emails: including recurring account summaries and usage information (e.g., daily/weekly/monthly reports). You can unsubscribe from these optional emails at any time via the unsubscribe link in the message or your account notification settings.
  • To provide and operate integrations you enable: including connecting to third-party services via OAuth 2.0, performing actions you request (e.g., syncing contacts/leads, updating campaign entities, sending offline conversion events), and maintaining integration settings.
  • To comply with legal obligations, including applicable tax, accounting, or data protection laws, and to respond to lawful requests from authorities.

3.1 Integrations You Enable (Google Ads, HubSpot)

If you choose to connect an integration, you explicitly authorize us to access and process data from that third-party account and to send data to that third party as needed to provide the integration features you select. Once data is transmitted to an integration provider, its processing is governed by that provider’s terms and privacy policy.

Google Ads

  • Data collected from you: OAuth tokens; Google Ads Customer ID.

  • Data sent to Google: campaign/ad/keyword management changes you initiate via the Platform; and offline conversion data such as GCLID, conversion value, and timestamp.

  • Purpose: campaign management, performance optimization, and conversion attribution.

HubSpot

  • Data collected from you: OAuth tokens; HubSpot Portal ID.

  • Data sent to HubSpot: lead/contact data you configure or submit via the Service such as email, name, company, website, IP address, and HubSpot cookie (where available/implemented).

  • Purpose: lead tracking in CRM and contact synchronization.

OAuth, storage, and disconnect

All supported integrations use OAuth 2.0. Tokens are stored securely and used only to perform the integration functions you enable. You can disconnect an integration at any time in your account settings; disconnecting revokes access and we will delete or invalidate stored tokens within a reasonable period unless retention is required by law or for security/fraud prevention. Disconnecting also stops any further data transfers to that integration from our Service.

4. Legal Basis for Processing

We process your personal data in accordance with the General Data Protection Regulation (GDPR) and other applicable laws, based on the following legal grounds:

  • Performance of a Contract
    When processing is necessary to enter into or fulfill our contractual obligations to you, such as providing access to the dynares platform, managing your account, delivering customer support, and facilitating billing or subscription services.

  • Integrations you enable (e.g., Google Ads / HubSpot)
    Processed on the basis of Performance of a Contract (to provide the features you request) and/or Your Consent (explicit enablement via OAuth).

  • Optional account information emails (daily/weekly/monthly summaries)
    Processed on the basis of Legitimate Interests and/or Your Consent, depending on your settings and applicable law.

  • Your Consent
    When you have given us explicit consent to process your data for specific purposes, such as receiving marketing communications, setting non-essential cookies, or enabling optional features. You may withdraw your consent at any time.

  • Legitimate Interests
    When processing is necessary for our legitimate business interests, provided those interests are not overridden by your data protection rights. This includes:


    • Improving the onboarding experience through website content analysis and business profile enrichment;
    • Enhancing platform functionality and performance;
    • Preventing abuse or misuse of our services;
    • Understanding user behavior to improve usability and engagement.

  • Legal and Regulatory Compliance

    When processing is required to comply with our legal obligations, such as maintaining accounting records, complying with tax regulations, or responding to lawful requests from authorities.

5. Sharing Your Data

We take data confidentiality seriously and limit sharing to what is strictly necessary to deliver our services or comply with the law.

Customer Business Data (Controller Role):

We may share your account and usage data with trusted service providers who support our operations, such as hosting providers, payment processors, analytics tools, and onboarding platforms. These providers only process your data under our instruction and in compliance with this Privacy Policy and applicable data protection laws.

Sharing via Integrations You Enable: 

If you connect third-party integrations (e.g., Google Ads, HubSpot), we will share relevant data with those third parties at your direction in order to provide the integration functionality (such as syncing contacts/leads, applying campaign changes, or sending conversion events). These third parties process personal data under their own privacy policies and terms.

Customer End User Data (Processor Role):

When your end users submit data via forms hosted on dynares-generated landing pages, we act solely as a data processor on your behalf. We do not access, use, or share this data except:

  • As instructed by you (the Customer); or
  • As required to comply with applicable legal obligations (e.g., court orders, law enforcement requests).

No Sale of Data:

We never sell, rent, or trade personal data — whether customer or end-user — to third parties under any circumstances.

Legal Requirements:

We may disclose data if required to do so by law or in response to valid requests by public authorities (e.g., a court or government agency), and only to the extent legally necessary.

6. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, or as required to comply with legal, contractual, or regulatory obligations.

  • Customer Data
    Your account, billing, and usage data are retained for the duration of your active subscription and for a limited period thereafter (typically up to 24 months) to comply with tax, accounting, and contractual requirements. You may request early deletion of your data, subject to applicable legal obligations.

  • Customer End User Data
    Form submissions and lead data collected via dynares-hosted landing pages are stored on your behalf for as long as your account remains active. You may manage or request deletion of this data at any time via the platform or by contacting support. Upon account termination, we retain such data only as required by law or for backup purposes, after which it is securely deleted or anonymized.

  • Backup Copies
    We maintain periodic system backups for operational continuity and disaster recovery. Backup data is retained for a limited time and is securely deleted in accordance with our data retention schedule.

  • Integration tokens and identifiers
    Retained only while the integration remains connected, and are deleted/invalidated after disconnection (subject to legal/security needs).

  • Account summary email preferences
    Retained as part of your account settings to honor opt-outs.

7. Your Rights

If you are located in the European Economic Area (EEA) or another jurisdiction that grants similar protections, you have the following rights under applicable data protection laws, including the General Data Protection Regulation (GDPR):

  • Right of Access – You may request a copy of the personal data we hold about you, along with an explanation of how it is used.
  • Right to Rectification – You have the right to request correction of any inaccurate or incomplete data we hold about you.
  • Right to Erasure (“Right to be Forgotten”) – You may request deletion of your personal data where it is no longer necessary for the purposes for which it was collected, or if you withdraw consent or object to processing (subject to legal exceptions).
  • Right to Restrict Processing – You may request that we limit the processing of your personal data under certain conditions (e.g., pending correction of inaccurate data).
  • Right to Object – You may object to the processing of your personal data based on our legitimate interests, including profiling, unless we demonstrate compelling legitimate grounds to continue.
  • Right to Data Portability – You may request a machine-readable copy of your personal data and have it transferred to another service provider, where technically feasible.
  • Right to Withdraw Consent – Where processing is based on your consent, you have the right to withdraw that consent at any time, without affecting the lawfulness of processing before withdrawal.
  • Email preferences: You may opt out of optional account information emails (daily/weekly/monthly summaries) at any time. You will still receive System Emails necessary to provide the Service (e.g., billing, security, and critical account notices). We do not use System Emails for marketing or promotional content.

To exercise any of these rights, please contact us at info@dynares.app. We may require proof of identity and additional information to fulfill certain requests. We aim to respond within 30 days, as required by law.

8. Data Security

We implement appropriate technical and organizational measures to protect your personal data, including encryption, access control, and secure hosting. However, no system is entirely immune from risk.

9. International Data Transfers

Your data is primarily stored and processed within the European Union. If transferred outside the EU, such transfers will comply with GDPR requirements (e.g., Standard Contractual Clauses).

10. Cookies and Tracking Technologies

We use cookies and similar technologies to track activity on our Website and hold certain information. You can control your cookie preferences via your browser settings or through the cookie consent banner (where applicable). For more details, see our Cookie Policy.

11. Third-Party Links

Our Website may contain links to third-party websites or services. We are not responsible for their privacy practices. We encourage you to review their policies before providing personal data.

12. Children's Privacy

Our Service is not directed to individuals under the age of 18. We do not knowingly collect personal data from children. If you become aware that a child has provided us with data, please contact us and we will delete it.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any significant changes via email or through the Service. The latest version will always be available at https://dynares.ai/privacy-policy.

14. Data Processed on Behalf of Customers

When our Customers use the dynares platform to create and host landing pages that include contact forms or other input mechanisms, we may collect and process personal data submitted by their end-users (“Customer End Users”) on their behalf.

In such cases, the Customer acts as the data controller, and DYNAMIC RESOURCES SRL acts solely as the data processor. We do not determine the purpose or means of processing this data.

We process such data only:

- On documented instructions from the Customer;

- For the purposes of providing the dynares platform and services;

- In accordance with applicable data protection laws, including Article 28 of the GDPR.

It is the responsibility of the Customer to ensure that they have obtained the necessary consent or legal basis to collect and process the data from their end-users, and to provide them with appropriate privacy notices.

We do not use Customer End User data for any other purpose than delivering the service, and we do not sell or share such data with third parties.

For more information about our data processing obligations, Customers may request our Data Processing Agreement (DPA) by contacting info@dynares.app.

15. Contact Us

If you have any questions or concerns about this Privacy Policy, or wish to exercise your rights, please contact us at:
📨 info@dynares.app


🏢 DYNAMIC RESOURCES SRL, Şoseaua BUCUREŞTI-PLOIEŞTI, Nr. 19-21, Băneasa Business Center, Biroul nr. MR8, Etaj 6, Sector 1, 077190 Bucureşti, Romania