1. Introduction

DYNAMIK APP LTD ("we", "us", "our") is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our business management platform, dynamik.app.

We comply with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

2. Data Controller

The data controller responsible for your personal data is:

DYNAMIK APP LTD

Royal Business Centre
Buckingham Street
Birmingham, B19 3HT
United Kingdom

For any questions about this Privacy Policy or our data practices, please contact us at: privacy@dynamik.app

3. Information We Collect

3.1 Information You Provide

• Account Information: Name, email address, password, and company details when you register
• Business Data: Client information, invoices, expenses, financial records, and other business documents you create using our platform
• Payment Information: Billing address and payment details processed securely through Stripe
• Communications: Messages you send to our support team or through our platform

3.2 Information Collected Automatically

• Usage Data: Pages visited, features used, and interactions with our platform
• Device Information: IP address, browser type, operating system, and device identifiers
• Cookies: See our Cookie Policy for detailed information

3.3 Information from Third Parties

• Open Banking: Bank transaction data when you connect your bank accounts (via TrueLayer)
• HMRC: Tax-related information when you authorise HMRC connections for Making Tax Digital
• Companies House: Company registration details for verification purposes

4. How We Use Your Information

We use your personal data for the following purposes:

Service Delivery

To provide, maintain, and improve our business management platform

Account Management

To create and manage your account, process subscriptions, and provide customer support

Communications

To send service-related notifications, updates, and marketing communications (with your consent)

Compliance

To comply with legal obligations, including HMRC reporting requirements

Security

To detect, prevent, and address fraud, security issues, and technical problems

Analytics

To understand how our platform is used and improve user experience

5. Legal Basis for Processing

We process your personal data based on the following legal grounds:

Contract

Processing necessary to perform our contract with you (providing our services)

Legitimate Interests

Processing necessary for our legitimate business interests, such as improving our services and preventing fraud

Legal Obligation

Processing necessary to comply with legal requirements

Consent

Where you have given explicit consent for specific processing activities

6. Data Sharing

We may share your personal data with:

• Service Providers: Third-party vendors who assist in operating our platform (hosting, payment processing, email delivery)
• Professional Advisors: Accountants, lawyers, and auditors where necessary
• Regulatory Authorities: HMRC and other government bodies when required by law
• Business Transfers: In connection with a merger, acquisition, or sale of assets

We do not sell your personal data to third parties.

7. International Transfers

Your data is primarily stored and processed within the United Kingdom and European Economic Area. Where we transfer data outside these regions, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the UK Information Commissioner's Office.

8. Data Retention

We retain your personal data for as long as necessary to:

• Provide our services to you
• Comply with legal obligations (e.g., UK tax records must be kept for 6 years)
• Resolve disputes and enforce our agreements

When data is no longer needed, we securely delete or anonymise it.

9. Your Rights

Under UK GDPR, you have the following rights:

Access

Request a copy of your personal data

Rectification

Request correction of inaccurate data

Erasure

Request deletion of your data

Restriction

Request limitation of processing

Portability

Request transfer of your data

Objection

Object to processing based on legitimate interests

To exercise these rights, contact us at privacy@dynamik.app. We will respond within one month.

10. Data Security

We implement appropriate technical and organisational measures to protect your personal data, including:

Encryption of data in transit (TLS/SSL) and at rest

Regular security assessments and penetration testing

Access controls and authentication mechanisms

Employee training on data protection

11. Children's Privacy

Our services are not intended for individuals under 18 years of age. We do not knowingly collect personal data from children.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by posting a notice on our website or sending you an email. Your continued use of our services after changes are posted constitutes acceptance of the updated policy.

13. Complaints

If you have concerns about how we handle your personal data, please contact us first at privacy@dynamik.app.

You also have the right to lodge a complaint with the Information Commissioner's Office (ICO):

Information Commissioner's Office

Wycliffe House
Water Lane
Wilmslow, SK9 5AF

ico.org.uk/make-a-complaint