1. Controller and contact
DynamiXperts FZ-LLC is the controller for the processing of personal data described in this Privacy Policy.
Contact details currently available in this project: business email contact [at] dynamixperts.com, business phone not publicly specified, registered address VUPR0994, Compass Building - Al Hulaila, Al Hulaila Industrial Zone-FZ, Ras Al Khaimah, United Arab Emirates.
2. Scope
This Privacy Policy applies to visits to this website, requests submitted through the contact form and direct communication initiated from this website.
It does not automatically apply to third-party websites linked from this site.
3. Technical data and server logs
When you visit the website, the hosting environment may process technical connection data such as IP address, date and time of access, requested URL, user agent, referrer header and transferred data volume.
The current project does not disclose the hosting provider or hosting country. Those details remain TODO_REQUIRED.
Retention of server logs is currently marked TODO_LEGAL_REVIEW.
4. Contact form and email inquiries
If you use the contact form, the website processes the data you enter: name, company, email address and message content.
The form submits data to Supabase Edge Functions for storage and handling of the inquiry.
The form is intended for ordinary business inquiries. No newsletter signup or combined marketing consent is requested in this form.
5. Categories of personal data
- • Identification and contact data such as name and email address
- • Company-related information voluntarily provided in the form
- • Message content and contextual business information
- • Technical usage and connection data that may arise through website delivery
6. Purposes of processing
- • Providing the website and maintaining its security and stability
- • Receiving, reviewing and responding to contact requests
- • Documenting business inquiries and follow-up communication
- • Protecting against abuse, spam and technical misuse
7. Legal bases for users in the EU or EEA
Where the GDPR applies, website delivery and basic security measures are generally processed on the basis of legitimate interests under Article 6(1)(f) GDPR.
Processing of contact requests is generally based on legitimate interests in handling business inquiries and, where the inquiry is directed toward a possible business relationship, on steps taken prior to entering into a contract under Article 6(1)(b) GDPR.
8. Processing under the UAE PDPL
Where the UAE Federal Decree-Law No. 45 of 2021 on the Protection of Personal Data applies, personal data is processed only for specified operational purposes connected to website operation, security, and handling of business inquiries.
Where required under applicable UAE law, the company will rely on an appropriate legal basis or valid permission for the relevant processing activity.
9. Recipients and processors
Personal data may be processed by hosting providers, infrastructure providers and the configured contact form workflow provider to the extent required for website delivery and inquiry handling.
The contact workflow provider identified in the codebase is Supabase Edge Functions.
No analytics, advertising or social-media tracking providers were found in the current codebase.
10. Hosting provider and hosting country
Hosting provider: Not publicly specified.
Hosting country: Not publicly specified.
11. Transfers between the EU or EEA and the UAE
Because the company is established in the United Arab Emirates, personal data relating to business inquiries may be accessed or processed in the UAE.
Where personal data from the EU or EEA is transferred to the UAE or to other countries, the company intends to rely on a lawful transfer mechanism where required. The exact transfer assessment remains tied to unresolved hosting and operational setup items.
12. Retention period or retention criteria
Contact request retention period: TODO_LEGAL_REVIEW.
Until this point is legally reviewed, personal data should only be retained for as long as necessary to handle the inquiry, document the communication and satisfy applicable legal obligations.
13. Technical and organizational security measures
The website uses HTTPS-based delivery where supported by the hosting setup, access restrictions for backend services, and separation between the public website and server-side function credentials.
Sensitive service credentials are not embedded in the public frontend code. The contact form submits to a server-side function rather than directly to a database.
14. Rights of data subjects
Depending on the applicable law, data subjects may have rights of access, rectification, erasure, restriction, objection, portability and withdrawal of consent where consent is the basis of processing.
15. Access, correction, deletion and restriction
You may request information about whether personal data concerning you is processed and, where applicable, request correction, deletion or restriction of that data.
16. Objection and withdrawal
Where processing is based on legitimate interests, you may object on grounds relating to your particular situation. Where processing is based on consent, you may withdraw that consent for the future.
17. Complaints
If the GDPR applies to your situation, you may have the right to lodge a complaint with a competent supervisory authority in the EU or EEA.
You may also contact the company first so that the issue can be reviewed directly.
18. Automated decisions and profiling
Based on the current codebase, the website does not use automated decision-making or profiling that produces legal effects or similarly significant effects on visitors.
19. Changes to this Privacy Policy
This Privacy Policy may be updated to reflect legal, technical or operational changes. The latest version will be published on this page with an updated date.
20. Contact for privacy questions
Privacy-related inquiries can currently be sent to the company using the contact details listed above. Mandatory business contact details remain TODO_REQUIRED in this project until confirmed.