Privacy Policy

1. Introduction
Dynamic Drift, a brand of Demand Upsurge Consulting Pvt Ltd (“Dynamic Drift,” “we,” “our,” or “us”), is committed to protecting the privacy and security of personal and client information.
This Privacy Policy describes how we collect, use, store, disclose, and safeguard information when you visit our website https://www.dynamicdrift.io, engage with our services, or interact with us in a business context.
We follow a data minimization and security-first approach designed to reduce risk exposure and protect client information.
2. Scope of This Policy
This Policy applies to:

• Visitors to our website

• Business contacts and prospects

• Clients and their authorized users

• Individuals whose business contact information is processed for campaign execution

This Policy does not apply to third-party websites or services that are not controlled by Dynamic Drift.
3. Information We Collect
We collect only information necessary to provide our services and operate our business effectively.
3.1 Business Contact Information
This may include:

• Name

• Business email address

• Job title

• Company name

• Business phone number

• Professional social media profile (where applicable)

We do not collect or process sensitive personal data such as financial information, payment card details, health records, government identification numbers, or special category personal data.
3.2 Website Usage Information
When you visit our website, we may collect:

• IP address

• Browser type

• Device information

• Pages visited

• Referring URLs

This information is collected for analytics, performance, and security purposes.
4. How We Use Information
We use collected information to:

• Deliver account-based personalization services

• Develop customized landing pages and digital assets

• Execute marketing campaigns on behalf of clients

• Communicate with clients and business contacts

• Improve our website and service performance

• Maintain security and prevent fraud or misuse

We do not sell, rent, or trade personal data.
5. Lawful Basis for Processing
Where applicable under data protection laws, including GDPR, our lawful basis for processing business contact data includes:

• Legitimate interest in providing B2B services

• Performance of a contract

• Consent, where required

6. Data Minimization and Retention
We follow a strict data minimization principle. Only data necessary for service delivery is collected and processed.
Personal data is retained only as long as required to:

• Provide services

• Fulfill contractual obligations

• Comply with legal or regulatory requirements

Data that is no longer required is securely deleted or anonymized.
7. Data Sharing and Third-Party Providers
Dynamic Drift does not resell or distribute client data to unauthorized third parties.
We use established enterprise-grade service providers for hosting, analytics, collaboration, and communication. These providers maintain recognized security certifications such as:

• SOC 2 Type II

• ISO 27001

• GDPR compliance frameworks

Third-party providers are selected based on security posture, reputation, and compliance standards. Access to client data is limited to what is necessary for service delivery.
8. Information Security Safeguards
We implement administrative, technical, and organizational safeguards to protect data against unauthorized access, disclosure, alteration, or destruction.
These measures include:

• Role-based access controls

• Restricted access on a need-to-know basis

• Encryption in transit using secure protocols

• Encryption at rest within certified hosting environments

• Endpoint protection and antivirus solutions

• Full disk encryption on company devices

• Automatic security patching and updates

• Documented incident response procedures

• Confidentiality agreements for all personnel

• Periodic security and data protection training

We continuously assess and improve our security controls in line with industry best practices.
9. Incident Response
Dynamic Drift maintains documented procedures to detect, assess, and respond to potential security incidents.
If a security incident materially impacts client data, affected clients will be notified without undue delay in accordance with contractual and regulatory obligations.
10. International Data Transfers
Where data is processed across jurisdictions, we ensure that appropriate safeguards are in place in accordance with applicable data protection laws.
11. Your Rights
Depending on your jurisdiction, you may have the right to:

• Request access to personal data

• Request correction of inaccurate data

• Request deletion where applicable

• Object to certain processing activities

• Withdraw consent where processing is based on consent

Requests can be submitted to the contact details below.
12. Cookies and Tracking
We may use cookies and similar technologies to improve website functionality and analyze usage. You may control cookie preferences through your browser settings.
13. Confidentiality and Personnel Controls
All personnel are bound by confidentiality and non-disclosure agreements. Access to systems and client information is governed by internal policies and acceptable use standards.
Failure to comply with security policies may result in disciplinary action, including termination.
14. Changes to This Policy
We may update this Privacy Policy periodically to reflect changes in legal, regulatory, or operational requirements. The updated version will be posted on this page with a revised effective date.
15. Contact Information
For questions regarding this Privacy Policy or our data protection practices, please contact:
Dynamic Drift
Demand Upsurge Pvt Ltd
Website: https://www.dynamicdrift.io
Email: ankush@dynamicdrift.io