Privacy Policy – Omnyra

Last updated: 08/11/2025

1. General information

This Privacy Policy explains how S.C. Eltand S.R.L., a Romanian legal entity, headquartered in Romania, registered with the Trade Register, with the unique registration code 43784807 (hereinafter referred to as “Omnyra”, “we” or “the operator”), collects, uses and protects the personal data of users of the platform https://omnyra.eltand.ro (hereinafter referred to as the “Platform”).

Omnyra complies with European and national data protection legislation, in particular Regulation (EU) 2016/679 (“GDPR”).

2. Data we collect

Omnyra collects the following types of data:

a) Data provided directly by the user

  • First and last name (if provided voluntarily)
  • Email address
  • Password (stored encrypted)
  • Company name and website (if entered for B2B profiling purposes)
  • Billing data, if the user has a paid subscription

b) Automatically collected data

  • IP address
  • Browser, operating system and device information
  • Platform usage data (e.g. features accessed, time spent in the application)
  • Tracking events (via Google Ads, Google Tag Manager and Microsoft Clarity)

c) Data collected from third-party sources (for DFY – “Done For You” plans)

If the user requests that Omnyra collect B2B data (e.g. information about companies and professional contacts), this data is purchased exclusively from established and check. According to Recital 14 of the GDPR, the Regulation does not cover the processing of personal data concerning legal persons, including the name and form of the legal entity and its contact details.

3. Purposes of processing

The data are processed for the following purposes:

  • creation and administration of the user account;
  • provision of Omnyra services (automated campaigns, profiling, content generation);
  • issuing invoices and managing payments;
  • commercial communications and technical support;
  • statistical analysis and improving the user experience;
  • compliance with legal obligations and requirements of public authorities.

The data may also be used for marketing, only with the explicit consent of the user.

4. Legal basis for processing

The data processing is based on the following legal grounds:

  • performance of the contract (art. 6 para. (1) lit. b) GDPR) – for the provision of the service;
  • legitimate interest (art. 6 par. (1) lit. f) GDPR) – to improve the service and prevent abuse;
  • legal obligation (art. 6 par. (1) lit. c) GDPR) – to issue invoices and keep accounting records;
  • user consent (art. 6 par. (1) lit. a) GDPR) – for optional marketing communications.

5. Data storage

The data is stored in secure environments, on servers in the European Union or the European Economic Area (EEA). Omnyra implements appropriate technical and organizational measures for data protection (encryption, access control, regular backup).

The data is stored for the duration of the account; subsequently, for a maximum period of 12 months after the account is deleted, unless there is a longer legal obligation to archive.

6. Sharing data with third parties

Omnyra does not sell, rent or transfer personal data to other entities, except in the following situations:

  • technical service providers (e.g. hosting, analytics, payment processors – Stripe);
  • public authorities, if required by law;
  • contractual partners involved in providing DFY plans, exclusively for B2B data.

All partners are required to comply with data confidentiality and GDPR requirements.

7. User rights

The user has the following rights:

  • Right of access – to request information about the data collected;
  • Right to rectification – to correct inaccurate data;
  • Right to erasure (“right to be forgotten”) – under certain conditions;
  • Right to restriction – to limit processing in specific cases;
  • Right to portability – to receive data in a usable electronic format;
  • Right to object – to object to processing for marketing purposes;
  • Right to file a complaint with the National Supervisory Authority for Personal Data Processing (ANSPDCP).

To exercise these rights, the user can contact Omnyra at: 📧 official@eltand.com

8. International data transfer

Omnyra does not normally transfer data outside the European Union. If, in exceptional circumstances, a service provider (e.g. Stripe, Microsoft Clarity) uses servers outside the EEA, the transfer is only made to countries with an adequacy decision issued by the European Commission or based on standard contractual clauses.

9. Data security

Omnyra implements strict security measures to protect personal data:

  • data encryption sensitive;
  • secure user authentication;
  • limiting access to confidential information;
  • monitoring and periodic auditing of systems.

10. Minors

The Omnyra platform is not intended for use by persons under 18 years of age. If such a person has provided personal data, it will be deleted as soon as the situation is identified.

11. Policy changes

Omnyra reserves the right to update this Privacy Policy, depending on legislative or technical changes. The updated version will be published on this page, with the date of the last change visible at the top.

Continuing to use the service after the changes implies acceptance of the new conditions.

12. Contact

For any questions related to data protection, you can contact us at: 📧 official@eltand.com 🌐 https://omnyra.eltand.ro