DLR
DLRBoost LLC Privacy Policy
Privacy and Data Practices

DLRBoost Privacy Policy

Effective date: June 20, 2026

This Privacy Policy explains how DLRBoost LLC (“DLRBoost,” “we,” “us,” or “our”) collects, receives, uses, stores, discloses, and protects information in connection with the DLRBoost website, software platform, customer offer pages, dealership workflows, emails, imports, payment workflows, and related services.

Dealership customer information: In most cases, the dealership determines why and how its customer information is processed. DLRBoost generally processes that information for the dealership as a service provider or processor. Customers should usually contact the applicable dealership first regarding information supplied by that dealership.

1. Scope of This Privacy Policy

This Privacy Policy applies to information processed through:

This Privacy Policy does not independently govern a dealership’s own privacy practices, product contracts, financing practices, websites, systems, or offline activities.

2. Our Privacy Roles

2.1 Information We Process for Dealerships

For customer information that a dealership uploads, imports, or directs DLRBoost to process, the dealership generally determines the purposes and means of processing.

In that context:

2.2 Information We Process for Our Own Business

DLRBoost may act as the business or controller for information used to:

3. Information We Collect or Process

Category Examples Primary Source
Dealership information Legal or display name, address, phone number, logo, dealership contact, business email, selected plan, settings, onboarding status, and CRM import configuration. Dealership representatives and users.
Dealer-user information Name, work email, role, dealership affiliation, account status, password hash, password-reset records, login sessions, and access activity. Dealer administrators and authorized users.
Customer identity and contact information First name, last name, email address, phone number, and dealership relationship. Dealership reports, dealership users, or the customer.
Vehicle and transaction information VIN, year, make, model, sold date, delivery date, dealership, purchased-product information, and source finance-manager name. Dealership CRM reports and dealership users.
Product and offer information Product names, descriptions, prices, aliases, available products, selected products, offer status, customer selections, approval status, and contracting status. Dealership users, dealership reports, customers, and DLRBoost workflows.
Odometer and evidence information Odometer mileage, uploaded odometer image, upload date, certification, review status, and approval information. Customer submission and dealership review.
Email and communication information Email address, sender and reply-to information, message type, send dates, delivery events, workflow notifications, replies, support communications, and unsubscribe requests. Dealerships, customers, SendGrid, and DLRBoost.
Subscription and billing information Selected plan, Stripe customer ID, subscription ID, subscription status, price ID, invoice status, launch-fee amount, setup-fee status, waiver or founding-dealer status, billing interval, term start date, initial term end date, renewal mode, cancellation-request information, scheduled-cancellation information, and billing metadata. Dealership representatives, Stripe, and DLRBoost billing workflows.
Dealer payment-account information Stripe connected-account ID, onboarding status, charges-enabled status, payouts-enabled status, verification status, and last status check. Stripe and dealership representatives.
Customer payment-workflow information Checkout session ID, checkout URL, payment status, payment-intent ID, amount, selected products, payment completion, and contracting status. Stripe and DLRBoost workflows.
Import information File name, format, report sender, inbound alias, subject, import date, row counts, skipped records, plan-locked records, error messages, and import status. Dealership reports, email infrastructure, and DLRBoost systems.
Technical and security information IP address, browser type, device information, cookies, session identifiers, timestamps, request information, application logs, error logs, webhook identifiers, and security events. Browsers, devices, hosting providers, security systems, and DLRBoost systems.
Support and business communications Messages, attachments, issue descriptions, troubleshooting details, feedback, and implementation communications. Dealership personnel, customers, vendors, and DLRBoost personnel.

4. Sensitive and Financial Information

DLRBoost is not designed to collect Social Security numbers, driver’s-license numbers, bank credentials, health information, or full payment-card information through ordinary customer offer pages.

Dealerships and users should not upload information that is unnecessary for the DLRBoost workflow.

Payment-card information entered through Stripe-hosted checkout is submitted directly to Stripe. DLRBoost may receive transaction identifiers, payment status, amount, and related metadata, but does not intend to receive or store full payment-card numbers.

5. How We Use Information

DLRBoost may use information to:

6. Sources of Information

We may receive information from:

7. Dealership Customer Data

As between DLRBoost and the dealership, the dealership retains its rights in Customer Data submitted or imported through the Services.

DLRBoost processes Customer Data to provide the Services under the dealership’s instructions and the applicable Dealer Agreement.

The dealership is responsible for:

8. Legal Bases and Processing Grounds

Depending on the context and applicable law, DLRBoost may process information:

9. How We Disclose Information

DLRBoost may disclose information to the following categories of recipients:

9.1 The Applicable Dealership

Customer submissions, offer activity, payment status, odometer evidence, product selections, and workflow information may be disclosed to the dealership and its Authorized Users.

9.2 Service Providers and Subprocessors

DLRBoost may disclose information to vendors that provide hosting, storage, email delivery, payment, security, support, monitoring, analytics, communications, and business-operation services.

9.3 Professional Advisers

Information may be disclosed to attorneys, accountants, auditors, insurers, consultants, and other professional advisers when reasonably necessary.

9.4 Legal and Safety Disclosures

Information may be disclosed when DLRBoost reasonably believes disclosure is necessary to:

9.5 Business Transactions

Information may be disclosed in connection with a merger, acquisition, financing, restructuring, bankruptcy, sale of assets, due diligence review, or similar business transaction, subject to appropriate protections.

10. Service Providers

DLRBoost currently uses or may use providers such as:

These providers may process information according to their own agreements and privacy policies.

11. Stripe and Payment Information

DLRBoost uses Stripe for DLRBoost subscription payments, launch and setup fees, invoices, billing portal access, and related billing workflows. DLRBoost may also use Stripe Connect for dealership customer payments.

Stripe may collect:

DLRBoost may receive payment status, transaction identifiers, Stripe customer identifiers, Stripe subscription identifiers, Stripe connected-account identifiers, subscription status, invoice status, plan information, setup-fee status, amount, and related metadata.

Payment-card information entered through a Stripe-hosted checkout or billing page is provided directly to Stripe. DLRBoost does not intend to receive or store full payment-card numbers.

Dealership customer payments may be routed to a dealership’s connected Stripe account. The applicable dealership remains responsible for product pricing, contracts, refunds, disputes, chargebacks, taxes, product fulfillment, and customer support.

12. Email Communications

DLRBoost may send emails:

Emails may be sent from a DLRBoost-controlled address with replies directed to the dealership or assigned finance manager.

Dealerships are responsible for determining whether customers may lawfully be contacted and for honoring applicable unsubscribe and opt-out requests.

A customer receiving dealership marketing or promotional emails may request to stop receiving those messages by using the included opt-out method, replying as instructed, or contacting the dealership.

Account, payment, security, contracting, and other transactional messages may continue when necessary to complete a requested transaction or provide the Services.

13. Cookies and Session Technologies

DLRBoost may use cookies and similar technologies to:

DLRBoost uses an HTTP-only session cookie for authenticated platform access. Disabling necessary cookies may prevent login or other platform features from working.

14. Product Videos and External Content

A dealership may embed a product video hosted by Vimeo, YouTube, or another provider.

When a user loads or interacts with embedded content, the video provider may receive technical information such as the user’s IP address, device information, browser information, and interaction data according to that provider’s own privacy practices.

15. Sale, Targeted Advertising, and Profiling

DLRBoost does not sell personal data for money.

DLRBoost does not sell dealership Customer Data and does not use dealership Customer Data for cross-context behavioral advertising or targeted advertising unrelated to the dealership’s requested services.

DLRBoost does not use dealership Customer Data, subscription metadata, setup-fee metadata, billing metadata, or payment-workflow metadata to build advertising profiles for unrelated third-party advertising.

DLRBoost does not use Customer Data to make decisions that produce legal or similarly significant effects concerning employment, housing, credit, insurance, education, or access to essential services.

DLRBoost may perform product matching, exclusion logic, reporting, and workflow automation under the dealership’s instructions. The dealership remains responsible for final product eligibility, approval, pricing, contracting, and customer-facing decisions.

16. Aggregated and De-Identified Information

DLRBoost may create aggregated or de-identified information that does not reasonably identify a dealership or individual.

DLRBoost may use such information for:

DLRBoost will not attempt to re-identify information maintained as de-identified except as permitted by law or reasonably necessary to test de-identification controls.

17. Data Security

DLRBoost maintains reasonable administrative, technical, and organizational safeguards designed to protect information against unauthorized access, acquisition, destruction, use, modification, or disclosure.

Safeguards may include:

No transmission, storage system, website, or service can be guaranteed to be completely secure. DLRBoost does not guarantee absolute security.

18. Dealer and User Security Responsibilities

Dealerships and their users are responsible for:

19. Security Incidents

If DLRBoost confirms a security incident involving unauthorized access to dealership Customer Data, DLRBoost will notify the affected dealership without undue delay after obtaining sufficient information to determine that notification is appropriate.

DLRBoost may provide available information concerning:

The dealership is generally responsible for determining whether it must notify affected customers, regulators, law enforcement, product providers, insurers, or other parties.

20. Data Retention

DLRBoost retains information for as long as reasonably necessary for the purposes described in this Privacy Policy, including to:

Retention periods may vary depending on:

21. Specific Retention Practices

Subject to configuration, operational needs, and applicable law:

22. Data Export and Deletion

During an active subscription, a dealership may request a reasonable export of available dealership Customer Data, subject to technical limitations.

Following termination, DLRBoost may:

Deletion requests may be denied, delayed, or limited when retention is reasonably necessary to:

23. Privacy Rights

Depending on applicable law and the circumstances, an individual may have rights to:

These rights are subject to legal exceptions, verification requirements, and whether the applicable privacy law covers the individual, dealership, data, or processing activity.

24. Requests Concerning Dealership Customer Data

If DLRBoost processes information solely for a dealership, the dealership is generally responsible for responding to the individual’s request.

An individual should contact the dealership from which the offer, email, vehicle transaction, or product workflow originated.

When DLRBoost receives a request involving dealership Customer Data, DLRBoost may:

25. Requests Concerning DLRBoost Account Data

Dealership representatives may submit a request concerning information DLRBoost controls by emailing:

support@dlrboost.com

The request should include:

26. Verification of Requests

DLRBoost or the applicable dealership may need to verify a requester’s identity and authority before fulfilling a privacy request.

Verification may involve confirming:

DLRBoost will not request more information than reasonably necessary to verify and respond to the request.

27. Appeals

Where applicable law provides a right to appeal a denied privacy request, the requester may submit an appeal to:

support@dlrboost.com

The subject line should state: Privacy Request Appeal.

28. Authorized Agents

Where permitted by law, an authorized agent may submit a request on an individual’s behalf.

DLRBoost or the dealership may require proof of the agent’s authority and may separately verify the individual’s identity.

29. Children’s Privacy

DLRBoost is intended for dealerships, dealership personnel, and adult vehicle customers.

DLRBoost is not directed to children under 13 and does not knowingly collect personal information directly from children under 13.

If you believe a child has submitted information through DLRBoost, contact: support@dlrboost.com .

30. United States Operations

DLRBoost is operated from the United States. Information may be processed and stored in the United States and other locations where DLRBoost’s service providers operate.

DLRBoost is not currently intended to provide services to dealerships or consumers outside the United States unless expressly agreed in writing.

31. Do Not Track Signals

Some browsers provide “Do Not Track” signals. Because there is not a universally accepted standard governing these signals, DLRBoost does not currently respond to browser Do Not Track signals.

DLRBoost does not use dealership Customer Data for cross-context behavioral advertising.

32. Links to Third-Party Services

The Services may contain links to Stripe checkout, dealership websites, product providers, video providers, DocuSign, or other third-party services.

DLRBoost does not control the privacy or security practices of third-party services. Users should review the applicable third party’s privacy policy and terms.

33. Changes to This Privacy Policy

DLRBoost may update this Privacy Policy to reflect changes in law, technology, vendors, security, business practices, or the Services.

The updated policy will be posted with a revised effective date.

When changes are material, DLRBoost may provide additional notice through email, the Services, or another reasonable method.

34. Contact DLRBoost

Questions, concerns, or requests regarding this Privacy Policy may be sent to:

DLRBoost LLC
Email: support@dlrboost.com

For requests involving information supplied by a dealership, please identify the applicable dealership and provide enough information to locate the relevant record.