Legal
Last updated: April 2026
Eiro Systems is a trading name of K2026174513 (Pty) Ltd, registered in South Africa. We respect your privacy and handle all data in accordance with the Protection of Personal Information Act (POPIA). This policy explains how we collect, use, and protect your data.
Contact information: When you submit our contact form or reach out via email or WhatsApp, we collect your name, email address, business name, and message content.
Payment information: Payments are processed securely by Yoco, our third-party payment provider. We do not store card details on our servers. Yoco handles all PCI-DSS compliant processing.
Knowledge base content: When you purchase an AI Support Chat plan, you send us content (FAQs, product info, policies) to train your bot. This content belongs to you — we use it solely to configure your bot.
Website analytics: We may collect basic usage data (pages visited, session duration) to improve our website.
This section covers how the AI Support Chat product handles your customers' chat messages.
How messages are processed: When a visitor types into the chat widget on your website, their message is sent to our server, which forwards it to Anthropic's Claude API for a response. The response is returned to the visitor. No message is shared with any third party beyond Anthropic.
Log retention: On Starter Annual and Pro Annual (hosted plans), chat logs are retained for 30 days for support and quality purposes, then permanently deleted. On Self-hosted, you control retention entirely — no data ever reaches our servers.
Data residency: Hosted chat logs are stored on infrastructure located inside South Africa or the European Union. Anthropic processes messages in accordance with their own data handling policies (see anthropic.com/legal/privacy).
Customer ownership: The knowledge base trained for your bot belongs to you. On cancellation, we delete it from our systems within 7 days on request.
We only share your data with: (a) Yoco, to process card payments; (b) Anthropic, to generate AI responses; (c) hosting providers that run our infrastructure; or (d) when required by South African law. All third parties are bound by data protection obligations.
We use SSL/TLS encryption in transit, secure cloud storage, access controls, and server-side environment variables for API keys. Card details never touch our servers.
Under POPIA, you have the right to access, correct, or delete your personal data, withdraw consent, and lodge a complaint with the Information Regulator of South Africa. Email info@eirosystems.com to exercise any of these rights. We respond within one business day.
Contact form submissions are retained for 6 months. Customer account and order records are retained for 5 years to comply with South African tax and financial record-keeping requirements. Chat logs on hosted plans are retained for 30 days. You can request deletion of your contact record at any time.
We may update this policy with reasonable notice. Changes will be posted on this page with an updated date.
In accordance with section 55 of the Protection of Personal Information Act, the Information Officer for K2026174513 (Pty) Ltd t/a Eiro Systems is the sole director of the company. All POPIA-related requests, access requests, and complaints should be directed to the Information Officer via:
The Information Officer will respond to any POPIA request within 30 days as required by section 24 of the Act. You also have the right to lodge a complaint directly with the Information Regulator of South Africa at inforegulator.org.za.
For general privacy-related questions: info@eirosystems.com