Privacy Policy

1. Introduction

Eyona Software Development (Pty) Ltd ("Eyona," "we," "us," or "our") operates the WeighIt smart bar inventory management application and related website (collectively, the "Service"). WeighIt connects to Bluetooth-enabled scales to help bars, restaurants, and hospitality venues accurately measure and manage their liquor inventory.

This Privacy Policy explains what information we collect, how we use it, and the choices you have. By accessing or using the Service, you agree to the practices described in this policy. If you do not agree, please discontinue use of the Service.

We are committed to protecting your privacy in compliance with the Protection of Personal Information Act, 2013 ("POPIA") of South Africa and, where applicable, the European Union General Data Protection Regulation ("GDPR").

2. Information We Collect

2.1 Account and Business Information

When you create a WeighIt account or contact us, we may collect:

• Full name
• Email address
• Phone number
• Business or venue name
• Business address
• Venue type (e.g., bar, restaurant, hotel)
• Any additional information you provide in messages via our contact form

2.2 Payment Information

We use third-party payment processors to handle all payment transactions. We do not store your full credit card number, bank account details, or other sensitive payment credentials on our servers. Our payment processors may collect:

• Credit or debit card details
• Billing address
• Transaction history related to your subscription

2.3 Inventory and Product Data

The core of WeighIt is inventory management. We collect and store:

• Bottle and product weights recorded via Bluetooth scale
• Product names, brands, categories, and volumes from our 3,500+ product database
• Calculated tot counts and stock levels
• Vendor and supplier details you enter
• Historical inventory data, stock-take results, and variance reports
• Exported reports and analytics

2.4 Bluetooth Device Data

When you pair a Bluetooth scale, we collect:

• Scale device name and model
• Bluetooth identifier / MAC address
• Connection status and signal strength
• Weight readings transmitted from the scale

Bluetooth permissions are requested at the point of use. We do not scan for or connect to Bluetooth devices other than supported weighing scales. Bluetooth data is used solely for enabling scale communication within the app.

2.5 Device Information

We automatically collect certain technical information from your device, including:

• Hardware model and manufacturer
• Operating system and version (Android/iOS)
• Unique device identifiers
• IP address
• App version
• Mobile network information

2.6 Location Data

With your explicit consent, we may collect location data through:

• GPS coordinates
• IP-based geolocation
• Wi-Fi access point information

Location data is used to associate inventory records with specific venue locations and to improve service delivery. You may revoke location permission at any time through your device settings. The app will continue to function without location access, though certain location-based features may be limited.

2.7 Usage Analytics and Cookies

We collect information about how you interact with the Service, including:

• Features used and frequency of use
• Pages and screens viewed
• Tap and navigation patterns
• Crash logs and performance data
• Session duration and time stamps

On our website, we use cookies and similar technologies to collect browsing data. See Section 5 for details.

2.8 Third-Party Integrations (POS Systems)

If you choose to integrate WeighIt with a Point of Sale (POS) system or other third-party service, we may collect:

• POS system connection credentials (stored securely)
• Sales and transaction data synced from your POS
• Product mapping data between WeighIt and your POS
• Integration status and sync logs

3. How We Use Your Information

We use the information we collect for the following purposes:

• Provide and operate the Service – Connecting to Bluetooth scales, calculating tot counts, managing inventory, generating reports, and syncing data to the cloud.
• Account management – Creating and maintaining your account, authenticating access, and processing subscription payments.
• Analytics and improvements – Understanding usage patterns to improve features, fix bugs, and develop new functionality.
• Communication – Responding to your enquiries, sending service notifications, and providing customer support.
• POS integration – Enabling data exchange between WeighIt and your connected POS system for inventory reconciliation and loss analysis.
• Export and reporting – Generating and delivering inventory reports, variance analysis, and other data exports you request.
• Security and fraud prevention – Detecting and preventing unauthorized access, abuse, or other harmful activity.
• Legal compliance – Meeting our obligations under applicable laws and regulations.

4. Information Sharing and Disclosure

We do not sell your personal information. We may share information in the following limited circumstances:

• Service providers – Third-party companies that help us operate the Service, including cloud hosting, payment processing, analytics, and customer support. These providers are bound by contractual obligations to protect your data.
• POS system providers – When you enable a POS integration, inventory and product data is shared with your chosen POS provider to the extent necessary for the integration to function. This sharing is initiated and controlled by you.
• Payment processors – Transaction data is shared with our PCI-DSS compliant payment processors solely to facilitate subscription billing.
• Analytics partners – Aggregated and de-identified usage data may be shared with analytics providers (including Google Analytics) to help us understand how the Service is used.
• Legal requirements – We may disclose information if required by law, regulation, legal process, or governmental request.
• Business transfers – In the event of a merger, acquisition, or sale of assets, your data may be transferred as part of that transaction. We will notify you of any such change.
• With your consent – We may share information for other purposes when you have given us explicit consent to do so.

5. Cookies and Tracking

Our website uses cookies and similar tracking technologies to enhance your browsing experience and gather usage analytics.

Google Analytics

We use Google Analytics (measurement ID: G-11C09B831M) to collect anonymized data about website traffic and user behavior. Google Analytics uses cookies to track:

• Pages visited and time spent on each page
• Referral sources and search terms
• Browser type, device, and operating system
• Approximate geographic location (country/city level)

Google Analytics data is processed by Google LLC. For more information, see Google's Privacy Policy. You can opt out of Google Analytics by installing the Google Analytics Opt-out Browser Add-on.

Essential Cookies

Some cookies are strictly necessary for the website and Service to function (e.g., session management, authentication). These cannot be disabled without impacting functionality.

Managing Cookies

You can control cookies through your browser settings. Disabling non-essential cookies will not prevent you from using the core features of the WeighIt app.

6. Data Retention

We retain your information for as long as your account is active or as needed to provide the Service. Specifically:

• Account data – Retained for the duration of your account and for a reasonable period after closure to comply with legal obligations.
• Inventory and product data – Retained for the duration of your account. You may export your data at any time before closing your account.
• Bluetooth device data – Retained only during active use and stored locally on your device. Scale pairing information is removed when you unpair a device.
• Payment records – Transaction records are retained as required by tax and financial regulations.
• Usage analytics – Retained in aggregated, de-identified form and may be kept indefinitely for analytical purposes.

When data is no longer required, it is securely deleted or anonymized in accordance with our data management procedures.

7. Data Security

We implement appropriate technical and organizational measures to protect your information, including:

• Encryption of data in transit (TLS/SSL) and at rest
• Secure cloud infrastructure with regular security audits
• Access controls and authentication for all internal systems
• Regular backups and disaster recovery procedures
• Secure Bluetooth communication protocols for scale data transmission

While we strive to protect your data, no method of electronic storage or transmission is 100% secure. We encourage you to use strong, unique passwords and keep your device software up to date.

8. Your Rights (POPIA / GDPR)

Depending on your location, you may have the following rights regarding your personal information:

Under POPIA (South Africa)

• Access – Request confirmation of whether we hold your personal information and obtain a copy.
• Correction – Request correction or deletion of inaccurate, irrelevant, or excessive personal information.
• Objection – Object to the processing of your personal information on reasonable grounds.
• Complaint – Lodge a complaint with the Information Regulator of South Africa.

Under GDPR (European Economic Area)

• Access – Request a copy of the personal data we hold about you.
• Rectification – Request correction of inaccurate data.
• Erasure – Request deletion of your personal data ("right to be forgotten").
• Restriction – Request restriction of processing in certain circumstances.
• Portability – Receive your data in a structured, commonly used, machine-readable format.
• Objection – Object to processing based on legitimate interests or for direct marketing.
• Withdraw consent – Withdraw consent at any time where processing is based on consent.

To exercise any of these rights, please contact us using the details in Section 12. We will respond within a reasonable timeframe and no later than 30 days, as required by law.

9. Children's Privacy

WeighIt is a business-to-business application designed for use by hospitality professionals. The Service is not intended for use by children under the age of 18. We do not knowingly collect personal information from children.

If we become aware that we have collected personal information from a child under 18, we will take steps to delete that information promptly. If you believe a child has provided us with personal data, please contact us at info@eyonasoftware.co.za.

10. International Data Transfers

Eyona Software Development is based in Cape Town, South Africa. Your information may be transferred to and processed in countries other than your own, including countries where our cloud hosting and service providers operate.

Where we transfer data internationally, we ensure appropriate safeguards are in place, including:

• Standard contractual clauses approved by relevant authorities
• Ensuring recipients maintain adequate levels of data protection
• Compliance with POPIA's provisions on cross-border data transfers
• Where applicable, compliance with GDPR transfer mechanisms

11. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. When we make material changes:

• We will update the "Effective Date" at the top of this page.
• We will notify you by email or in-app notification for significant changes.
• Continued use of the Service after changes take effect constitutes acceptance of the updated policy.

We encourage you to review this page periodically to stay informed about how we protect your data.

12. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

• Company: Eyona Software Development (Pty) Ltd
• Email: info@eyonasoftware.co.za
• Phone: +27 87 058 9661
• Location: Cape Town, South Africa

For POPIA-related enquiries, you may also contact the Information Regulator of South Africa at inforegulator.org.za.