Eurora Group Limited is committed to protecting personal data and complying with applicable data protection laws, including the UK General Data Protection Regulation (UK GDPR) General Data Protection Regulation (GDPR) and the Data Protection Act 2018.
We implement appropriate technical and organisational measures to safeguard personal data processed in connection with our services.
CYRUS TMS is not primarily designed for the processing of personal data. However, depending on how customers use the platform, limited personal data (such as information relating to drivers or other individuals) may be processed as part of normal service operation.
Customers determine what personal data is uploaded to and processed within the CYRUS TMS platform and act as the data controller.
Eurora Group Limited acts as a data processor and processes personal data:
• Only on documented instructions from customers; and
• Solely for the purpose of providing the Services.
Depending on customer use, the Company may process limited categories of personal data, including:
• Names and contact details
• Operational and logistics-related data
• Billing and account information
The Company does not intentionally process special category data as part of its standard services.
For subscription and billing purposes, limited personal data is processed via third-party payment providers, including GoCardless.
This data is used solely for managing subscriptions and payments and is subject to appropriate contractual safeguards.
Personal data is retained only for as long as necessary to provide the Services and to comply with legal obligations.
Data is:
• Retained for the duration of the customer relationship;
• Subject to periodic review; and
• Securely deleted or anonymised when no longer required.
Upon termination of services, customers are provided with a reasonable period (typically 30 days) to retrieve their data, after which it is securely deleted or anonymised in accordance with the Company’s data retention practices and any applicable legal requirements.
As Eurora Group Limited acts as a data processor, data subjects should contact the relevant customer (data controller) to exercise their rights.
We will provide reasonable assistance to customers in responding to such requests where required under applicable law.
The CYRUS TMS platform is primarily hosted on Microsoft Azure infrastructure, which provides industry-standard physical and technical security measures, including redundancy and disaster recovery capabilities.
We implement appropriate technical and organisational measures to protect personal data, including:
• Encryption of data in transit and at rest
• Access controls and authentication measures
• System monitoring and logging
• Secure credential management
These measures are designed to prevent unauthorised access, disclosure, alteration, or loss of personal data.
We engage a range of trusted third-party service providers to support our services, including:
• Cloud hosting and infrastructure providers
• Payment processors
• Customer support and communication platforms
• Integration and operational tools
These providers process personal data on our behalf and are subject to contractual obligations, including data processing agreements where required.
We do not permit third-party processors to use personal data for their own purposes.
Where personal data is transferred outside the United Kingdom or European Economic Area, we ensure appropriate safeguards are in place, including:
• Standard Contractual Clauses (SCCs); and
• The UK International Data Transfer Addendum where applicable
to ensure an adequate level of protection for personal data.
We may use third-party AI-powered tools to support certain features of our services.
Where such tools are used:
• Processing is limited and proportionate; and
• Appropriate safeguards are implemented to ensure personal data is handled securely and in accordance with applicable data protection laws.
All data uploaded to the CYRUS TMS platform remains the property of the customer.
Customers may export their data during the term of the agreement and within a limited period following termination.
For questions regarding this policy or data protection practices, please contact
support@eurora-group.com.