Logo

Privacy Policy

Tati Software Privacy Policy

Last updated: December 09, 2025

Tati Software (Pty) Ltd is committed to protecting your privacy and handling personal information in a responsible, transparent way. This Privacy Policy explains what personal data we collect, how we collect and use it, how it is stored and shared, and the rights you have over your information.

This policy applies to our websites, web applications, software-as-a-service (SaaS) platforms, WhatsApp applications, AI solutions, and related services (collectively, the “Services”). It is designed to align with the principles of the EU General Data Protection Regulation (GDPR) and South Africa’s Protection of Personal Information Act (POPIA), where applicable. It is not legal advice, but a practical explanation of how we handle your data.

1. Personal Data We Collect

The information we collect depends on how you interact with Tati Software and which Services you use. We may collect the following categories of personal data:

1.1 Contact and Account Information

Name, surname, company name, email address, phone number, job title or role, and login details such as username and password. We also store basic account preferences (for example, language or communication preferences).

1.2 Business and Project Information

Information you share with us when we design and develop software, such as project requirements, technical documentation, branding assets, sample data, and contact details of your internal team members or clients.

1.3 Customer & End-User Data (Hosted on Our Solutions)

When you use our SaaS products or custom systems we host (e.g. CRMs, ERPs, AI tools, WhatsApp applications), we may store personal information about your users, customers, staff, and other contacts on your behalf. This may include names, contact details, communication history, transactional records, logs, and files you upload.

1.4 Payment & Billing Information

For invoicing and subscription billing we collect billing contact details, company address, VAT or registration numbers where needed, and basic payment metadata. Card details are processed by our payment providers and are not stored in plain form on our systems.

1.5 Device & Technical Information

When you visit our website or use our online Services, we may automatically collect technical data such as IP address, browser type, device type, operating system, approximate location based on IP, pages viewed, referral URLs, and timestamps of your visits. This is used to keep the Services secure and to understand usage patterns.

1.6 AI & Chat Interactions

If you use our AI tools or chatbots (for example, WhatsApp bots or web chat on our site), we may store the content of messages, prompts, and responses, together with basic context (such as timestamps and user identifiers) so that we can provide the service, improve quality, and troubleshoot issues.

Note: We do not intentionally collect special categories of data (such as health information, religious beliefs, or biometric identifiers) unless you explicitly provide it as part of a project or legal requirement. We encourage you to avoid sending highly sensitive personal information to us unless necessary.

2. How We Collect Your Data

We collect personal data in the following ways:

2.1 Directly From You

You provide information directly when you:

  • Request a quote or contact us through our website or email;
  • Create an account or sign in to one of our SaaS products;
  • Submit support tickets or chat with us;
  • Participate in demos, workshops, or training sessions; or
  • Sign a contract, statement of work, or service order with us.

2.2 Data Entered Into Our Platforms

When you or your team use our applications, you enter or import data about your organisation, staff, clients, and operations. In these cases, we act mainly as a service provider (or “operator”/“processor”) and handle that information on your instructions.

2.3 WhatsApp, Chatbots & Integrated Channels

If you choose to use a WhatsApp integration or other messaging interface that Tati provides or develops, we receive the content of messages and the associated identifiers (such as your WhatsApp number, chat IDs, or user IDs) in order to process your requests and respond.

2.4 Automatic Collection (Website & Analytics)

Our websites and applications may use logs and analytics tools to automatically capture technical and usage information as described above. This helps us monitor performance, keep the platform secure, and understand which features are helpful.

2.5 Third-Party Sources

With your permission we might receive basic information from third parties, such as:

  • Single sign-on providers (for example, Google) when you log in using those accounts;
  • Payment providers that confirm payment status and limited billing details; or
  • Partners that refer you to us, sharing your contact information so that we can follow up.

3. Cookies and Tracking Technologies

Our use of cookies is conservative and mainly focused on ensuring that our Services function correctly.

3.1 What Are Cookies?

Cookies are small text files stored on your device that help websites remember information about your visit, such as your login status or preferences.

3.2 Types of Cookies We Use

  • Essential / Session cookies – required to keep you signed in, route requests correctly, and protect against fraud and abuse.
  • Preference cookies – used to remember settings such as language or layout preferences.
  • Limited analytics cookies – used in an aggregated way to understand general usage, not to build individual marketing profiles.

Important: We do not use cookies for invasive advertising or to sell your personal profile to third parties.

3.3 Managing Cookies

You can control or delete cookies via your browser settings. Please note that blocking essential cookies may prevent our websites or applications from functioning correctly, particularly login-related features.

4. How We Use Personal Data

We use personal data for the following purposes:

  • Providing and improving our Services – to deliver websites, SaaS platforms, AI tools, and integrations you request, and to maintain, troubleshoot, and enhance them.
  • Account management and authentication – to create and secure user accounts, verify identity, and manage roles and permissions.
  • Project delivery – to plan, build, test, and support software projects and cloud solutions according to your requirements.
  • Billing and payments – to issue invoices, process payments, and keep financial records as required by law.
  • Customer support and communications – to respond to enquiries, send important service notices (such as downtime alerts or security updates), and assist your team.
  • Security, fraud prevention, and abuse detection – to protect accounts, systems, and data from misuse or unauthorised access.
  • Legal and regulatory compliance – to meet our obligations under applicable law and contractual commitments.

We do not sell your personal information to third parties.

5. Data Sharing and Disclosure

We treat your information as confidential. We only share personal data in the following situations:

5.1 Service Providers

We use carefully selected third-party providers to help us operate, such as:

  • Cloud infrastructure providers (for hosting and storage, including AWS-based environments);
  • Payment processors for subscriptions and invoices;
  • Email, SMS, or messaging providers for notifications;
  • Monitoring, logging, and security tools to keep the platform reliable and safe.

These providers may only process your data on our instructions and are bound by confidentiality and data protection obligations.

5.2 Legal Requirements and Safety

We may disclose information where required by law, court order, or government authority, or when we believe it is necessary to protect our rights, investigate fraud, or safeguard the safety of our users or the public.

5.3 Business Transfers

If Tati Software is involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction, subject to continued protection consistent with this policy.

6. Data Storage and Security

We implement technical and organisational measures to protect personal data from unauthorised access, loss, or misuse.

  • Use of secure cloud infrastructure and reputable hosting providers;
  • Encryption in transit using HTTPS/TLS for web and API traffic;
  • Encryption or strong protection for data at rest where appropriate;
  • Role-based access controls and authentication (including multi-factor authentication for sensitive systems);
  • Activity logging, monitoring, and regular security updates.

No system can be guaranteed 100% secure, but we actively work to maintain a high standard of security and to respond promptly to any issues.

7. Data Retention

We retain personal data only for as long as needed to fulfil the purposes described in this policy, or as required by law.

  • Account and project data is kept while you are an active customer.
  • You may request deletion of specific records or your whole account; when processed, data will be removed from our active systems, subject to technical limitations and backup retention.
  • Some information (such as invoices and payment history) may be kept for a longer period to comply with tax, accounting, or legal obligations.

8. Your Rights and Choices

Depending on your location and applicable law, you may have the following rights regarding your personal data:

  • Right to access the personal information we hold about you;
  • Right to correct inaccurate or incomplete information;
  • Right to request deletion of your data, subject to legal retention requirements;
  • Right to object to certain types of processing or to withdraw consent where processing is based on consent;
  • Right to request a copy of your data in a portable format, where technically feasible;
  • Right to lodge a complaint with a data protection authority.

To exercise any of these rights, please contact us using the details in the Contact Us section. We may need to verify your identity before processing your request.

9. WhatsApp & Messaging Interfaces

Tati develops and hosts WhatsApp and other messaging interfaces for itself and for clients. When you interact with one of these assistants:

  • We receive the content of your messages and necessary metadata (such as your phone number or chat ID) to process the conversation.
  • Messages are handled under strict security and used only for the purpose of providing the requested service, automation, or support.
  • We do not access your full contact list or unrelated device data through these channels.

Use of any messaging integrations is voluntary. If you wish to stop using a WhatsApp or chatbot integration, you may do so through the relevant app or by contacting us.

10. Children’s Privacy

Our Services are aimed at businesses and professionals, not at children. We do not knowingly collect personal information from individuals under the age of 16 (or the age of majority in your jurisdiction, if higher). If we learn that we have collected such information without appropriate consent, we will delete it as soon as reasonably possible.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our Services, practices, or legal requirements. When we make material changes, we will update the “Last updated” date at the top of the page and may provide additional notice (for example, via email or an in-app message).

Your continued use of our Services after an update means that you acknowledge the revised policy.

12. Contact Us

If you have questions, concerns, or requests relating to this Privacy Policy or how we handle personal data, please contact us:

  • Email (general privacy queries): hello[at]tati.digital
  • Business address:
    Regus Office, 2nd Floor, West Tower,
    Nelson Mandela Square, Sandton, 2146, South Africa
  • We aim to respond to legitimate requests within a reasonable time and will let you know if we require more information to verify your identity or clarify your request.