Privacy policy

§1

Data controller

CS Healthcare Systems, LLC (legal entity code 307015260, registered at Lvivo str. 25-104, LT-09320 Vilnius, Lithuania) develops and publishes the eirid app and the website at www.eirid.com.

For privacy enquiries, contact our Data Protection Officer at privacy@eirid.com. The company operates under the EU General Data Protection Regulation.

§2

Purpose of the app

eirid helps you manage your health information for travel and emergencies. You can store allergies, vaccinations, medications and conditions in one place you can actually reach.

Important. eirid is not intended to, and under no circumstances does it, provide medical advice.

§3

Data we collect

Email address
Name
Age
Gender
Health information — blood type, disease codes, allergies, vaccinations, symptoms
Travel destinations
Family information — children, partner status
Website and app usage patterns
AI-generated translations

§4

How we collect it

You provide most of the data directly, when you:

Create an account or sign in
Enter health data, travel destinations, symptoms or vaccinations
Interact with the app or website
Use website features via browser cookies
Contact customer service

§5

Why we use it

Each purpose has a clear lawful basis and a defined retention period under GDPR.

Account creation and management

Legal basis: GDPR Article 6(1b) — contract performance
Retention: 30 days after account closure. Inactive accounts deleted after 5+ years, with reminders sent before.

Health data storage

Legal basis: GDPR Article 6(1a) — explicit consent
Retention: Until you delete the data or the account becomes inactive.
Note: You can withdraw consent any time by emailing privacy@eirid.com. Withdrawing limits app functionality.

Automatic translations

Legal basis: GDPR Article 6(1b) — contract performance
Retention: Until deleted by you, or automatically when the relevant travel destination is removed.

Marketing communications

Legal basis: GDPR Article 6(1a) — consent
Retention: Until you revoke consent.
Note: Unsubscribe at any time via hello@eirid.com or the link in each email.

Analytics and statistics

Legal basis: GDPR Article 6(1f) — legitimate interest
Retention: Indefinitely, in anonymised form, for product development.

Real-time ads

Legal basis: GDPR Article 6(1a) — consent (non-essential cookies)
Retention: Until consent is withdrawn or browser settings change.

Server log files

Legal basis: GDPR Article 6(1f) — legitimate interest in website stability
Retention: Up to one year.
Note: Browser type and version, operating system, referring URL, IP address, query timestamps.

Customer service

Legal basis: GDPR Article 6(1f) — legitimate interest in service quality
Retention: Up to three years after the request is closed.

§6

Where data is stored

Production data (your health information and demographic data) is securely stored within Amazon Web Services in EU territory. Analytical data is pseudonymised. Website usage data is stored in Google Analytics.

§7

Your data protection rights

Under GDPR, you have the right to:

Access — request copies of your personal data
Rectification — request corrections or completion of inaccurate information
Erasure — request deletion under certain conditions
Restrict processing — limit how your data is processed under certain conditions
Object — oppose data processing under certain conditions
Data portability — request a transfer of your data to another organisation or person under certain conditions

We respond within one month of receiving a request. Contact privacy@eirid.com.

§8

Cookies

Cookies are small text files that collect standard internet log information and visitor behaviour data. We use them in four categories.

Necessary cookies

These enable basic website functions like navigation and secure access. Legal basis: GDPR Article 6(1f) — legitimate interest. No opt-out available, though you can block them in your browser (may impact functionality).

Functionality cookies

Remember your preferences (language, location) using first- and third-party cookies.

Analytics / statistics cookies

Collect information about visits, viewed content, links followed, browser, device and IP address. Requires your consent before activation.

Targeting cookies

Used to display eirid ads as you browse the internet. Requires your consent before activation.

Cookie details

Cookie	Domain	Duration	Purpose
ucString	Usercentrics	1 year	Stores consent history
ucData	Usercentrics	1 year	Google Consent Mode data
__cf_bm	Cloudflare	30 min	Bot protection
cf_clearance	Cloudflare	30 min	Challenge proof
_cfuvid	Cloudflare	1 week	Rate limiting
cf_chl_cc_XXX, cf_chl_rc_i, cf_chl_rc_ni	Cloudflare	session	Challenge execution
__cflb	Cloudflare	1 day	Origin routing
_ga	Google Analytics	2 years	Visit statistics
__gid	Google Analytics	1 day	Visitor tracking
_gat	Google Analytics	2 years	Request throttling
_clck	Microsoft Clarity	session	User ID persistence
_clsk	Microsoft Clarity	session	Session connection
CLID	Microsoft Clarity	session	First-sight identification
ANONCHK	Microsoft Clarity	session	Advertising indicator
MR	Microsoft Clarity	session	MUID refresh flag
MUID	Microsoft Clarity	session	Browser identification
SM	Microsoft Clarity	session	MUID synchronisation

You can manage cookie preferences through your browser settings. Declining some cookies may limit site functionality.

§9

Third-party websites

This privacy policy applies only to eirid's website and app. Please review the privacy policies of any external websites linked from ours.

§10

Automated decisions (AI use)

The application uses AI software to generate output based on your responses. This automated decision-making does not produce negative legal consequences. Generated output is deleted when the relevant travel destination is removed.

§11

Children's data

eirid does not knowingly collect personal information from anyone under 18. If we discover a child's information, we delete it immediately. Parents or guardians who become aware of such submissions should contact us so we can act appropriately.

§12

Policy updates

We review this policy regularly and publish updates at www.eirid.com/privacy.

§13

Contact

For privacy questions or to exercise your data protection rights, email privacy@eirid.com.

§14

Supervisory authority

Lithuanian State Data Protection Authority
Email: ada@ada.lt
Address: L. Sapiegos str. 17, LT-10312 Vilnius

Note. Lithuanian law requires you to attempt resolution with eirid before contacting the data protection authority.

Questions about your data?

Email privacy@eirid.com — our Data Protection Officer will reply.

Privacy policy.