Privacy Information for Prospects, Customers, Service Providers & Partners

Last updated: 2025-11-13

Purposes

We process data for the initiation and performance of contracts (e.g., preparing quotes, order processing), for customer care and technical support (including ticket handling, remote sessions and maintenance services), for invoicing, and to fulfill legal documentation and record‑keeping obligations. Where you have given consent, we also use contact details to provide information about relevant services (newsletter/marketing).

Legal bases

  • Art. 6(1)(b) GDPR (contract/performance)
  • Art. 6(1)(c) GDPR (legal obligations)
  • Art. 6(1)(f) GDPR (legitimate interests)
  • Art. 6(1)(a) GDPR (consent) for newsletter/marketing

Categories of data

  • Master and contact data (e.g., company name, contact persons, e‑mail, phone)
  • Contract/performance data, support/communication data (e.g., tickets, remote sessions, logs)
  • ERP/billing data (e.g., quotes, orders, invoices, payment status)
  • IT documentation/maintenance data (e.g., system inventory, checklists, reports)

Recipients/processors

Depending on the engagement, we use commissioned service providers (hosting/monitoring, e‑mail/newsletter delivery, invoicing/ERP—e.g., Odoo—, RMM—e.g., NinjaOne—, payment providers, as well as subcontractors). We maintain GDPR‑compliant data processing agreements with all processors, including appropriate technical and organizational measures.

International transfers

International data transfers occur only where required for the relevant service. In such cases we use EU Standard Contractual Clauses (SCCs) and prefer EU regions where available. Supplementary measures ensure an adequate level of protection.

Retention

Contract and billing records are retained for the duration of the business relationship and in line with statutory retention periods. Support and documentation data are retained only as long as necessary for service delivery and compliance (e.g., SLAs, evidence requirements).

Provision of data

Certain information is mandatory for contract initiation and performance (e.g., company name, billing address, contact and technical points of contact). Without these details, we may be unable to provide services in whole or in part.

Rights

Your rights under the GDPR include access, rectification, erasure, restriction, portability and objection. For requests, please use the address listed in “Controller and Contact”. For security and confidentiality, we may need to verify your identity.

Updates

This information is updated as needed.

Privacy – Overview
Telefon: +43 1 2268966
Webseite: www.fivo-it.at
Fernwartung