Privacy Information for Prospects, Customers, Service Providers & Partners

3.12.2025

Purposes

We process data for the initiation and performance of contracts (e.g., preparing quotes, order processing), for customer care and technical support (including ticket handling, remote sessions and maintenance services), for invoicing, and to fulfill legal documentation and record‑keeping obligations. Where you have given consent, we also use contact details to provide information about relevant services (newsletter/marketing).

Legal bases

  • Art. 6(1)(b) GDPR (contract/performance)
  • Art. 6(1)(c) GDPR (legal obligations)
  • Art. 6(1)(f) GDPR (legitimate interests)
  • Art. 6(1)(a) GDPR (consent) for newsletter/marketing

Categories of data

  • Master and contact data (e.g., company name, contact persons, e‑mail, phone)
  • Contract/performance data, support/communication data (e.g., tickets, remote sessions, logs)
  • ERP/billing data (e.g., quotes, orders, invoices, payment status)
  • IT documentation/maintenance data (e.g., system inventory, checklists, reports)

Recipients/processors

Depending on the engagement, we use commissioned service providers (hosting/monitoring, e‑mail/newsletter delivery, invoicing/ERP—e.g., Odoo—, RMM—e.g., NinjaOne—, payment providers, as well as subcontractors). We maintain GDPR‑compliant data processing agreements with all processors, including appropriate technical and organizational measures. In summary, our main processor categories for prospects/customers/service providers/partners are: hosting and infrastructure, monitoring/IT security, ERP/CRM and billing, remote monitoring and management (RMM), e‑mail/newsletter and marketing tools, and selected subcontractors for specialist services.

International transfers

International data transfers occur only where required for the relevant service. In such cases we use EU Standard Contractual Clauses (SCCs) and prefer EU regions where available. Supplementary measures ensure an adequate level of protection.

Retention

Contract and billing records are retained for the duration of the business relationship and in line with statutory retention periods. Support and documentation data are retained only as long as necessary for service delivery and compliance (e.g., SLAs, evidence requirements).

Provision of data

Certain information is mandatory for contract initiation and performance (e.g., company name, billing address, contact and technical points of contact). Without these details, we may be unable to provide services in whole or in part.

Rights

You have the rights of access, rectification, erasure, restriction of processing, data portability, and to object to processing (in particular where based on legitimate interests). You may withdraw consent at any time with effect for the future. You also have the right to lodge a complaint with the Austrian Data Protection Authority. To process your request, we may need to verify your identity; we generally respond within one month.

Updates

This information is updated as needed.

Privacy – Overview
Telefon: +43 1 2268966
Webseite: www.fivo-it.at
Fernwartung