Privacy Notice for Business Customers and Contractual Partners

Published, modified February 2026
   Version for printing

(Regulation (EU) 2016/679 – GDPR)
Processing of Personal Data of Business Customers and Contract Partners

These conditions govern the processing of personal data in connection with business transactions and ongoing business relationships. For information relating to the use of this website and the associated processing of personal data, please refer to the applicable Privacy Policy available here.

The data controller within the meaning of Article 4(7) of Regulation (EU) 2016/679 (“GDPR”) is:
PRECITOOLS SRLS (PRECITOOLS S.R.L.S.)

• Registered office: Via B. Crespi, 19, MAC 4 – 4° Piano, 20159 Milano (MI), Italy
• Phone: +39 0280886585
• Email: info@precitools.it (contact for all privacy-related matters)
• VAT / Tax ID: 09096770962
• Chamber of Commerce Registration: REA 2068354, Milan, Italy

Legal Administrator: All data protection responsibilities are handled by the Company’s legal administrator.

The Data Controller processes the following categories of personal data:

• Identification data (e.g. name, surname, title)
• Business contact details (e.g. company name, business address, email, telephone number)
• Position or function within the company
• Billing and invoicing data
• Delivery and logistics contact data
• Any other personal data voluntarily provided in the course of business communication

Personal data is processed solely for the following purposes:

• Preparation of offers and quotations
• Conclusion and performance of contracts
• Order processing and customer communication
• Invoicing, accounting, and tax compliance
• Delivery of goods and services
• Handling of claims, complaints, and warranty matters
• Related commercial and administrative activities

Personal data is not processed for marketing purposes unless the data subject has provided separate, explicit consent.

Personal data is processed on the basis of the following legal grounds pursuant to Article 6 GDPR:

• Article 6(1)(b) – processing necessary for the performance of a contract or for taking steps prior to entering into a contract
• Article 6(1)(c) – processing necessary for compliance with legal obligations (e.g. accounting, tax regulations)
• Article 6(1)(f) – processing necessary for the legitimate interests of the Data Controller, provided such interests do not override the rights and freedoms of the data subject

Where processing is based on consent under Article 6(1)(a) GDPR, such consent is obtained separately and may be withdrawn at any time.

Personal data may be disclosed to third parties only where necessary for the purposes described above, in particular to:

• Subsuppliers, for identification of the end user
• Transport and courier companies, for delivery and related communication
• Professional advisors or public authorities, where required by law

All recipients process personal data in accordance with GDPR and under appropriate contractual or legal safeguards.
Personal data shall not be transferred to third parties for marketing purposes.

Personal data could be stored and processed on servers operated by Google. Such servers may be located outside the European Union or the European Economic Area. Any transfer of personal data outside the EU/EEA is carried out in accordance with Chapter V of the GDPR and is subject to appropriate safeguards, including the use of Standard Contractual Clauses approved by the European Commission and other applicable legal mechanisms.
The primary database servers are located in Austria, within the European Union.

Personal data is retained only for as long as necessary to fulfill the purposes for which it was collected and in accordance with applicable legal, accounting, and tax retention requirements. After expiry of the retention period, personal data is securely deleted or anonymized.

The Data Controller implements appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including protection against unauthorized access, loss, alteration, or disclosure of personal data.

The data subject has the right to:

• Access personal data (Article 15 GDPR)
• Rectification of inaccurate or incomplete data (Article 16 GDPR)
• Erasure of personal data, where applicable (Article 17 GDPR)
• Restriction of processing (Article 18 GDPR)
• Data portability (Article 20 GDPR)
• Object to processing (Article 21 GDPR)
• Withdraw consent at any time, where processing is based on consent

Requests may be submitted using the contact details in Section 1.

The data subject has the right to lodge a complaint with the competent supervisory authority of their habitual residence, place of work, or place of the alleged infringement.

This Privacy Notice applies primarily to business customers and their representatives (B2B).
Where services are provided to consumers (B2C), personal data is processed in accordance with the same principles, with additional protections applied where required by law.

Please refer to the complete text of Regulation (EU) 2016/679 – GDPR in English under the link:
https://eur-lex.europa.eu/eli/reg/2016/679/oj/eng