Services
Who We Help

Privacy Policy

Privacy Policy

Prudaris Risk Advisory

This Privacy Policy explains how personal data is processed when you visit this website, contact Prudaris, or use the meeting-booking function.

General information

We process personal data only to the extent necessary to operate this website, respond to inquiries, arrange meetings, and protect the website against misuse and technical disruption.

Website hosting and technical operation

This website is delivered using Cloudflare services. In the course of providing the website, Cloudflare may process technical connection data such as IP addresses, request information, device/browser metadata, and security-related log data.

Purpose:

  • secure and stable delivery of the website
  • technical operation and protection against abuse or attacks

Legal basis:
Art. 6(1)(f) GDPR (legitimate interest in secure and reliable website operation)

Contact by email

If you contact Prudaris by email, the personal data you provide (for example name, email address, company information, and message content) will be processed to handle your request and related correspondence.

Purpose:

  • responding to your inquiry
  • follow-up communication
  • preparing possible advisory discussions or next steps

Legal basis:

  • Art. 6(1)(b) GDPR, if your request relates to pre-contractual steps
  • Art. 6(1)(f) GDPR, for general business communication and handling of inquiries

Contact page / inquiry form

If the contact page provides an active inquiry submission function, the data entered there will be processed for the purpose of reviewing and responding to your request.

If the current implementation of the inquiry form stores entries only locally in your own browser and does not transmit them to Prudaris, Prudaris does not receive that information unless you separately send it by email or another active communication channel.

Calendly meeting booking

The contact page includes an embedded Calendly booking function. If you use that function, the data you provide in the booking flow (such as name, email address, meeting-related information, and any notes you submit) is processed for the purpose of arranging and managing the meeting.

Purpose:

  • scheduling meetings
  • handling appointment-related communication
  • preparing the requested discussion

Legal basis:

  • Art. 6(1)(b) GDPR, where the booking serves pre-contractual communication
  • Art. 6(1)(f) GDPR, for efficient scheduling and business communication

Please note that when you use the embedded Calendly widget, Calendly may also process personal data according to its own privacy and cookie practices.

Recipients / service providers

Depending on the channel used, personal data may be processed by service providers used to operate the website and communications, in particular:

  • Cloudflare, for website delivery, security, and technical infrastructure
  • Calendly, for meeting scheduling
  • email or communication providers used to receive and manage inquiries

International transfers

It cannot be excluded that personal data processed through third-party providers such as Cloudflare or Calendly may be transferred to or accessed from countries outside the European Economic Area, including the United States. Where relevant, such providers state that they use appropriate transfer mechanisms such as the EU-U.S. Data Privacy Framework and/or Standard Contractual Clauses.

Storage period

Personal data is stored only for as long as necessary for the relevant purpose.

In particular:

  • inquiry and contact data: for as long as necessary to process and conclude the communication and any related follow-up
  • meeting-booking data: for as long as necessary to manage the appointment and related communication
  • technical/server/security data: for as long as required for secure website operation and according to provider-side retention periods

If legal retention obligations apply in a specific case, data may be stored for the legally required period.

Your rights

Under the GDPR, you may have the right to:

  • request access to your personal data
  • request rectification of inaccurate data
  • request erasure of your data
  • request restriction of processing
  • object to processing based on legitimate interests
  • request data portability where applicable
  • withdraw consent at any time, if processing is based on consent
  • lodge a complaint with a competent data protection authority

Austrian supervisory authority

If you believe that the processing of your personal data violates data protection law, you may contact the Austrian Data Protection Authority:

https://www.dsb.gv.at/

Contact for privacy matters

For privacy-related questions or requests, please contact: [email protected]