GDPR-ready from day one.
Documents, not promises. What most of our Italian competitors don't publish.
Data Processing Agreement (DPA)
Art. 28 GDPR-compliant DPA template signed with each sub-processor (ElevenLabs, Azure AI Speech, Supabase, HubSpot, Resend). Available on request for signature with your DPO.
Data Protection Impact Assessment (DPIA)
DPIA template for voice AI agents structured upfront. We identify risks, mitigation measures, and residual risk before going to production.
Retention and deletion
Pseudonymised transcripts after 30 days. Cryptographic shredding tested periodically. Audio never stored by default.
EU data residency
Application infrastructure on AWS eu-central-1 (Frankfurt). Sub-processors covered by DPF + Standard Contractual Clauses for residual transfers.
Sub-processor list
Published and updated quarterly. Written notification to clients on any change. Right to object is contractually guaranteed.
Garante response procedure
Formal procedure. Internal maximum response time: 72 hours.
Want to see the full documents?
We send the complete compliance pack — DPA, DPIA, retention policy, sub-processor list — within 24 working hours.