This page sets out, in plain terms, what Whispr does not do, what risks remain with the customer, and the limits that apply to any use of the Whispr Compliance Italy product. Read it before relying on the product as part of any regulatory strategy. Where this page and a signed agreement diverge, the document more favourable to BackPR shall prevail to the maximum extent permitted by applicable law.
Compliance is a continuous organisational activity. A software tool is one input. Buying or using Whispr is not, alone, a defence against any regulator, court, or third-party claim.
Sanctions, inspections, prescriptive orders, and reputational exposure remain entirely within the regulator's discretion. The customer carries that risk in full.
Whispr does not act as the customer's lawyer, compliance officer, DPO, auditor, or representative before any authority. The customer must obtain its own qualified advice.
Whispr Compliance Italy is one of multiple independent product lines under the BackPR umbrella (backpr.com). Each Whispr product is built and run by a separate product team. The Whispr EDU product available at edu.backpr.com is a sibling product with its own disclaimers. Nothing in this page binds another BackPR product, and nothing said in connection with another BackPR product binds the Whispr Compliance Italy product or team.
Compliance with D.Lgs. 24/2023 (Italian whistleblowing law), ANAC guidelines, GDPR (Reg. UE 2016/679), the Italian Codice Privacy (D.Lgs. 196/2003 as amended), and any other applicable law is the sole and exclusive responsibility of the customer organisation. The customer remains responsible for, without limitation:
Whispr's role is technical and ancillary. It provides hosted intake, role-aware access, audit-related visibility, retention metadata fields, and case-handling workflow. Whispr does not interpret the law, decide cases, validate retaliation claims, judge the merits of reports, or act on the customer's behalf.
The imposition of any sanction, the opening of any investigation, the issuance of any prescriptive order or warning, the requesting of any information, the conduct of any inspection, or the publication of any decision — whether by ANAC under Art. 21 D.Lgs. 24/2023, by the Garante under the GDPR and the Codice Privacy, by judicial authority, by financial supervisors, by tax authorities, by labour inspectorates, by industry regulators, or by any other competent body — is at the sole discretion of that authority. Whispr expressly disclaims any representation, promise, warranty, or expectation that:
Marketing language on this website that references statutes or guidelines is descriptive, not warranty-bearing. Statements such as "allineato al D.Lgs. 24/2023", "linee guida ANAC", "Art. 5 / Art. 12 / Art. 17", or any equivalent are informational and do not promise any regulatory outcome.
This includes, without limitation: the marketing site, this trust center, in-product hints, rollout-kit content, sample policies, suggested response paths, templates, exports, and any communication with sales, support, or technical staff. Whispr is not the customer's lawyer, not the customer's compliance officer, not the customer's DPO, not the customer's auditor, not the customer's investigator, and not the customer's representative before any authority. No professional, fiduciary, agency, partnership, joint venture, or employment relationship is created by use of the product.
If the customer needs legal advice on the establishment or operation of an internal whistleblowing channel, on responses to reports, on retention obligations, on Art. 13 GDPR notices, on the scope of D.Lgs. 24/2023 in its specific sector, on the interaction with collective bargaining or works-council obligations, or on any related matter, the customer must obtain advice from a qualified, independent professional.
To the maximum extent permitted by applicable law, BackPR and the Whispr Compliance Italy team disclaim all warranties, conditions, representations, and undertakings, whether express, implied, statutory, or otherwise, including without limitation:
No representation, oral or written, made before, during, or after the contract, modifies these disclaimers unless it is expressly set out in the signed commercial agreement and signed by an authorised representative of BackPR.
Where the platform shows the 7-day acknowledgment deadline, the 90-day feedback deadline, or any other date, the date displayed is computed from data the platform has at that moment. It is informational and may differ from the legally correct date depending on factors known only to the customer (for example: receipt date contested by the reporter, suspension of terms, holidays specific to the customer's calendar, intervening events). If a statutory deadline is missed, that failure is the customer's failure, regardless of what the platform showed or did not show.
Art. 17 D.Lgs. 24/2023 prohibits retaliation against reporters. That prohibition binds the customer organisation and its agents. Whispr's role is to support confidentiality of identity, restricted access, and audit-trail recording. Whispr does not, cannot, and does not represent that it monitors, detects, prevents, or remedies retaliatory conduct. Allegations of retaliation, defence against such allegations, and any remedy are the customer's exclusive responsibility.
Reporters may submit content that is inaccurate, exaggerated, defamatory, unlawful, irrelevant, or motivated by personal animus. Whispr does not validate, fact-check, moderate, or filter report content. The customer accepts the full risk associated with handling such content, including any defamation, employment, or privacy exposure arising from receiving, storing, or acting on such content. The customer's own intake procedures, validation steps, and disciplinary safeguards (including but not limited to the customer's response to bad-faith reports under Italian law) are the customer's responsibility.
The product is delivered as a hosted service over the public internet. BackPR does not warrant any specific uptime, recovery-time objective, recovery-point objective, latency, throughput, or backup cadence on this page. The customer accepts that hosted infrastructure may experience outages, performance degradation, data loss, unauthorised access, or other incidents notwithstanding reasonable security measures. Where mandatory law imposes a minimum standard, that standard applies; otherwise, the customer's exclusive remedy for dissatisfaction is termination consistent with the signed agreement.
The product relies on hosted-stack sub-processors disclosed in the subprocessors page. BackPR may change sub-processors as described in the DPA. Failures, breaches, outages, regulatory changes, or commercial actions of any sub-processor, internet service provider, transit carrier, identity provider, single-sign-on service, email-delivery provider, payment processor, certification authority, browser vendor, or device manufacturer are outside BackPR's control. The customer's own integrations (analytics, ticketing, identity, etc.) are not Whispr sub-processors and are governed exclusively by the customer's agreements with those vendors.
Whispr does not train, fine-tune, evaluate, or benchmark any machine-learning model on customer report content. Whispr does not perform automated decision-making in the sense of Art. 22 GDPR on individual report data. Aggregate operational telemetry strictly necessary to run the service is processed under the DPA and the privacy notice. Conversely, BackPR makes no representation about the AI training or profiling practices of any sub-processor; those are governed by the sub-processor's own terms.
The customer shall defend, indemnify, and hold harmless BackPR, the Whispr Compliance Italy product team, and their respective affiliates, officers, directors, employees, contractors, agents, advisors, and assignees from and against any and all third-party claims, regulatory actions, investigations, fines, penalties, judgments, settlements, losses, costs, expenses, and reasonable legal fees (including expert and out-of-pocket disbursements) arising out of or in connection with, without limitation:
To the maximum extent permitted by applicable law:
BackPR may amend this page at any time by publishing a new version at this URL. Continued use of the product after publication constitutes acknowledgement. Where this page and a signed commercial agreement diverge, the document more favourable to BackPR shall prevail, except where the signed agreement explicitly overrides this disclaimer in writing. Any delay or failure by BackPR to enforce any provision is not a waiver of that provision or any other right.
This page, the product, and any non-contractual obligation arising from or in connection with either are governed by Italian law, without regard to conflict-of-laws principles. Exclusive jurisdiction lies with the competent ordinary court at the registered office of the operator, except where the signed agreement or mandatory consumer-protection law specifies otherwise. The United Nations Convention on Contracts for the International Sale of Goods is expressly excluded. Where the customer is a consumer under D.Lgs. 206/2005 (Codice del Consumo), the customer's mandatory statutory rights are preserved to the extent and only to the extent required.
Privacy and contractual questions relating to this product can be sent to privacy@backpr.com. For sales or commercial questions, write to sales@backpr.com. For suspected misuse, write to abuse@backpr.com. Receipt of any of these emails does not create a contract, a fiduciary duty, an advisory relationship, or any other legal relationship beyond what is set out in the signed agreement.