Privacy Policy

Ultimo aggiornamento: 18 February 2026

1. Data controller

The data controller for personal data processing is:
ADABU S.R.L.
Via Montebelluna di San Floriano 3a, 31033 Castelfranco Veneto (TV), Italy
VAT: 05580100260
Email: privacy@adabu.it

2. Data collected

The website adabu.it may collect the following categories of personal data:

  • Navigation data: IP address, browser type, pages visited, date and time of access, duration of visit. This data is collected automatically through the website's computer systems.
  • Voluntarily provided data: name, email address, company and message submitted through the contact form or direct email communications.
  • Cookies and tracking technologies: technical, analytical and marketing cookies. For more details, please refer to our Cookie Policy.
  • Data from third-party platforms: if you interact with our pages or applications on Meta (Facebook/Instagram), we may receive data such as your name, email and interactions, according to your privacy settings on those platforms.

3. Purposes and legal basis for processing

Personal data is processed for the following purposes:

  • Service provision (legal basis: performance of pre-contractual or contractual measures) — responding to contact requests, providing quotes, managing the business relationship.
  • Website analysis and improvement (legal basis: legitimate interest) — analysing how the website is used to improve its content and functionality, through tools such as Google Analytics.
  • Marketing and remarketing (legal basis: consent) — sending promotional communications, personalised advertising campaigns through Meta Pixel and similar platforms, only with the user's explicit consent.
  • Legal obligations (legal basis: legal obligation) — complying with obligations required by law, regulations or European legislation.

4. Third-party sharing

Personal data may be shared with:

  • Google LLC — Google Analytics for web traffic analysis (with IP anonymisation enabled).
  • Meta Platforms, Inc. — Meta Pixel for advertising campaigns and remarketing on Facebook and Instagram.
  • IT service providers — hosting (Vercel Inc.) and email services for the operation of the website.

We do not sell or transfer your personal data to third parties for their own purposes.

5. Data transfers outside the EU

Some of our providers (Google, Meta, Vercel) are based in the United States. Data transfers are carried out on the basis of Standard Contractual Clauses (SCCs) approved by the European Commission and/or the EU-US Data Privacy Framework, in compliance with the GDPR.

6. Data retention

Personal data is retained for the time strictly necessary to fulfil the purposes for which it was collected. In particular:

  • Contact data: for the duration of the business relationship and for the following 24 months.
  • Navigation data: up to 26 months (as per Google Analytics settings).
  • Marketing data: until consent is withdrawn.

7. User rights (GDPR)

Pursuant to Articles 15-22 of EU Regulation 2016/679, you have the right to:

  • Access — obtain confirmation of the existence of processing and access your data.
  • Rectification — request the correction of inaccurate or incomplete data.
  • Erasure — request the deletion of your data ("right to be forgotten").
  • Restriction — request the restriction of processing in certain cases.
  • Portability — receive your data in a structured format and transfer it to another controller.
  • Objection — object to the processing of your data on legitimate grounds.
  • Withdrawal of consent — withdraw your consent to processing at any time.

To exercise your rights, write to: privacy@adabu.it

8. Data collected through Meta applications

If you interact with our applications on Meta (Facebook/Instagram), we may collect: name, email address, user ID and app interaction data. This data is used exclusively for the purposes described in section 3 and is not shared with unauthorised third parties.

To request the deletion of data collected through our Meta apps, visit the dedicated page: Data Deletion Request.

9. Supervisory authority

The competent supervisory authority is the Garante per la protezione dei dati personali (Italian Data Protection Authority). You have the right to lodge a complaint with the Garante if you believe that the processing of your data violates the GDPR. Website: www.garanteprivacy.it.

10. Updates to this policy

We reserve the right to update this privacy policy. The date of the last update is indicated at the top of the page. We encourage you to review this page periodically.