Cookie Policy
In compliance with the ePrivacy Directive (2002/58/EC) and the GDPR, this policy explains how and why we use cookies and similar tracking technologies on our platform.
2. Legal Basis
We deploy cookies strictly grounded in the following legal bases:
- Strictly Necessary Cookies: Deployed under Art. 6(1)(f) GDPR (Legitimate Interest) and overriding ePrivacy requirements because they are purely technical and essential to provide the service you explicitly requested (e.g., logging in safely).
- Analytics / Functional Cookies: Deployed exclusively under Art. 6(1)(a) GDPR (Explicit Consent). These cookies remain blocked by default until you affirmatively "Accept" them via the cookie banner.
4. Third-Party Domain Cookies
When interacting with the payment dashboard, Stripe may deploy strictly necessary fraud-prevention cookies (e.g., __stripe_mid, __stripe_sid) originating directly from their domains. These bypass the standard consent overlay as they are technically indispensable for executing PCI-DSS compliant credit card processing.
5. Managing & Withdrawing Consent
You possess full control over non-essential cookies. You can revoke your consent instantly at any time by:
- Clicking the "Cookie Settings" link available in the global footer of our application.
- Clearing your browser cache and cookies, triggering the consent banner to appear again upon your next visit.
- Configuring your browser settings to outright block all third-party cookies globally.
Note: Blocking strictly necessary session cookies will result in immediate logout and prevent access to the authenticated Dashboard.
6. Do Not Track (DNT) Signals
While the "Do Not Track" standard has largely been deprecated by major browsers, our architecture inherently respects the modern Sec-GPC (Global Privacy Control) headers where technically feasible, treating them as an objection to analytics tracking.