Cookie Policy — our website
This Cookie Policy explains how our website ("we", "us", "our") uses cookies and similar technologies on our website (your website), what they do, and the choices you have. It should be read together with our Privacy Policy, which explains how we handle personal data more generally.
By continuing to use our site with non-essential cookies enabled, or by accepting them through our cookie banner, you consent to our use of cookies as described here. You can change or withdraw your choice at any time.
What are cookies and similar technologies?
A cookie is a small text file that a website places on your device (computer, tablet or phone) when you visit it. Cookies let a site recognise your device, remember information about your visit, and improve your experience.
Cookies can be "session" cookies, which are deleted when you close your browser, or "persistent" cookies, which stay on your device until they expire or you delete them. They can be "first-party" cookies, set by the site you are visiting, or "third-party" cookies, set by another organisation whose services appear on the page.
We also use technologies that work in a similar way — including tracking pixels, web beacons, local storage and software development kits (SDKs). In this policy we refer to all of these collectively as "cookies".
Why we use cookies
We use cookies to operate and secure our site, to remember your preferences, to understand how our site is used so we can improve it, and — where you consent — to measure and personalise advertising.
We only use non-essential cookies (anything beyond what is strictly necessary to run the site) after you have given consent, and we make refusing them as easy as accepting them.
Categories of cookies we use
We group the cookies on our website into the categories below.
Strictly necessary: Strictly necessary cookies are essential for the website to function and cannot be switched off in our systems. They are usually set in response to actions you take, such as signing in, filling in forms, keeping items in a basket, or maintaining the security of the site. Because they are strictly necessary to deliver a service you have expressly requested, they are set without consent, as permitted by Article 5(3) of the ePrivacy Directive.
Analytics / performance: Analytics cookies allow us to count visits and traffic sources so we can measure and improve the performance of our site. They help us understand which pages are the most and least popular and how visitors move around the site. All information these cookies collect is used to improve how the site works. They are non-essential and are set only after you consent.
Cookies in use on our site
The table below lists representative cookies in each category, including those set by the third-party services we use. The exact cookies set can change as we update our site and those services, so you should treat this as a guide and keep it up to date.
| Cookie | Provider | Category | Purpose | Duration |
|---|---|---|---|---|
| session_id | First party | Strictly necessary | Maintains your signed-in session | Session |
| csrf_token | First party | Strictly necessary | Protects forms against cross-site request forgery | Session |
| cookie_consent | First party | Strictly necessary | Stores your cookie consent choices | 12 months |
| _ga | Google Analytics | Analytics / performance | Distinguishes unique users | 2 years |
| _ga_<container-id> | Google Analytics | Analytics / performance | Persists GA4 session state | 2 years |
Tip: this table should reflect the cookies your site actually sets. A CookieSentry scan detects them automatically — including any that fire before consent — so you can keep this list accurate.
Third-party cookies and international transfers
Some cookies are set by third parties that provide services on our site, such as analytics and advertising providers. These third parties process your data under their own privacy and cookie policies, which we encourage you to review. The third-party services we use include: Google Analytics 4 (GA4).
Some of these providers are based outside the European Economic Area. Where your personal data is transferred internationally, it is protected by appropriate safeguards such as the European Commission's Standard Contractual Clauses or an adequacy decision, as described in our Privacy Policy.
Where a third party sets non-essential cookies, those cookies are only loaded after you consent.
How long cookies stay on your device
Session cookies are temporary and are deleted when you close your browser. Persistent cookies remain on your device for a set period — shown in the "Duration" column above — or until you delete them.
We keep persistent cookies no longer than necessary for the purpose for which they were set, and we review the cookies we use periodically.
How to manage your cookie preferences
When you first visit our website, our cookie banner lets you accept or reject non-essential cookies. Rejecting is as easy as accepting, and you can change your decision at any time through the cookie settings on our site.
You can also control cookies through your browser, including deleting cookies already stored and blocking new ones. Be aware that blocking strictly necessary cookies may stop parts of the site from working. Browser instructions are available here:
• Google Chrome: https://support.google.com/chrome/answer/95647
• Mozilla Firefox: https://support.mozilla.org/kb/cookies-information-websites-store-on-your-computer
• Apple Safari: https://support.apple.com/guide/safari/manage-cookies-sfri11471/mac
• Microsoft Edge: https://support.microsoft.com/microsoft-edge/delete-cookies-in-microsoft-edge
We also honour browser-level signals where required, such as the Global Privacy Control (GPC). Note that some browsers send a "Do Not Track" signal; because there is no common industry standard for it, we respond to GPC and to the choices you make in our cookie banner rather than to Do Not Track.
Consent and withdrawing consent
For all non-essential cookies, we rely on your consent. You can withdraw consent at any time, and it will be as easy to withdraw as it was to give. Withdrawing consent does not affect the lawfulness of processing carried out before you withdrew it.
When you withdraw consent, we stop setting the affected cookies; cookies already stored may remain on your device until they expire or you delete them through your browser.
Legal basis for using cookies
We store and read non-essential cookies on the basis of your consent, as required by Article 5(3) of the ePrivacy Directive and the national laws that implement it across the EU/EEA. Strictly necessary cookies are set on the basis that they are essential to provide a service you have expressly requested.
Where cookies process personal data, we also rely on a legal basis under Article 6 of the EU General Data Protection Regulation (GDPR) — usually your consent for analytics and advertising, and our legitimate interests or the necessity of providing the service for strictly necessary cookies. Our Privacy Policy explains these bases in more detail.
Your data protection rights
Where cookies process your personal data, you have rights under the GDPR, including the right to access your data, to have it corrected or erased, to restrict or object to processing, and to data portability. You also have the right to withdraw consent and the right to lodge a complaint with your national data protection authority.
To exercise any of these rights, contact us using the details below. We will respond within the timeframes the GDPR requires.
Changes to this Cookie Policy
We may update this Cookie Policy from time to time to reflect changes to the cookies we use, to the services on our site, or for legal or regulatory reasons. When we make material changes, we will update the "last updated" date below and, where appropriate, ask for your consent again.
Contact us
If you have any questions about this Cookie Policy or how we use cookies and personal data, contact us at [your contact email].
Last updated: 2026-06-14.
This is a generic template provided for convenience and does not constitute legal advice. It is English-only and does not include country-specific requirements (for example Germany's §25 TDDDG, or your national authority's specific banner guidance). For a localized, counsel-grade cookie policy — plus the full set of GDPR documents (privacy policy, ROPA, data-processing agreement, retention policy and breach procedure) with DOCX export — see CookieSentry's GDPR document program.