Cookie Policy
Effective date: April 16, 2026
1. What Are Cookies
Cookies are small text files placed on your device when you visit a website. They are widely used to make websites work, improve performance, and provide information to the website owner. Cookies may be set by the website you are visiting (“first-party cookies”) or by third-party services operating on the website (“third-party cookies”).
2. Cookies We Use
We only use strictly necessary cookies that are essential for our website to function properly. These cookies cannot be disabled without affecting the functionality of the site.
| Cookie | Purpose | Duration |
|---|---|---|
| laravel_session | Maintains your login session | 2 hours |
| XSRF-TOKEN | Protects against cross-site request forgery | 2 hours |
| __stripe_mid | Stripe fraud prevention (set when processing payments) | 1 year |
| __stripe_sid | Stripe fraud prevention (set when processing payments) | 30 minutes |
3. Analytics
We use Umami, a privacy-focused analytics tool, to understand how visitors use our website. Umami does not use cookies, does not track personal data, and does not require consent. No personally identifiable information is collected. All data is aggregated and anonymous.
4. Third-Party Cookies
When you choose PayPal as your payment method, you are redirected to PayPal's website to complete the transaction. PayPal's own cookie policy applies on their domain. We do not set PayPal cookies on our site.
5. Why There Is No Cookie Consent Banner
You may notice that our website does not display a cookie consent banner or pop-up. This is intentional and fully compliant with European law. Here is why:
The ePrivacy Directive (2002/58/EC), specifically Article 5(3), requires user consent before storing or accessing information on a user's device (such as cookies). However, this same article provides a clear exemption:
“This shall not prevent any technical storage or access for the sole purpose of carrying out the transmission of a communication over an electronic communications network, or as strictly necessary in order for the provider of an information society service explicitly requested by the subscriber or user to provide the service.”— Article 5(3), Directive 2002/58/EC (ePrivacy Directive)
All cookies on our website fall under this exemption because they are strictly necessary to provide the service you have requested:
- Session cookies (
laravel_session) — required to keep you logged in while using the service. - Security cookies (
XSRF-TOKEN) — required to protect your requests from cross-site request forgery attacks. - Payment security cookies (
__stripe_mid,__stripe_sid) — required by Stripe to detect and prevent payment fraud during checkout.
Furthermore, our analytics solution (Umami) operates without cookies and does not store any information on your device, so it does not fall under the scope of Article 5(3) at all.
This approach is consistent with the guidance of the European Data Protection Board (EDPB), the Italian Data Protection Authority (Garante per la protezione dei dati personali), and the Article 29 Working Party Opinion 04/2012 on the cookie consent exemption.
6. Managing Cookies
You can manage cookies through your browser settings. Most browsers allow you to block or delete cookies. Please note that disabling necessary cookies may prevent the site from functioning properly.
Instructions for common browsers:
- Chrome: Settings > Privacy and Security > Cookies
- Firefox: Settings > Privacy & Security > Cookies
- Safari: Preferences > Privacy > Cookies
- Edge: Settings > Cookies and site permissions
7. Contact
If you have any questions about our use of cookies, please contact us at [email protected].
For more information about how we handle your personal data, please see our Privacy Policy.