Skip to main content
Sign in
Updated: May 9, 20264 min read8 sections

Cookie Policy

How Exoserva uses cookies and similar technologies, the categories we use, and how you control them.

1. Overview

Cookies are small text files placed on your device when you visit a website. We use cookies and similar technologies (local storage, pixel tags, SDKs) to keep you signed in, remember your preferences, secure the platform against abuse, and measure traffic. This policy supplements our Privacy Policy.

2. Cookie Categories

We group cookies into four categories that match the choices in our Cookie Banner:

Strictly Necessary
Required for the platform to function: authentication tokens, session continuity, CSRF protection, load balancing. Cannot be disabled.
Functional
Remember your preferences (language, time zone, theme, last-active tenant). Disabling these means you must reconfigure preferences each visit.
Analytics
Aggregate, de-identified traffic measurement so we can fix slow pages and broken flows. We do not use analytics cookies for advertising or profiling.
Marketing
Off by default. Used only after you opt in via the Cookie Banner to measure landing-page conversion and to suppress retargeting from third-party ad networks once you become a paying customer.

3. How You Opt In

On your first visit you see a Cookie Banner with three buttons: Manage Settings, Necessary Only, and Accept All. Strictly Necessary cookies are always on; the other three categories require explicit opt-in. Per the EU ePrivacy Directive, we never load Functional / Analytics / Marketing cookies before you have clicked an affirmative button.

4. How to Opt Out

You can change your cookie preferences at any time:

  • Click the cookie icon in the page footer to reopen the Cookie Banner.
  • Use your browser settings to block cookies for exoserva.com.
  • Email privacy@exoserva.com to request deletion of any cookie-derived data we hold.

5. Third-Party Cookies

A small number of third parties may set cookies via the platform:

  • Stripe — fraud prevention on the payment checkout (Strictly Necessary).
  • Google reCAPTCHA Enterprise — bot protection on public forms (Strictly Necessary).
  • Sentry — session-replay diagnostic (Analytics tier; off by default; PII masked).

The full vendor list is published at /sub-processors. Each vendor operates under a Data Processing Agreement.

6. Do Not Track

We honour the Global Privacy Control (GPC) signal as an opt-out from Marketing and Analytics cookies. Browser-level Do Not Track headers are also respected.

7. Changes to This Policy

When we add or remove a cookie category, or change a vendor, we post the new policy here and update the "Last updated" date. Material changes are also surfaced via the Cookie Banner so you can re-confirm your choices.

8. Contact

Questions about cookies? privacy@exoserva.com.