Storage and access technologies

Cookie Policy

Version 2.3.2 · Effective date: to be confirmed before production launch

Current use

The UAT release uses only the strictly necessary eurotax_session cookie after administrator authentication. It is HttpOnly, SameSite=Strict and, in public HTTPS mode, Secure. It expires after the configured administrator session period.

No analytics or advertising cookies

The current release does not enable analytics, advertising or marketing cookies. Because only a strictly necessary authentication cookie is used, the UAT release does not display an optional-cookie consent banner.

Future optional technologies

Optional analytics, marketing, embedded-media or personalisation technologies must remain disabled until the operator has implemented prior information, an equally prominent accept and reject choice, consent records, category controls and an easy withdrawal mechanism where consent is required.

Browser controls

Users may delete or block cookies in their browser. Blocking the administrator session cookie prevents use of the protected administration area.

Changes

This policy and the consent interface must be updated before any new storage or access technology is deployed.