Cookie Policy
Last updated: November 30, 2025
1. What is a cookie?
A cookie is a small text file stored on your device (computer, smartphone, tablet) when visiting a website. Cookies allow recognizing your browser and remembering certain information about you.
Cookies can be set by the website you visit (first-party cookies) or by third-party services used by the site (third-party cookies).
2. Cookies used on our site
We use different types of cookies to ensure the proper functioning of our site, improve your user experience and analyze our audience.
2.1 Strictly necessary cookies
These cookies are essential for the site to function and cannot be disabled. They are usually set in response to actions you take (login, privacy preferences, etc.).
| Cookie name | Purpose | Duration |
|---|---|---|
| session_id | Maintaining logged-in user session | Session |
| csrf_token | Protection against CSRF attacks | Session |
| cookie_consent | Remembering your cookie preferences | 12 months |
| language | Remembering your preferred language | 12 months |
2.2 Performance and analytics cookies
These cookies allow us to measure our site audience and analyze how visitors use it. They help us improve the site by understanding which pages are the most and least popular.
| Service | Purpose | Duration |
|---|---|---|
| Google Analytics | Visit statistics and traffic analysis | 24 months |
| _ga, _gid, _gat | Unique visitor identification | 2 years / 24h / 1 min |
We use Google Analytics with IP address anonymization enabled, in compliance with GDPR.
2.3 Functional cookies
These cookies enhance the site's features and personalization, such as remembering your display preferences.
| Cookie name | Purpose | Duration |
|---|---|---|
| theme | Remembering light/dark mode | 12 months |
| sidebar_collapsed | Sidebar state (collapsed/expanded) | 6 months |
| onboarding_completed | Do not show introduction tutorial again | Permanent |
2.4 Advertising and marketing cookies
Currently, we do not use third-party advertising or marketing cookies. If this were to change, we would update this policy and request your explicit consent.
3. Cookie retention duration
The retention duration of cookies varies by type:
- Session cookies: Automatically deleted when browser closes
- Persistent cookies: Retained between 1 month and 24 months maximum
- Analytics cookies: Retained 24 months (Google Analytics)
In accordance with GDPR regulations, no cookie (except strictly necessary) is retained beyond 13 months without new consent.
4. Managing your cookie preferences
4.1 Cookie management panel
On your first visit, a banner invites you to accept or refuse non-essential cookies. You can change your preferences at any time by clicking on the "Manage cookies" link at the bottom of the page.
Granular cookie management
You can accept or refuse each cookie category individually:
- Strictly necessary cookies (mandatory - cannot be disabled)
- Performance and analytics cookies (optional)
- Functional cookies (optional)
4.2 Browser settings
You can also manage cookies directly from your browser. Here are links to the help pages of major browsers:
- Google Chrome : Manage cookies in Chrome
- Mozilla Firefox : Manage cookies in Firefox
- Safari : Manage cookies in Safari
- Microsoft Edge : Manage cookies in Edge
Warning: Disabling certain cookies may affect the proper functioning of the site and limit access to certain features.
4.3 Google Analytics tracking opt-out
You can opt out of Google Analytics tracking by installing the Google Analytics Opt-out Browser Add-on: Google Analytics Opt-out Browser Add-on
5. Technologies similar to cookies
5.1 Local Storage and Session Storage
We use your browser's local storage to remember certain preferences and improve application performance. Unlike cookies, this data is not sent to the server with each request.
Local Storage uses:
- Temporary data caching for partial offline access
- Remembering UI state (filters, sorting, pagination)
- Storing user preferences (displayed columns, list/grid view)
5.2 Technical identifiers
When using the API, authentication tokens (JWT) are used to secure your sessions. These tokens are stored securely and have a limited validity period (24 hours).
6. Third-party cookies
Some cookies may be set by third-party services we use:
- Google Analytics: Audience analytics service (with IP anonymization enabled)
- Stripe: Secure payment service (session cookies for transaction only)
These third-party services have their own privacy policy. We recommend consulting them:
7. Cookie security
We implement security measures to protect cookies and the data they contain:
- Secure flag: Sensitive cookies are transmitted only via HTTPS
- HttpOnly flag: Session cookies are not accessible via JavaScript
- SameSite attribute: Protection against CSRF attacks
- Encryption: Sensitive data stored in cookies is encrypted
8. GDPR Compliance
Our use of cookies complies with the General Data Protection Regulation (GDPR) and the ePrivacy Directive:
- Prior consent for non-essential cookies
- Clear and transparent information about cookie use
- Ability to withdraw consent at any time
- Limited and proportionate retention period
- No transfer of data outside the European Union without appropriate safeguards
9. Policy modifications
We reserve the right to modify this cookie policy at any time to reflect changes in our practices or for other operational, legal or regulatory reasons.
Any modification will be published on this page with a new update date. We encourage you to regularly check this page to stay informed.
10. Contact
For any questions regarding our use of cookies, you can contact us:
- Email: dpo@alforis-finance.com
- DPO: Data Protection Officer - Alforis Finance
- Address: 123 Avenue des Champs-Elysees, 75008 Paris, France
For more information on the protection of your personal data, see our Privacy Policy.