Pactaro./Legal
DRAFT — NOT YET BINDING. These terms are under legal review. They are based on open-source templates and have not been reviewed by a qualified attorney for your jurisdiction. Do not rely on this document until it is finalized and the DRAFT banner is removed. Contact hello@pactaro.eu with questions.

Cookie Policy

Last updated 2026-05-25 (DRAFT)

Our Privacy Policy explains our principles when it comes to the collection, processing, and storage of your information. This Cookie Policy specifically explains how Pactaro B.V. deploys cookies when you use pactaro.eu, and the choices you have to control them.

What Are Cookies?

Cookies are small pieces of data stored in text files on your computer or device when you visit a website. They are widely used to remember you and your preferences — either for a single visit (“session cookies”) or for repeat visits (“persistent cookies”).

Cookies may be set by the site you are visiting (“first-party cookies”) or by third parties such as analytics or authentication providers (“third-party cookies”). Pages may also contain other tracking technologies such as web beacons; these are not stored on your device but work similarly to cookies.

How We Use Cookies

Pactaro uses cookies only for purposes necessary to operate the service and to understand how users interact with it. We do not use advertising or targeting cookies. Specifically, we use cookies to:

  • Keep you logged in to your account during a browser session.
  • Store your authentication state securely (via Supabase).
  • Maintain basic session preferences.
  • Support our ability to investigate issues reported to us.

Our Cookies

The table below lists the cookies we set, their purpose, and how long they last.

CookiePurposeDurationType
sb-*-auth-tokenSupabase authentication session. Keeps you signed in. Required to use the application.Session / up to 1 weekStrictly necessary
sb-*-auth-token-code-verifierPKCE code verifier for OAuth sign-in flow. Set during login only, deleted immediately after.Sign-in flow onlyStrictly necessary
x-request-idA short random identifier attached to each request, used by our support team to correlate error reports with server-side logs.Per-request (not persisted)Strictly necessary
NEXT_LOCALESet by Next.js if locale switching is enabled. Currently not in use; will be set only if we add locale support.1 yearFunctional

We do not use Google Analytics, Facebook Pixel, advertising networks, or any other third-party tracking cookies. If this changes, we will update this policy and, where required by applicable law, ask for your consent before setting such cookies.

Third-Party Cookies

Stripe (Ireland) may set cookies on our billing and checkout pages for payment processing and fraud detection purposes. These are set by Stripe directly and are governed by Stripe's Cookie Policy.

Our Supabase authentication is hosted on our own Supabase instance in Frankfurt; the sb-* cookies are first-party cookies from pactaro.eu.

Controlling Cookies

Because we only use strictly necessary cookies and functional cookies, you cannot opt out of them without losing the ability to log in. You can, however:

  • Delete cookies at any time via your browser settings. This will sign you out of your Pactaro account.
  • Block third-party cookies via browser settings — this will not affect your ability to use Pactaro, since we do not rely on third-party cookies.
  • Use private / incognito mode, which discards all cookies when you close the window. You will need to sign in each visit.

For browser-specific instructions, see the help documentation for Chrome, Firefox, or Safari.

Contact

Questions about our use of cookies? Contact us at dpo@pactaro.eu or hello@pactaro.eu.

Pactaro B.V.
Prinsengracht 412, 1016 HP Amsterdam, Netherlands

This Cookie Policy is adapted from Automattic's open-sourced Cookie Policy, available under the Creative Commons Attribution-ShareAlike 4.0 license.