Cookie Policy
This policy explains how SafeTripVax uses cookies and similar technologies (including Web Storage API) to enhance your experience. It is compliant with the ePrivacy Directive (2002/58/EC) and the General Data Protection Regulation (GDPR, Regulation 2016/679).
Last updated: 2026-02-08
What are cookies?
Cookies are small text files stored on your device when you visit a website. They help remember your preferences and improve your browsing experience. Some data is also stored via the Web Storage API (localStorage), which persists until explicitly cleared.
Types of cookies we use
Essential cookies
Required for the website to function properly (authentication, language selection, consent preferences). Cannot be disabled. Legal basis: Art. 6(1)(f) GDPR — legitimate interest.
Analytics cookies
Help us understand how visitors use our site to improve the experience. Only set with your explicit consent. Legal basis: Art. 6(1)(a) GDPR — consent.
Marketing cookies
Used to show relevant ads and measure campaign effectiveness. Only set with your explicit consent. Legal basis: Art. 6(1)(a) GDPR — consent.
Detailed cookie inventory
| Name | Provider | Purpose | Category | Lifetime |
|---|---|---|---|---|
| sb-*-auth-token | Supabase | JWT authentication token | Essential | 1h |
| sb-*-session | Supabase | Session metadata | Essential | 7d |
| NEXT_LOCALE | SafeTripVax | Language preference | Essential | 1y |
| cookieConsent | SafeTripVax | Cookie consent preferences | Essential | localStorage |
| cookieConsentVersion | SafeTripVax | Consent banner version | Essential | localStorage |
| stv_remember | SafeTripVax | Remember me on login | Essential | localStorage |
| stv_last_email | SafeTripVax | Last used email for login | Essential | localStorage |
| _ga | Unique analytics visitor ID | Analytics | 2y | |
| _gid | Session identifier | Analytics | 24h | |
| _gat | Request throttling | Analytics | 1min | |
| GTM script | Tag management and script loading | Analytics | session |
Legal basis
Essential cookies are set under Art. 5(3) of the ePrivacy Directive (2002/58/EC) as they are strictly necessary for the service requested by the user. Analytics and marketing cookies require your prior consent under Art. 6(1)(a) GDPR. You may withdraw consent at any time by adjusting your preferences above or clearing cookies in your browser. Withdrawal of consent does not affect the lawfulness of processing carried out before withdrawal.
Third-party providers
We use the following third-party services that may set cookies or process data: Supabase (authentication, database — servers in EU), Google Analytics / Google Tag Manager (analytics — data may be transferred to the US under EU-US Data Privacy Framework), and Stripe (payment processing — session cookies only, set during checkout). Each provider operates under their own privacy policy.
Manage your preferences
You can change your cookie preferences at any time.
How to manage cookies in your browser
You can delete or block cookies through your browser settings. Note that blocking essential cookies may affect website functionality.
Web Storage (localStorage)
Some preferences are stored using the Web Storage API (localStorage) rather than traditional cookies. These include: consent preferences (cookieConsent, cookieConsentVersion), remember-me flag (stv_remember), and last-used email (stv_last_email). localStorage data does not expire automatically and is not sent to the server with each request. You can clear localStorage via your browser developer tools (Application → Local Storage) or by clearing all site data in browser settings.
Questions?
If you have any questions about our use of cookies, contact our Data Protection Officer:
privacy@safetripvax.com