1. Overview
This Policy explains browser cookies and local storage used by Vissi. Strictly necessary storage operates without optional analytics consent where permitted by law. Google Analytics is blocked until you choose “Accept analytics”. Rejecting analytics does not reduce core service access.
2. Current inventory
- session — Vissi, HttpOnly/Secure authentication cookie; strictly necessary; rolling expiry up to 7 days.
- cookie_consent — Vissi localStorage preference (“granted” or “denied”); strictly necessary to remember your choice; kept until you clear or change it.
- Firebase authentication storage — Google/Firebase browser storage needed to sign in, verify and maintain authentication; strictly necessary when you use account features; duration follows the selected authentication persistence.
- _ga and _ga_<container-id> — Google Analytics first-party identifiers used to distinguish visits and measure site usage; optional analytics; ordinarily up to 2 years, subject to Vissi/Google configuration.
- Cloudflare Turnstile storage — bot and abuse prevention data that may be set when a protected form is shown; strictly necessary for security; duration is controlled by Cloudflare.
3. Your choices
The banner gives equally available accept and reject choices. You can later change analytics in account privacy settings, delete cookies in your browser, or enable Global Privacy Control; Vissi treats GPC as rejection of optional analytics. Previously created Google Analytics cookies are deleted on rejection where accessible to our domain.
Blocking necessary storage may prevent sign-in, fraud protection or other requested functions. Vissi does not use advertising cookies or cross-context behavioral advertising.
4. Changes and contact
We update this inventory when technologies change. Material new optional purposes will not activate without required consent. Contact privacy@vissi.digital. Effective/version: July 16, 2026 / 2026-07-16.
