Cookie Policy

Cookies are small text files that a website asks your browser to store. Similar mechanisms include localStorage and sessionStorage. They can be "essential" (needed for the site to function) or "non-essential" (analytics, advertising, tracking) — the latter generally require informed consent in the EU under ePrivacy and GDPR.

Norvalda uses essential storage only. None of it requires consent under EU law.

• NEXT_LOCALE (cookie, 1 year): remembers which of our six site languages you chose, so you don't have to re-pick on every visit.
• theme (localStorage, persistent): remembers your light/dark preference if you change it.
• Session security tokens (HTTP-only, session-scoped): set by our hosting platform to mitigate CSRF on form submissions.

We have made a deliberate choice not to deploy:

• Advertising or retargeting pixels (no Meta Pixel, no Google Ads, no LinkedIn Insight Tag).
• Third-party analytics requiring consent (no Google Analytics, no Hotjar, no session replay).
• Social network embeds that drop cookies on page load.
• Marketing automation cookies, lead-scoring pixels or chat widgets with tracking.

This is why you do not see a cookie consent banner. There is nothing to consent to.

For aggregate traffic insight we may use server-side, cookieless analytics that count requests at our edge. No personal identifier or persistent device fingerprint is created. If we ever deploy a third-party analytics tool, it will be a privacy-friendly one that does not require cookies or consent (such as Plausible or PostHog in cookieless mode), and this policy will be updated accordingly.

You can clear or block cookies at any time via your browser settings:

• Google Chrome
• Mozilla Firefox
• Safari
• Microsoft Edge

Blocking essential cookies may cause language and theme preferences not to persist between visits.

Questions about cookies or this policy: privacy@norvalda.studio.