This Cookie Policy explains the cookies and similar technologies used on payshield.app (the "Service"), in accordance with Article 22.2 of Spanish Law 34/2002 (LSSI-CE) and the Spanish Data Protection Agency's (AEPD) Cookie Guidelines.
It complements our Privacy Policy and Legal Notice.
1. What is a cookie?
A cookie is a small text file stored on your device when you visit a website. It allows the site to remember information about your visit (such as a login session) or to measure how the site is used. Similar technologies include browser local storage, session storage, and pixel tags; for the purposes of this policy we refer to all of them as "cookies".
2. Consent
When you first visit payshield.app you will see a cookie banner. Non-essential cookies are not loaded until you click "Accept". If you click "Reject" or close the banner, only strictly necessary cookies will be used. You can change your choice at any time using the "Cookie preferences" link in our footer.
Essential cookies do not require consent because they are strictly necessary for you to use the Service (Art. 22.2 LSSI-CE).
3. Cookies we use
A. Strictly necessary (no consent required)
| Cookie / storage key | Purpose | Provider | Retention |
|---|---|---|---|
sb-access-token, sb-refresh-token | Maintain your authenticated session | Supabase | Session / up to 30 days |
payshield_consent | Remember your cookie-consent choice | PayShield | 12 months |
theme (local storage) | Remember your light/dark theme preference | PayShield | Until cleared |
B. Analytics (consent required)
| Cookie / storage key | Purpose | Provider | Retention |
|---|---|---|---|
ph_* | Identify your browser to PostHog so we can measure feature usage and funnel performance | PostHog Inc. | 12 months |
PostHog is configured for our EU project. It does not run unless you click "Accept" in the cookie banner. If you reject, no PostHog cookies are set and no events are captured.
<!-- REVIEW: Confirm the PostHog project is hosted in the EU region (eu.posthog.com, not us.posthog.com) before publishing — the privacy implications are different. -->C. Third-party tools embedded on specific pages
Pages that embed third-party widgets (e.g., a Product Hunt badge or an embedded video) may load cookies set by those third parties. Where this happens, the third-party widget loads only after you have given analytics consent.
4. We do not use
- advertising cookies;
- cross-site retargeting pixels (Google Ads, Meta, LinkedIn, etc.);
- third-party social-media tracking pixels;
- fingerprinting technologies designed to identify you across sites without cookies.
If we ever introduce any of the above, this Policy will be updated and your consent will be requested again.
5. Managing your preferences
You can change or withdraw your consent at any time by:
- clicking the "Cookie preferences" link in the footer of payshield.app;
- clearing the
payshield_consentvalue in your browser's local storage (this will trigger the banner on your next visit); - using your browser's settings to block or delete cookies. Help pages: Chrome, Firefox, Safari, Edge.
Blocking strictly necessary cookies will prevent the Service from working correctly (e.g., you will not be able to stay signed in).
6. Updates
We may update this Cookie Policy when we add, remove, or change a cookie or a provider. The "last updated" date at the top of this page indicates the most recent revision; material changes are announced on /legal/cookies and, where appropriate, by email.
7. Contact
Questions about cookies or this Policy: contact@payshield.app.