Cookie Policy

Last updated: March 22, 2026

TL;DR: We only use essential cookies needed to keep you logged in and the site working. No tracking, no analytics, no advertising cookies.

1. What Are Cookies

Cookies are small text files stored on your device when you visit a website. They are widely used to make websites work correctly, improve user experience, and provide information to site operators.

2. Cookies We Use

WPPulse uses only strictly necessary cookies — those required for the website to function. These do not require consent under the ePrivacy Directive because the service cannot operate without them.

Cookie Purpose Duration Type
wppulse_session Identifies your authenticated session. Required for the dashboard to work. 2 hours Essential
XSRF-TOKEN Protects against cross-site request forgery (CSRF) attacks. A security measure for all form submissions. 2 hours Essential
cookie_consent Records that you have acknowledged this cookie notice. Prevents the banner from showing again. 1 year Essential
remember_web_* Keeps you logged in between browser sessions when you select "Remember me" at login. Only set if you opt in. 5 years Functional

3. Cookies We Don't Use

  • Analytics cookies — Our analytics (Matomo) runs in cookieless mode. No analytics cookies are set on your device.
  • Advertising cookies — We do not serve ads or use retargeting.
  • Third-party tracking cookies — No third-party trackers are loaded. Our analytics is self-hosted in the EU.
  • Social media cookies — No social media widgets or share buttons that set cookies.

4. External Resources

While not cookies, the following external resources are loaded when you visit WPPulse. For transparency, we list them here:

All fonts (Manrope, Inter, Material Symbols) are self-hosted on our servers. No external font CDNs or services are loaded, so no visitor data is shared with third parties for font delivery.

Matomo Analytics (self-hosted, cookieless)

We use Matomo for basic website analytics (page views, referrers). Matomo is self-hosted on our own EU servers (analytics.fizteq.com) — no data is shared with third parties. We run Matomo in cookieless mode, meaning no cookies are set on your device and no consent is required. Matomo does not track you across websites and does not build advertising profiles.

Cloudflare Turnstile (registration and contact pages)

We use Cloudflare Turnstile on the registration page to prevent automated bot signups. Turnstile is a privacy-focused CAPTCHA alternative that does not track users across sites, does not use cookies for tracking, and does not collect personal data beyond what is needed to verify you are human. Turnstile may set a cf_clearance cookie for challenge verification. Cloudflare privacy policy.

5. Cookie Security

All cookies set by WPPulse are configured with the following security measures:

  • Secure flag: Cookies are only transmitted over HTTPS.
  • HttpOnly flag: Session cookies cannot be accessed by JavaScript, preventing XSS attacks.
  • SameSite=Lax: Cookies are not sent with cross-site requests, preventing CSRF attacks.
  • Encrypted payload: Session data is encrypted server-side and cannot be read or tampered with.

6. Managing Cookies

You can control cookies through your browser settings. Most browsers allow you to:

  • View and delete existing cookies
  • Block all or specific cookies
  • Set preferences for certain websites

Please note that blocking essential cookies will prevent you from logging in and using the WPPulse dashboard.

7. Changes to This Policy

If we introduce new types of cookies (for example, analytics), we will update this policy and notify you before they are deployed. Any non-essential cookies will require your explicit consent before being set.

8. Contact

For questions about our use of cookies, contact us at wppulse@fizteq.com.