Cookie Policy
Effective Date: 12 April 2026 Last Updated: 12 April 2026
This Cookie Policy explains how TagLeak ("we", "us", or "our") uses cookies and similar technologies on tagleak.com (the "Service"). It should be read together with our Privacy Policy, which explains more generally how we handle personal data.
By using tagleak.com, you agree to the use of cookies as described in this Cookie Policy. Where your consent is required by law (for example, under the EU ePrivacy Directive and GDPR), non-essential cookies will only be set after you have given your consent through our cookie banner.
1. What Are Cookies?
Cookies are small text files that a website places on your browser or device when you visit. They are widely used to make websites work, or to make them work more efficiently, and to provide information to the website owner.
In this Cookie Policy, we use the word "cookies" to refer to cookies and similar technologies — including localStorage, sessionStorage, pixels, tags, and scripts — that store or access information on your device.
2. Categories of Cookies We Use
We classify the technologies we use into four categories:
- Strictly necessary — required for the Service to function (for example, authentication and security). These cannot be turned off.
- Functional — remember your preferences and choices to improve your experience.
- Analytics — help us understand how visitors use the Service so we can improve it.
- Advertising / Marketing — used to deliver relevant advertising and measure the effectiveness of our advertising campaigns, including remarketing.
Strictly necessary cookies are set without needing your consent. All other categories are set only after you give consent through our cookie banner.
3. First-Party Cookies
These cookies are set directly by tagleak.com.
| Name | Category | Duration | Purpose |
|---|---|---|---|
| __Host-authjs.csrf-token | Strictly necessary (security) | Session | CSRF protection for Auth.js authentication |
| authjs.session-token | Strictly necessary (authentication) | 30 days | Stores your authenticated session after sign-in |
| authjs.callback-url | Strictly necessary (functional) | Session | Stores the redirect URL used during the authentication flow |
| tagleak_consent | Strictly necessary (functional) | 1 year | Remembers your cookie consent choices so we don't re-prompt you on every visit |
4. First-Party localStorage
In addition to cookies, we use your browser's localStorage to remember certain preferences. localStorage is not a cookie — it is not transmitted to our servers with each request — but we disclose it here for full transparency.
| Key | Category | Purpose |
|---|---|---|
| tagleak_scan_region | Functional | Remembers the geographic scan region you selected, across visits |
| tagleak_selected_regulation | Functional | Remembers the regulation filter (e.g. GDPR, CCPA) you selected |
You can clear localStorage at any time through your browser settings.
5. Third-Party Cookies and Services
We use the following third-party services on tagleak.com. Each of these services sets its own cookies and/or processes data about your use of the Service. These services act as independent data controllers or joint controllers in respect of the data they collect, and process data in accordance with their own privacy policies.
5.1 Google Analytics 4 (GA4)
Provider: Google LLC / Google Ireland Limited Category: Analytics Purpose: Measures usage of the Service, including pageviews, session duration, device and browser information, approximate geographic location, and conversion tracking. This helps us understand how visitors interact with tagleak.com so we can improve it.
| Cookie | Duration | Purpose |
|---|---|---|
| _ga | 2 years | Distinguishes unique users |
| _ga_* (e.g. _ga_XXXXXXXX) | 2 years | Persists session state for a specific GA4 property |
Privacy policy: https://policies.google.com/privacy Opt-out: https://tools.google.com/dlpage/gaoptout
5.2 Google Ads
Provider: Google LLC / Google Ireland Limited Category: Advertising / Marketing Purpose: Measures the performance of our advertising campaigns and allows us to show tailored advertisements ("remarketing") to visitors of tagleak.com on other websites and services in the Google network.
| Cookie | Duration | Purpose |
|---|---|---|
| _gcl_au | 90 days | Used by Google AdSense and conversion linker to store and track conversions |
| IDE | 13 months | Used by Google DoubleClick to display and measure targeted ads |
| DSID | 2 weeks | Links your activity across devices if you've previously signed in to your Google Account |
Privacy policy: https://policies.google.com/privacy Ad personalisation settings: https://adssettings.google.com
5.3 Google Tag Manager (GTM)
Provider: Google LLC / Google Ireland Limited Category: Varies (tag management) Purpose: Manages and deploys tags on tagleak.com (such as GA4 and Google Ads). GTM itself does not set tracking cookies, but it can load other services (including those listed above) that do.
Privacy policy: https://policies.google.com/privacy
5.4 Stripe
Provider: Stripe, Inc. / Stripe Payments Europe, Ltd. Category: Strictly necessary (fraud prevention and checkout) Purpose: Processes payments and prevents fraud during checkout. These cookies are only set when you interact with payment features of the Service.
| Cookie | Duration | Purpose |
|---|---|---|
| __stripe_mid | 1 year | Fraud prevention — uniquely identifies a browser across sessions |
| __stripe_sid | 30 minutes | Fraud prevention — identifies a specific checkout session |
Privacy policy: https://stripe.com/privacy Cookie policy: https://stripe.com/cookies-policy/legal
6. Advertising and Remarketing
We use Google Ads remarketing to show you relevant advertisements on other websites and platforms after you have visited tagleak.com. This is based on cookies and similar technologies that record your visit and interactions.
We may add other advertising and retargeting networks in the future (such as Meta, LinkedIn, or X). If we do, we will update this Cookie Policy and request your consent where required.
You can opt out of personalised advertising in several ways:
- Decline or withdraw consent in our cookie banner on tagleak.com.
- Use Google's ad personalisation settings: https://adssettings.google.com
- Use the industry opt-out tools at:
- EEA: https://www.youronlinechoices.eu
- UK: https://www.youronlinechoices.com
- US: https://optout.aboutads.info and https://www.networkadvertising.org/choices
- Enable the Global Privacy Control (GPC) signal in your browser — we treat GPC as a valid opt-out of cross-context behavioural advertising.
7. Legal Basis for Using Cookies
Where the GDPR and the ePrivacy Directive apply:
- We rely on your consent for analytics, advertising, and remarketing cookies. You give this consent through our cookie banner, and you can withdraw it at any time.
- We rely on our legitimate interests and on the fact that the cookies are strictly necessary for the provision of the Service you have requested for essential cookies (authentication, security, fraud prevention, consent storage).
Where CCPA/CPRA applies, advertising and remarketing cookies may involve "sharing" of personal information for cross-context behavioural advertising. You have the right to opt out — see our Privacy Policy for details.
8. Managing Your Cookie Preferences
You can manage your cookie preferences in two ways:
8.1 Via our cookie banner
When you first visit tagleak.com, you will see a cookie banner that lets you accept, reject, or customise non-essential cookies. You can reopen the banner and change your choices at any time by clicking the "Cookie settings" link in our website footer.
8.2 Via your browser
Most browsers let you view, manage, delete, and block cookies. Instructions for the most common browsers:
- Google Chrome: https://support.google.com/chrome/answer/95647
- Mozilla Firefox: https://support.mozilla.org/en-US/kb/cookies-information-websites-store-on-your-computer
- Safari (desktop): https://support.apple.com/guide/safari/manage-cookies-sfri11471
- Safari (iOS): https://support.apple.com/en-us/HT201265
- Microsoft Edge: https://support.microsoft.com/en-us/microsoft-edge/delete-cookies-in-microsoft-edge-63947406-40ac-c3b8-57b9-2a946a29ae09
Please note that if you block or delete strictly necessary cookies, parts of the Service (including sign-in and checkout) may not function correctly.
9. Do Not Track and Global Privacy Control
Because there is no industry consensus on how to interpret "Do Not Track" (DNT) signals, we do not currently respond to DNT signals.
We do honour the Global Privacy Control (GPC) signal as a valid opt-out of sharing personal information for cross-context behavioural advertising. If your browser sends a GPC signal, we will treat it as an opt-out of advertising and remarketing cookies.
10. Changes to This Cookie Policy
We may update this Cookie Policy from time to time, for example when we add or change cookies or services. When we make material changes, we will update the "Last Updated" date at the top of this page and, where appropriate, notify you through our cookie banner or another prominent notice on the Service. We encourage you to review this page periodically.
11. Contact Us
If you have any questions about this Cookie Policy or our use of cookies, please contact us:
TagLeak Email: support@tagleak.com Website: https://tagleak.com