Cookie Policy

1. Purpose of this Policy

This Cookie Policy explains how https://glexironwhroxxen.world (the “Site”) deploys cookies, local storage, session storage, pixels, scripts with storage capabilities, and similar technologies (“cookies”) when you visit. It should be read together with our Privacy Policy, which describes broader processing of personal data. The Policy reflects the Norwegian Marketing Control Act, the Electronic Communications Act implementing the EU ePrivacy Directive, and GDPR where cookies involve personal data.

2. What cookies are

Cookies are small text files or equivalent browser storage entries placed on your device when you load a page or interact with features. First-party cookies are set by our domain. Third-party cookies are set by partner domains embedded in our pages. Similar technologies include HTML5 local storage, session identifiers in URLs when strictly necessary, and server-side fingerprints limited to security contexts.

3. How we obtain consent

When you first visit, a banner presents three choices: accept all optional categories, reject optional categories, or open granular settings. Strictly necessary cookies do not require consent under ePrivacy implementations that exempt communications or service explicitly requested by the user. Analytics and marketing cookies are blocked until you opt in through “Accept all” or enable the respective toggles and save preferences. Your choice is stored in localStorage under the key referenced by our script as phytocorex_cookie_consent to avoid repeated prompts and to document consent. You may change preferences at any time by clearing Site storage or contacting us for manual guidance.

4. Cookie categories in use or planned

4.1 Strictly necessary

These cookies support functions you explicitly request, such as remembering cookie consent state, maintaining security tokens for administrative sessions, load balancing, and fraud prevention counters. They expire after short periods or at browser close depending on function. Legal basis under GDPR: Article 6(1)(f) legitimate interest in secure delivery, supplemented by ePrivacy exemptions for technical storage strictly necessary.

4.2 Analytics

If activated after consent, analytics tools measure aggregated page views, scroll depth, and referral channels. IP addresses may be truncated before storage. Retention typically follows vendor defaults but we configure minimisation where the platform allows. Legal basis: Article 6(1)(a) consent.

4.3 Marketing

If activated after consent, marketing cookies may build pseudonymous profiles to attribute advertisement clicks, retarget visitors on partner networks, or measure email opens when images load. You may withdraw consent through the banner or industry opt-out pages such as the European Interactive Digital Advertising Alliance. Legal basis: Article 6(1)(a) consent.

5. Specific cookies and storage keys

The table below lists representative entries. Names may change during technical upgrades; updates will be reflected in this Policy’s version history.

• phytocorex_cookie_consent (localStorage): stores JSON including necessary, analytics, and marketing booleans plus a timestamp. Duration: until cleared or overwritten.
• Session cookies (if deployed): maintain cart or form progress during a browsing session. Duration: session.
• Security cookies (if deployed by CDN/WAF): challenge tokens. Duration: hours to days per vendor policy.

6. Third-party integrations

Embedded content such as maps, videos, or social widgets may set third-party cookies beyond our direct control. We delay loading such embeds until optional consent when feasible. Review third-party policies for additional detail.

7. Browser controls

Major browsers let you block or delete cookies. Blocking strictly necessary cookies may break Site functions such as consent storage. Use private browsing for temporary sessions. Mobile operating systems provide analogous advertising identifiers reset options.

8. Data subject rights

Where cookies process personal data, GDPR rights described in our Privacy Policy apply, including access, erasure, and objection. Identifier-level data may be held by joint analytics vendors; we assist with coordination upon request.

9. Changes

We amend this Policy when tooling or law changes. Material updates will be announced via the Site banner or version note at the top of this page.

10. Contact

Email help@glexironwhroxxen.world or write to Trondheimsveien 233, Bygg 40, 0586 Oslo, Norway.

11. Consent renewal and expiry

Marketing and analytics consents are reviewed at least every twelve months where tools support automated reminders. If you delete browser storage, the banner reappears because we cannot read prior choices. Renewed consent timestamps replace older records in our documentation archive.

12. Interaction with browser tracking prevention

Some browsers block third-party cookies by default. Features that rely on third-party storage may not initialise even after you opt in. We configure tags to use first-party proxies where possible to respect both privacy settings and measurement needs.

13. Social plugins

Social sharing buttons may load only after marketing consent. Until then, placeholders without remote calls are shown to prevent unintended data transmission to social networks.

14. Proof of consent

We retain consent logs including version of banner text, categories accepted, timestamp, and a hashed identifier of the browser storage entry. Logs demonstrate accountability to Datatilsynet if questioned.

15. Relationship to advertising ID on mobile apps

If future native applications are released, device advertising identifiers will be handled under platform rules (App Tracking Transparency on iOS, Google Play data safety section on Android) in addition to this Policy. This website version covers browser environments only.