Cookie Policy
Last updated: 2026-04-17
This page explains the cookies and similar storage technologies used on assaycore.pro. We keep the list deliberately short: security cookies required for the site to work, and privacy-friendly analytics. No ad-tech, no cross-site tracking.
Cookie categories
Strictly necessary - required for the site to function (security, load balancing, language preference). These cannot be disabled and are set under GDPR Art. 6.1.f / ePrivacy Art. 5(3) exemption. Analytics - help us understand how visitors use the site so we can improve it. Disabled by default; set only with your consent. Marketing / advertising - NOT USED by AssayCore. We do not run ad pixels or retargeting.
Managing your consent
On your first visit you will see a cookie banner with three choices: "Accept all", "Essential only" (reject non-essential cookies), and "Customize" (per-category toggles). Your choice is stored in local storage for 12 months. To change it later, clear the assaycore.pro cookies in your browser or click "Cookie settings" in the footer. You can also enable Global Privacy Control (GPC) in your browser - we honour it.
Third-party providers
Cloudflare sets strictly-necessary cookies for bot mitigation and DDoS protection (legitimate interest). Plausible Analytics is privacy-friendly (no personal identifiers, no cross-site tracking, aggregated counts only); when enabled with consent it does not set tracking cookies. Paddle.com Market Ltd (our Merchant of Record) may set cookies on its hosted checkout pages - see the Paddle Privacy Notice for details. Vercel hosts the site and may set an "__vercel_live_token" cookie for preview deployments (strictly necessary).
Data retention
Strictly-necessary cookies: session lifetime up to 30 days. Analytics identifiers (only if enabled): 12 months. Consent record: 12 months, then the banner is shown again.
Cookies we may set
| Name | Category | Purpose | Provider | Duration |
|---|---|---|---|---|
| __cf_bm | Strictly necessary | Cloudflare bot mitigation / security | Cloudflare | 30 minutes |
| cf_clearance | Strictly necessary | Cloudflare anti-abuse challenge pass | Cloudflare | 30 days |
| locale | Strictly necessary | Stores your language choice (en/es) | AssayCore | 12 months |
| cookie-consent | Strictly necessary | Records your cookie banner choice | AssayCore | 12 months |
| _pa | Analytics (opt-in) | Aggregated traffic analytics (Plausible) | Plausible | Session |
| paddle_* | Strictly necessary | Paddle checkout session and fraud prevention (set on checkout.paddle.com only) | Paddle | Session |
Exact names may vary slightly between providers. We do not set advertising cookies.
Questions
Cookie-related questions: info@assaycore.pro. For EU / UK data-subject requests via our Article 27 representative: privacy@paddle.com.