Cookie Policy

Version 1.0 - March 2026

COOKIE POLICY

GeoTapp, geotapp.com

Version 1.0 - March 2026


1. WHAT COOKIES ARE

Cookies are small text files that websites save on the user's device (computer, smartphone, tablet) during browsing. They allow the site to remember the user's preferences, improve the browsing experience and collect statistical information about usage.


2. TYPES OF COOKIES USED

2.1 Necessary Technical Cookies

These cookies are essential for the proper functioning of the site. Without them, some features would not be available. They do not require consent pursuant to art. 122, paragraph 1, of the Italian Privacy Code.

Cookie NamePurposeDurationType
geotapp_localeStores the user's language preference1 yearFirst-party
__cf_bmCloudflare bot protection30 minutesThird-party (Cloudflare)
cf_clearanceCloudflare security verification1 yearThird-party (Cloudflare)

2.2 Session and Authentication Cookies

Used to manage access to the reserved area of the GeoTapp platform.

Cookie NamePurposeDurationType
geotapp_sessionMaintains the authenticated sessionSessionFirst-party
geotapp_authJWT authentication token30 daysFirst-party

2.3 Analytics Cookies (with consent)

Used to collect aggregate information about site usage, in anonymized or pseudonymized form, in order to improve content and navigation.

Cookie NameProviderPurposeDuration
_gaGoogle Analytics 4Anonymous user identifier2 years
_ga_*Google Analytics 4Session state2 years

Privacy-first configuration: GeoTapp uses Google Analytics 4 with anonymized IP, without sharing data with Google for advertising purposes, and with signals functionality disabled.

2.4 Marketing Cookies (with consent)

Used to show relevant advertising content to users who have already visited the site.

Cookie NameProviderPurposeDuration
_fbpMeta (Facebook)Conversion tracking pixel3 months
_gcl_auGoogle AdsConversion tracking3 months

3. THIRD-PARTY COOKIES

The geotapp.com site may embed third-party content that installs its own cookies. The main providers are:

Cloudflare (CDN and security)

Google (Analytics and Maps)

Stripe (payments)

  • Purpose: secure payment processing
  • Cookies only on checkout pages
  • Privacy Policy: stripe.com/privacy

4. COOKIE MANAGEMENT

4.1 Cookie Banner

On first access to the site, a banner is shown that allows the user to:

  • Accept all cookies (technical + analytics + marketing)
  • Accept only necessary technical cookies
  • Customize preferences by category

4.2 Changing Preferences

Preferences can be changed at any time by clicking the "Manage Cookies" link in the site footer.

4.3 Management via Browser

You can manage, block or delete cookies directly from your browser settings:

  • Chrome: Settings โ†’ Privacy and security โ†’ Cookies
  • Firefox: Preferences โ†’ Privacy and security โ†’ Cookies
  • Safari: Preferences โ†’ Privacy โ†’ Cookies
  • Edge: Settings โ†’ Cookies and site permissions

Warning: blocking necessary technical cookies may impair the functioning of the site.


5. LEGAL BASIS

The processing of data through cookies is based on:

  • Necessary technical cookies: legitimate interest of the Controller (art. 6.1.f GDPR) and contractual obligation, do not require consent
  • Analytics and marketing cookies: express consent of the user (art. 6.1.a GDPR), collected through the banner

Consent is freely given, specific, informed and revocable at any time without prejudice.


6. DATA RETENTION

Data collected through cookies is retained for the period indicated in the table of each category, unless consent is withdrawn earlier.

Consent management logs (proof of consent) are retained for 5 years as required by art. 7 GDPR to demonstrate proof of consent.


7. EXTRA-EU DATA TRANSFER

Some providers (Google, Meta) transfer data to the United States. Such transfers take place on the basis of:

  • Standard Contractual Clauses (SCC) approved by the European Commission
  • EU-USA Data Privacy Framework (adequacy approved in 2023)

All transfers are documented in the Controller's Record of Processing Activities.


8. USER RIGHTS

In relation to data processed through cookies, the user has the right to:

  • Access (art. 15 GDPR): to know which cookies are active
  • Objection (art. 21 GDPR): to object to processing based on legitimate interest
  • Withdrawal of consent (art. 7 GDPR): at any time through the cookie settings
  • Erasure (art. 17 GDPR): to request the erasure of the collected data
  • Complaint to the data protection authority of your country of residence, or to the Italian Garante as lead authority (garanteprivacy.it)

To exercise these rights, contact: privacy@geotapp.com


9. DATA CONTROLLER

GeoTapp di Michele Angelo Petraroli VAT: IT04183990987 Email: privacy@geotapp.com


10. UPDATES

This policy may be updated in the event of regulatory or technical changes. The date of the last revision is indicated at the top of the document.

Substantial changes are communicated through an information banner upon first access following the update.


Prevailing language

This translation is provided for your convenience. The Italian-language version of this document is the legally binding one; in case of any discrepancy, the Italian text prevails.