Cookie Policy
Version 1.0 - March 2026
COOKIE POLICY
GeoTapp, geotapp.com
Version 1.0 - March 2026
1. WHAT COOKIES ARE
Cookies are small text files that websites save on the user's device (computer, smartphone, tablet) during browsing. They allow the site to remember the user's preferences, improve the browsing experience and collect statistical information about usage.
2. TYPES OF COOKIES USED
2.1 Necessary Technical Cookies
These cookies are essential for the proper functioning of the site. Without them, some features would not be available. They do not require consent pursuant to art. 122, paragraph 1, of the Italian Privacy Code.
| Cookie Name | Purpose | Duration | Type |
|---|---|---|---|
geotapp_locale | Stores the user's language preference | 1 year | First-party |
__cf_bm | Cloudflare bot protection | 30 minutes | Third-party (Cloudflare) |
cf_clearance | Cloudflare security verification | 1 year | Third-party (Cloudflare) |
2.2 Session and Authentication Cookies
Used to manage access to the reserved area of the GeoTapp platform.
| Cookie Name | Purpose | Duration | Type |
|---|---|---|---|
geotapp_session | Maintains the authenticated session | Session | First-party |
geotapp_auth | JWT authentication token | 30 days | First-party |
2.3 Analytics Cookies (with consent)
Used to collect aggregate information about site usage, in anonymized or pseudonymized form, in order to improve content and navigation.
| Cookie Name | Provider | Purpose | Duration |
|---|---|---|---|
_ga | Google Analytics 4 | Anonymous user identifier | 2 years |
_ga_* | Google Analytics 4 | Session state | 2 years |
Privacy-first configuration: GeoTapp uses Google Analytics 4 with anonymized IP, without sharing data with Google for advertising purposes, and with signals functionality disabled.
2.4 Marketing Cookies (with consent)
Used to show relevant advertising content to users who have already visited the site.
| Cookie Name | Provider | Purpose | Duration |
|---|---|---|---|
_fbp | Meta (Facebook) | Conversion tracking pixel | 3 months |
_gcl_au | Google Ads | Conversion tracking | 3 months |
3. THIRD-PARTY COOKIES
The geotapp.com site may embed third-party content that installs its own cookies. The main providers are:
Cloudflare (CDN and security)
- Purpose: protection from attacks, performance optimization, security
- Privacy Policy: cloudflare.com/privacypolicy
Google (Analytics and Maps)
- Purpose: access statistics, map on the contacts page
- Privacy Policy: policies.google.com/privacy
- Opt-out: tools.google.com/dlpage/gaoptout
Stripe (payments)
- Purpose: secure payment processing
- Cookies only on checkout pages
- Privacy Policy: stripe.com/privacy
4. COOKIE MANAGEMENT
4.1 Cookie Banner
On first access to the site, a banner is shown that allows the user to:
- Accept all cookies (technical + analytics + marketing)
- Accept only necessary technical cookies
- Customize preferences by category
4.2 Changing Preferences
Preferences can be changed at any time by clicking the "Manage Cookies" link in the site footer.
4.3 Management via Browser
You can manage, block or delete cookies directly from your browser settings:
- Chrome: Settings โ Privacy and security โ Cookies
- Firefox: Preferences โ Privacy and security โ Cookies
- Safari: Preferences โ Privacy โ Cookies
- Edge: Settings โ Cookies and site permissions
Warning: blocking necessary technical cookies may impair the functioning of the site.
5. LEGAL BASIS
The processing of data through cookies is based on:
- Necessary technical cookies: legitimate interest of the Controller (art. 6.1.f GDPR) and contractual obligation, do not require consent
- Analytics and marketing cookies: express consent of the user (art. 6.1.a GDPR), collected through the banner
Consent is freely given, specific, informed and revocable at any time without prejudice.
6. DATA RETENTION
Data collected through cookies is retained for the period indicated in the table of each category, unless consent is withdrawn earlier.
Consent management logs (proof of consent) are retained for 5 years as required by art. 7 GDPR to demonstrate proof of consent.
7. EXTRA-EU DATA TRANSFER
Some providers (Google, Meta) transfer data to the United States. Such transfers take place on the basis of:
- Standard Contractual Clauses (SCC) approved by the European Commission
- EU-USA Data Privacy Framework (adequacy approved in 2023)
All transfers are documented in the Controller's Record of Processing Activities.
8. USER RIGHTS
In relation to data processed through cookies, the user has the right to:
- Access (art. 15 GDPR): to know which cookies are active
- Objection (art. 21 GDPR): to object to processing based on legitimate interest
- Withdrawal of consent (art. 7 GDPR): at any time through the cookie settings
- Erasure (art. 17 GDPR): to request the erasure of the collected data
- Complaint to the data protection authority of your country of residence, or to the Italian Garante as lead authority (garanteprivacy.it)
To exercise these rights, contact: privacy@geotapp.com
9. DATA CONTROLLER
GeoTapp di Michele Angelo Petraroli VAT: IT04183990987 Email: privacy@geotapp.com
10. UPDATES
This policy may be updated in the event of regulatory or technical changes. The date of the last revision is indicated at the top of the document.
Substantial changes are communicated through an information banner upon first access following the update.
Prevailing language
This translation is provided for your convenience. The Italian-language version of this document is the legally binding one; in case of any discrepancy, the Italian text prevails.