COOKIES POLICY

1. WHAT ARE COOKIES?

A cookie is a small text file that is downloaded to your computer or device when you access certain websites. Cookies allow a website to store and retrieve information about the browsing habits of a user or their device and, depending on the information they contain, can be used to recognize the user across sessions.

2. WHAT TYPES OF COOKIES DOES TRUSTKEY USE?

TrustKey ONLY uses technical, functional, and security cookies — both first-party and third-party — that are strictly necessary for the proper functioning of the service and the payment gateway. We do not use advertising cookies, tracking cookies, or cookies used for profiling or behavioural analysis.

Under Article 22.2 of the Spanish Law on Information Society Services and Electronic Commerce (LSSI-CE) and the guidance of the Spanish Data Protection Agency (AEPD), cookies that are strictly necessary for the provision of a service explicitly requested by the user are exempt from the requirement for prior consent. For the same reason, and in accordance with the UK Information Commissioner's Office (ICO) guidance on cookies, TrustKey does not display a cookie consent banner, as all cookies we use fall within this technical exemption.

Specifically, we use the following cookies:

• Session and Authentication Cookies (First-party): Strictly necessary to keep your session securely open after login, identify you as a registered user, and grant you access to your encrypted area (e.g., session identifiers and authentication tokens). These cookies expire at the end of your browser session or after a defined inactivity period.
• Security Cookies (First-party): Used exclusively to prevent cyberattacks such as Cross-Site Request Forgery (CSRF), ensuring the integrity of requests sent from your browser to our servers and protecting your data.
• Payment Gateway Cookies (Third-party — Stripe): Stripe sets strictly necessary cookies to process payments securely, prevent payment fraud, and comply with current financial regulations. These cookies are essential for completing a transaction and are governed by Stripe's own Cookie Policy, available on their website.
• Security & Bot Protection (Third-party — Cloudflare Turnstile): We use Cloudflare Turnstile to verify that interactions with our registration and login forms are performed by humans and not automated bots. Turnstile uses session-based technical checks for this purpose without using traditional cross-site tracking cookies or harvesting personal data for advertising. Cloudflare Turnstile is specifically designed as a privacy-preserving alternative to traditional CAPTCHAs. Because these checks are essential to the security of our platform and requested by the user as part of accessing the service, they do not require prior consent.

3. COOKIES WE DO NOT USE

TrustKey does not use any of the following types of cookies or tracking technologies:

• Advertising or targeting cookies (e.g., Google Ads, Meta Pixel, or similar).
• Analytical or performance cookies that track user behaviour across sessions for profiling (e.g., Google Analytics).
• Social media tracking cookies from any third-party platform.
• Any cookie or tracking technology not listed in Section 2 above.

4. REVOCATION AND DELETION OF COOKIES

Because all cookies used by TrustKey are strictly necessary for the operation of the service, disabling them will prevent you from logging in or using TrustKey. There is no functional alternative to these cookies for the provision of the service.

However, if you wish to delete existing cookies from your browser, you can do so at any time by configuring your browser settings:

• Firefox: Options > Privacy & Security > Cookies and Site Data.
• Chrome: Settings > Privacy and security > Clear browsing data.
• Safari: Preferences > Privacy > Manage Website Data.
• Edge: Settings > Privacy, search, and services > Clear browsing data.

For more information on managing cookies, you can visit the aboutcookies.org website. For any questions regarding our use of cookies, please contact us at [email protected].