Legal

Cookie Policy

Which cookies and similar technologies are used on the Gebbora marketing website at gebbora.com, and how you can control them. This policy covers the marketing website only — for cookies and session tokens used by the Gebbora Greenhouse Simulator product, see the Gebbora Greenhouse Simulator Privacy Policy at sim.gebbora.app/legal.

Last updated: 2026-04-16

1. What cookies are

A "cookie" is a small text file that a website can place on the device you use to browse. Cookies are commonly used to remember preferences between visits, to keep you signed in, or to measure how a website is used. Similar technologies — local storage, session storage, pixels, and browser fingerprinting — perform comparable roles without being, strictly, cookies. References to "cookies" in this policy include those similar technologies where the context allows.

2. Cookies set by the Gebbora marketing website

The Gebbora marketing website does not set any first-party cookies. No analytics cookies, no advertising cookies, and no functional cookies for user preferences are set when you browse the Site. The analytics product used by the Site (see Section 4) is cookieless and does not contribute any cookie to your browser.

Notes on how we avoid setting cookies today:

Analytics uses a cookieless Cloudflare Web Analytics beacon — same-day deduplication is performed by a non-reversible hash rather than by storing a persistent identifier in your browser. See Section 4 and the Privacy Policy §3.3 for details.
Language preference is stored in the URL path only — for example, French content is served from /fr/..., Arabic from /ar/.... No cookie is set to remember your language choice; you select it again by clicking the language switcher or by visiting a localised URL.
Contact-form submissions are sent server-side via an API route and do not rely on cookies to function.

If cookie-setting functionality is introduced in future, this policy and the Privacy Policy will be updated in advance of the change, and the specific cookies — name, purpose, expiry, and type (session or persistent) — will be listed here before they are activated.

3. Cookies set by embedded third parties

The Gebbora marketing website does not currently embed third-party iframes, widgets, video players, or social-media embeds that would set their own cookies. If such embeds are added in future, the cookies they set will be listed here.

4. Cookies set by hosting infrastructure

The Site is hosted on Cloudflare Pages. Cloudflare may set operational cookies on its own infrastructure for network security and bot-mitigation purposes — for example, the __cf_bm cookie used by Cloudflare Bot Management. Where set, such cookies are strictly necessary for the security and reliable delivery of the Site and are not used for tracking or advertising. Cloudflare’s own cookie and privacy notices describe these in detail and are available at cloudflare.com.

The Site also uses Cloudflare Web Analytics for aggregated page-view measurement. Cloudflare Web Analytics is cookieless — it does not place a cookie on your browser, does not assign a persistent identifier, and does not track you across sites. Same-day deduplication is performed by a non-reversible hash of the request IP, user-agent, and a daily rotating key; the hash is used only for aggregation and is not stored beyond that window. See the Privacy Policy §3.3 for the full disclosure.

In addition, the Site uses PostHog as a product-analytics tool, configured without cookies and without persistent identifiers. PostHog requests are routed via a first-party reverse proxy at posthog.gebbora.app; the SDK keeps its session identifier in memory only and writes nothing to your browser’s cookies or localStorage. Session replay is disabled. No __ph_* cookies are set. See the Privacy Policy §3.3 for the full disclosure.

5. How to control cookies

Because the Site does not set first-party cookies and the analytics product it uses is cookieless, no in-site consent banner is shown. If you wish to block operational cookies set by Cloudflare or any future cookie-setting functionality, you can:

Configure your browser to block cookies by category (session-only, third-party, all).
Use a browser-level privacy extension.
Use a Do Not Track (DNT) or Global Privacy Control (GPC) signal — see Section 6.

Browser documentation for cookie controls:

Chrome: support.google.com/chrome/answer/95647
Firefox: support.mozilla.org/kb/enhanced-tracking-protection-firefox-desktop
Safari: support.apple.com/guide/safari/manage-cookies-sfri11471
Edge: support.microsoft.com/help/4468242

6. Do Not Track and Global Privacy Control

The Site does not set any first-party analytics or advertising cookies, and the cookieless analytics beacon described in Section 4 does not build a browsable profile of any individual visitor. Do Not Track (DNT) and Global Privacy Control (GPC) browser signals are honoured where Cloudflare Web Analytics technically supports them. Because no personal data is retained long-term and no cross-site profile is built, DNT/GPC do not unlock an additional opt-out beyond what is already the default posture — there is no profile to opt out of.

7. Changes to this policy

We may update this Cookie Policy from time to time. The "Last updated" date at the top reflects the most recent change. Material changes — for example, a change of analytics provider, the introduction of cookie-setting functionality, or the introduction of a consent banner — will be announced on the Site’s homepage for at least 14 days before taking effect.

8. Contact

Questions about this Cookie Policy: privacy@gebbora.tech.

9. Effective date

This Cookie Policy is effective as of 2026-04-16.