Organmobility

Cookies

Cookie Policy — transparent storage on your device

This document explains how Organmobility uses cookies and similar technologies when you visit https://organmobility.ddd. It should be read together with the Privacy Policy, which clarifies how personal data is processed more broadly, and with the cookie banner that captures granular consent when the law requires it.

“Cookies” here includes HTTP cookies, HTML local storage, session storage, pixels paired with cookies, and software development kits that write identifiers for measurement. Necessary technologies keep security and choice records intact; optional stacks never load before you opt in through the preference centre.

Why this page exists

Electronic communications privacy rules in the EU expect clear information before non-essential storage or access occurs on terminal equipment. We separate essential operations (security, load balancing signals, remembering that you already answered the banner) from optional measurement that helps us understand whether an article is useful over time. That separation protects reader trust while still allowing the studio to improve editorial planning.

How technologies function together

A first-party cookie is set by our domain and is usually limited to our hosting configuration. A third-party cookie is set when embedded assets from analytics or advertising networks execute scripts; those vendors act as joint or separate controllers depending on deployment. Local storage can hold larger consent strings than a tiny cookie and may persist until you delete browser data manually.

No hidden bypass

We do not attempt to circumvent browser “block third-party cookies” settings by fingerprinting hardware for advertising. If a future feature requires richer telemetry, we will disclose it here and in the banner before activation.

Strictly necessary category

These items are exempt from consent in many jurisdictions because the site cannot fulfil basic functions otherwise. Examples include session tokens that keep you logged into a portal if we launch one, anti-forgery cookies on forms, load-balancer affinity tokens, and the storage entry that records which version of the consent modal you saw so we do not nag on every click.

Turning them off through aggressive browser extensions may break checkout, prevent PDF downloads from unlocking, or cause repeated security challenges. We recommend only using global blocking tools if you accept those trade-offs.

Functional preference cookies

When we offer optional conveniences—remembering that you prefer the high-contrast stylesheet, storing a training volume unit, or skipping introductory modals—the storage mechanism sits in this category. It still requires consent where regulators classify it outside “strictly necessary.” You can withdraw consent without losing access to legally required notices.

Analytics and audience insight

If enabled, analytics cookies aggregate how many visitors read a page, approximate scroll depth, and whether traffic originated from an external referrer. Reports are examined at segment level; we do not sell per-person browsing histories. IP addresses may be truncated or substituted by region identifiers depending on vendor configuration.

Heatmap tools, should we adopt them later, would also fall under this category unless they capture typed text fields—something we disable by default. Session replay that masks inputs remains optional and experimental.

Marketing measurement

Marketing cookies help evaluate whether a newsletter signup or paid campaign produced engaged readers. They may link ad clicks with on-site events such as reaching the contact thank-you page. They are not used to diagnose health states or to infer medical conditions from workout vocabulary.

Where we participate in large advertising networks, we honour network-level opt-outs when mandated, but your in-banner refusal remains the primary control on this domain.

Typical storage lifetimes

Family Indicative maximum lifetime
Session security Browser session or up to 24 hours.
Consent proof Twelve months unless regulations require refresh sooner.
Analytics client ID Up to twenty-four months rolling from last event if vendor defaults apply.
Campaign attribution Between ninety days and two years depending on partner contract.

Specific names, domains, and precise expirations appear in browser dev tools or in exportable consent records we can supply upon request when legally required.

Third-party modules

Font delivery, map embeds, or video players may set their own cookies when you interact with them. We minimise such embeds on policy pages specifically to keep your review experience quiet. Where an embed is essential, we favour privacy-enhanced modes that delay loading until you press play or expand the frame.

Browser and device controls

Every major browser ships with settings to delete cookies on exit, block third parties, or prompt per site. Mobile operating systems include parallel controls for in-app web views. Because those tools are global, they might interfere with financial or government portals; consider using profiles or containers for sensitive browsing separately from casual reading.

If you withdraw consent through our banner after previously accepting analytics, we instruct supported tags to stop firing on subsequent page loads; some vendors require a short asynchronous call to propagate the withdrawal.

Changes and version tracking

When we add a vendor or recategorise a script, we update this Policy and may reset consent banners for affected visitors so the new mapping is explicit. Minor clarifications—grammar, explanatory examples—might not trigger a new prompt if no technical behaviour changes.