Cookie policy

Last updated: 2026-05-15

This policy describes the use of cookies and other browser-storage technologies on this website. It complements the Privacy policy, which should be consulted for the personal data collected, the processors involved, and the user's rights under the GDPR.

1. What cookies do we use?

By default, none. The site does not set first-party or third-party cookies in its current version. Analytics is performed through Umami, which operates without cookies. To remember your theme preference and, where applicable, your consent choice, we use localStorage (first-party browser local storage) — a different technology from cookies that is not transmitted on every HTTP request.

2. localStorage entries

The site writes the following keys to localStorage:

• ithildin-theme — theme preference (light or dark). Technically necessary to prevent the theme flash on first paint.
• ithildin-consent — consent banner state (accepted or rejected). Written only when you interact with the banner.

Your language is not stored in localStorage: it is determined by the URL path (/ for Spanish, /en/ for English). Switching languages simply takes you to the equivalent URL on the other locale.

3. Cookie-free analytics (Umami)

We use Umami Cloud to measure traffic on an aggregate basis. Umami sets no cookies, applies no browser fingerprinting, and respects the Do-Not-Track header. The metrics recorded are anonymous (page views, referrers, and country at the aggregate level); no visitor is identified and no cross-site session is reconstructed.

The retention period of the aggregate records is documented in the Data Processing Agreement (DPA) signed with Umami Cloud and detailed in the "Data retention" section of the Privacy policy.

4. Extended tracking (opt-in)

Umami supports an extended tracking mode that would use session cookies to reconstruct a visitor's path across pages. In v2.0, this mode is not enabled; the site has incorporated the consent primitive (cookie banner and consent gate in the document <head>) ahead of time so that any future activation is additive and opt-in, not opt-out.

If a future release enables extended tracking, the banner will be re-presented to existing visitors and only those with explicit consent (accepted) will receive the extended beacon. The cookie-free beacon will continue to fire for every visit, with or without consent, as it is technically necessary for baseline analytics and is aggregate-anonymous in nature.

5. Third parties

The only third parties involved in the site's data flow are server-to-server; none sets cookies in your browser:

• Resend — transactional email delivery (contact form). See the Privacy policy for details.
• Airtable — lead persistence for the contact form, when configured in the v1.0 phase. See the Privacy policy for details.
• Umami Cloud — cookie-free analytics, described in §3.

6. Your rights

The rights of access, rectification, erasure, objection, restriction of processing, and portability over your personal data are described in full in the Privacy policy, including the procedure to exercise them and the option to lodge a complaint with the Spanish Data Protection Agency (AEPD).

7. How to change your choice

To revoke or reset your decision on the cookie banner, delete the ithildin-consent entry from localStorage:

1. Open your browser's developer tools (F12).
2. Go to the Application tab (Chromium / Edge) or Storage (Firefox).
3. Select Local Storage and the site's URL.
4. Right-click the ithildin-consent entry and choose Delete.
5. Reload the page: the banner will appear again.

A future release will include a "Manage preferences" screen that will avoid this manual step.