Cookie Policy
Effective date: April 15, 2026
This Cookie Policy explains how TrustFront uses cookies and similar storage technologies on our website (trustfront.io) and on the trust centers we host on your behalf.
What we use
We use only first-party, strictly necessary cookies. We do not use advertising cookies, cross-site tracking, or third-party analytics scripts on our pages.
| Name | Purpose | Type | Lifetime |
|---|---|---|---|
session_token | Keep you signed in to your TrustFront account. | Strictly necessary | 30 days |
oauth_state | Prevent CSRF during Google sign-in. | Strictly necessary | 5 minutes |
cookie_consent | Remember that you dismissed the cookie banner. | Strictly necessary | 1 year |
Why no consent banner is required for these cookies
Strictly necessary cookies are exempt from prior consent under EU ePrivacy rules and equivalent laws because they are essential to providing the service you requested (e.g., signing in to your account).
We still display a brief notice at the bottom of the page so you are informed about the cookies we use. You can dismiss it; this stores the cookie_consent cookie so we do not show it again.
Local storage / other technologies
We do not currently use localStorage, sessionStorage, or fingerprinting techniques. The Service relies entirely on the cookies listed above and standard server-side sessions.
Third-party content (logos)
On public trust centers, subprocessor logos may be loaded from www.google.com/s2/favicons(Google's public favicon service). When your browser loads these images, Google may receive your IP address. No personal data is intentionally shared by us.
Managing cookies
You can clear or block cookies using your browser's settings. Note that blocking the session_token cookie will prevent you from signing in.
Changes
If we ever introduce non-essential cookies (for example, optional analytics or chat widgets), we will display a true consent banner and only set those cookies after you opt in.
Contact
Questions? Email hello@trustfront.io.