Cookie Policy
This Cookie Policy explains how Cyze AS (Norway, Org. No. 932 904 500) uses cookies and similar technologies on the Vioro marketing website (vioro.io) and what choices you have.
The short version: We set analytics cookies on the marketing site (consent required), and strictly necessary session cookies in the application (no consent required).
What Are Cookies?
Cookies are small text files stored on your device by your browser when you visit a website. They allow the site to remember information about your visit. Other tracking technologies include browser local storage, session storage, and pixel tags.
Cookies We Use
Strictly Necessary (No Consent Required)
These are set by your browser or our CDN and are essential for the website to function. They do not track you across sites.
| Name | Provider | Purpose | Duration |
|---|---|---|---|
cc_cookie | vioro.io (vanilla-cookieconsent) | Stores your cookie consent preferences | 6 months |
Analytics Cookies (Consent Required)
These are only set after you have clicked “Accept” in the cookie consent banner. They help us understand how visitors use the site so we can improve it.
| Name | Provider | Purpose | Duration |
|---|---|---|---|
_ga | Google Analytics (Google Ireland Ltd.) | Distinguishes unique users | 2 years |
_ga_* | Google Analytics | Maintains session state | 2 years |
Google Analytics data is processed under an Art. 28 GDPR DPA between Cyze AS and Google Ireland Ltd., with Standard Contractual Clauses (SCCs) for any transfer to Google’s US parent entity. IP addresses are anonymised before processing.
Strictly Necessary Cookies and Storage
We use identity and access management infrastructure (Rauthy) that requires certain cookies and local storage items to function securely. These items are strictly necessary for authentication, preventing fraud, and maintaining your session. You cannot opt out of these items, as the service cannot operate without them. No consent is required.
| Name / Prefix | Type | Duration | Purpose |
|---|---|---|---|
__Host-* (Various) | Cookie | Session / Persistent | Authentication & Security: These encrypted cookies manage your login session, bind secure password resets to your browser, and allow for passwordless (Passkey/MFA) device recognition. The __Host- prefix ensures they cannot be read or manipulated by other domains. |
| UI / Locale Preferences | Cookie | Persistent | Functional: Remembers your language and localization preferences for the login interface. |
| XSRF Tokens | Local Storage | Session | Security: Used in tandem with secure cookies to protect your account from Cross-Site Request Forgery (CSRF) attacks. |
Frontend performance and error telemetry is collected via OpenTelemetry and transmitted to Vioro’s own backend infrastructure. This data is purely technical in nature (page load times, JS errors, network durations) and is not shared with any third party, used for profiling, or linked to your identity.
Your Choices
- Accept or decline analytics cookies via the consent banner when you first visit vioro.io.
- Change your preferences at any time by clicking the cookie icon or re-opening the banner here.
- Opt out of Google Analytics across all sites using the Google Analytics Opt-out Browser Add-on.
- Block all cookies in your browser settings — note that this may affect website functionality.
Withdrawing consent does not affect the lawfulness of any processing carried out before withdrawal.
No Advertising or Third-Party Tracking
We do not use advertising cookies, social media tracking pixels, session-recording tools (e.g. Hotjar), or any third-party marketing technologies. The only third-party cookies on vioro.io are Google Analytics, and only with your consent.
Changes to This Policy
If we add new cookies or tracking technologies, we will update this page and — where required — obtain fresh consent. Material changes will be announced via the consent banner and email.
Last updated: 2026-04-06
Previous versions: vioro.io/legal/archive/