1. What are Cookies?
Cookies are small text files placed on your device when you visit a website. They allow the site to recognise your device, remember your preferences, and collect usage information. Similar technologies include localStorage, sessionStorage, and browser fingerprinting — we refer to all of these collectively as "cookies" in this policy.
Under the UK Privacy and Electronic Communications Regulations (PECR) and the EU ePrivacy Directive, we are required to obtain your consent before placing non-essential cookies.
2. Types of Cookies We Use
We categorise our cookies as follows:
Required for the platform to function. Cannot be disabled.
No consent required (PECR Reg. 6(4) — necessary for the service)
Remember your preferences such as language, theme, or session state beyond what is strictly required.
Consent required — enabled by default, can be opted out
Aggregate data on how users navigate the platform, used to improve user experience.
Consent required — disabled by default
3. Strictly Necessary Cookies
These cookies are required for nodebreach.com to operate. They cannot be disabled in our systems.
| Cookie name | Purpose | Duration |
|---|---|---|
| nodebreach_session | Maintains your authenticated session on the platform | Session (browser close) |
| XSRF-TOKEN | CSRF protection token — prevents cross-site request forgery attacks | Session |
| nodebreach_2fa_remember | Remembers trusted devices for two-factor authentication | 30 days |
| cookie_consent | Stores your cookie consent choice | 12 months |
4. Functional Cookies
These cookies enhance your experience by remembering your preferences. They are enabled by default but can be opted out.
| Cookie name | Purpose | Duration |
|---|---|---|
| nb_locale | Stores your language/locale preference | 12 months |
| nb_terminal_settings | Saves in-browser terminal preferences (font size, theme) | 12 months |
| nb_dashboard_layout | Remembers dashboard widget arrangement | 6 months |
5. Analytics
Where enabled with your consent, we use privacy-respecting analytics (no cross-site tracking, no advertising profiles, data stored within the EU/UK) to understand aggregate platform usage. Individual users are not identified.
We do not use Google Analytics or any advertising-based analytics service. We do not share analytics data with third parties for advertising.
6. Third-Party Cookies
We do not use third-party advertising cookies. Where third-party services are integrated, they may set their own cookies:
7. Managing Your Cookie Preferences
Cookie banner: When you first visit the site, you will be presented with a consent banner where you can accept or decline non-essential cookies. You can update your preferences at any time via the cookie settings link in the footer.
Browser settings: All major browsers allow you to block or delete cookies. Note that blocking strictly necessary cookies will prevent you from using authenticated areas of the platform.
Do Not Track: We respect the DNT browser signal. Where DNT is enabled, we will not activate optional analytics cookies even if you have previously consented.
8. Policy Updates
We may update this Cookie Policy when we introduce new cookies or change how we use existing ones. The "Last updated" date will reflect any changes. Where changes are material, we will notify you via the cookie banner or email.
Questions? Contact us at privacy@nodebreach.com.