Cookie Policy
Last updated: April 4, 2026
1. Introduction
This Cookie Policy explains how Prevesto ("we", "our", or "us"), uses cookies and similar tracking technologies when you visit our website at prevesto.com and use our budgeting platform (the "Service").
This policy should be read alongside our Privacy Policy, which provides further details on how we process your personal data.
We comply with the EU ePrivacy Directive (2002/58/EC) as implemented in Dutch law (Telecommunicatiewet) and the GDPR when using cookies and similar technologies.
2. What Are Cookies
Cookies are small text files that are placed on your device (computer, tablet, or smartphone) when you visit a website. They are widely used to make websites function properly, enhance user experience, and provide information to website operators.
Cookies can be classified by their lifespan:
- Session cookies: temporary cookies that are deleted when you close your browser. They are used to maintain your session while you navigate the Service.
- Persistent cookies: cookies that remain on your device for a set period or until you manually delete them. They are used to remember your preferences across visits.
Cookies can also be classified by origin:
- First-party cookies: set by Prevesto (the website you are visiting).
- Third-party cookies: set by external services embedded in our pages (such as payment processors).
3. Cookie Consent
In accordance with EU regulations, we handle cookie consent as follows:
- Essential cookies: these cookies are strictly necessary for the Service to function. They do not require your consent under the ePrivacy Directive and cannot be disabled without breaking core functionality.
- Non-essential cookies: analytics and other non-essential cookies are only placed on your device after you have given your explicit consent through our cookie consent banner.
- Consent management: when you first visit the Service, you will see a cookie consent banner that allows you to accept or reject non-essential cookies. You can change your preferences at any time (see Section 7).
- Consent records: we store a record of your cookie consent choice, including the date, time, and categories consented to, for a period of 3 years as proof of consent.
4. Essential Cookies (Strictly Necessary)
These cookies are required for the Service to operate correctly. Without them, features such as authentication and security protections would not function. They are set automatically and cannot be rejected.
| Cookie Name | Purpose | Type | Duration |
|---|---|---|---|
| prevesto_session | Maintains your authenticated session. Contains an encrypted session identifier that links your browser to your account. Does not contain personal data directly. | First-party, session | 30 days or until logout |
| csrf_token | Protects against Cross-Site Request Forgery (CSRF) attacks. A random token that verifies form submissions originate from the Service. | First-party, session | Session (cleared on browser close) |
| preferences | Stores your display preferences, including language selection (from 7 supported EU languages), currency format, date format, and dark/light mode preference. | First-party, persistent | 1 year |
| cookie_consent | Records your cookie consent preferences (which cookie categories you have accepted or rejected). Required to respect your choices on subsequent visits. | First-party, persistent | 3 years |
5. Analytics Cookies (Requires Consent)
Analytics cookies help us understand how visitors use the Service, which pages are most popular, and how users navigate between features. This data is used to improve the Service. These cookies are only set if you consent to them.
We use privacy-focused analytics that prioritize data minimization:
| Cookie Name | Purpose | Type | Duration |
|---|---|---|---|
| _prevesto_analytics | Tracks anonymous usage patterns including pages visited, features used, and session duration. Does not contain personally identifiable information. IP addresses are anonymized. | First-party, persistent | 26 months |
| _prevesto_analytics_session | Identifies a single browsing session for analytics purposes. Used to calculate session duration and pages per session. | First-party, session | 30 minutes of inactivity |
Analytics data is processed and stored on servers in the Netherlands and is not shared with third parties. We do not use Google Analytics or other third-party analytics platforms that transfer data outside the EEA.
6. Third-Party Cookies
Certain third-party services embedded in the Service may set their own cookies. We limit third-party cookies to what is strictly necessary.
6.1 Stripe (Payment Processing)
When you access the payment or subscription management pages, Stripe may set cookies for the following purposes:
| Cookie Name | Purpose | Type | Duration |
|---|---|---|---|
| __stripe_mid | Fraud prevention. Used by Stripe to identify the device and prevent fraudulent payment transactions. | Third-party, persistent | 1 year |
| __stripe_sid | Fraud prevention. Used by Stripe to identify the browsing session for fraud detection during payment. | Third-party, session | 30 minutes |
Stripe cookies are considered essential for the secure processing of payments and are set only on payment-related pages. Stripe processes these cookies as an independent data controller. For more information, see Stripe's Privacy Policy and Stripe's Cookie Policy.
6.2 No Advertising Cookies
Prevesto does not use any advertising, remarketing, or social media tracking cookies. We do not serve ads, and we do not allow third-party advertisers to place cookies on the Service.
7. How to Manage Cookies
7.1 Through Our Cookie Settings
You can manage your cookie preferences at any time by:
- Clicking the "Cookie Settings" link in the footer of any page on the Service.
- This will re-display the cookie consent banner where you can update your choices.
- Changes take effect immediately. If you withdraw consent for analytics cookies, the corresponding cookies will be deleted.
7.2 Through Your Browser
Most web browsers allow you to control cookies through their settings. You can typically:
- View all cookies stored on your device.
- Delete individual cookies or all cookies.
- Block cookies from specific websites or all websites.
- Set your browser to notify you when a cookie is being set.
Instructions for managing cookies in common browsers:
- Chrome: Settings > Privacy and Security > Cookies and other site data
- Firefox: Settings > Privacy & Security > Cookies and Site Data
- Safari: Preferences > Privacy > Manage Website Data
- Edge: Settings > Cookies and site permissions > Manage and delete cookies
7.3 Impact of Disabling Cookies
Please be aware that disabling certain cookies may impact your experience:
| Cookie Category | Impact of Disabling |
|---|---|
| Essential cookies | You will not be able to log in, and the Service will not function. CSRF protection will be disabled, leaving your account vulnerable. |
| Preference cookies | Your language and display preferences will not be remembered between visits. You will need to set them each time. |
| Analytics cookies | No impact on functionality. We will not be able to collect anonymous usage data to improve the Service. |
| Stripe cookies | Payment processing may fail or be flagged as suspicious by Stripe's fraud detection system. |
8. Similar Technologies
In addition to cookies, we may use the following similar technologies:
- Local storage: we use browser local storage to cache application data for performance and to support offline functionality. Local storage data remains on your device until you clear it through your browser settings.
- Session storage: similar to local storage but cleared automatically when you close the browser tab. Used for temporary application state.
We do not use web beacons (tracking pixels), fingerprinting, or any other covert tracking technologies.
9. Cookie Retention Summary
| Cookie | Category | Retention | Set By |
|---|---|---|---|
| prevesto_session | Essential | 30 days / logout | Prevesto |
| csrf_token | Essential | Session | Prevesto |
| preferences | Essential | 1 year | Prevesto |
| cookie_consent | Essential | 3 years | Prevesto |
| _prevesto_analytics | Analytics | 26 months | Prevesto |
| _prevesto_analytics_session | Analytics | 30 min inactivity | Prevesto |
| __stripe_mid | Third-party | 1 year | Stripe |
| __stripe_sid | Third-party | 30 minutes | Stripe |
10. Changes to This Cookie Policy
We may update this Cookie Policy from time to time to reflect changes in the cookies we use or for legal, operational, or regulatory reasons. When we make changes:
- We will update the "Last updated" date at the top of this page.
- If we introduce new categories of cookies, we will request your consent again through the cookie consent banner.
- Material changes will be communicated through the Service or via email.
11. Contact Us
If you have questions about our use of cookies or this Cookie Policy, please contact us:
Email: privacy@prevesto.com
Data Protection Officer: dpo@prevesto.com
Related: Privacy Policy · Terms of Service