Cookie and Local Storage Policy
Effective Date: 25 April 2026 Version: 1.1 Last Updated: 25 April 2026
1. What Are Cookies and Similar Technologies
Cookies are small data files placed on your device when you visit a website. In addition to traditional HTTP cookies, modern web applications use other client-side storage mechanisms that serve similar purposes. These include:
- IndexedDB — a browser database that allows applications to store structured data locally on your device.
- localStorage — a key-value storage mechanism that persists data across browser sessions.
- sessionStorage — similar to localStorage but limited to a single browser session.
Under the European ePrivacy Directive (2002/58/EC, as amended by 2009/136/EC), all of these technologies are treated equivalently because they involve storing and accessing information on your terminal equipment. Throughout this policy, when we refer to "cookies," we include all of these storage technologies unless stated otherwise.
2. How We Use Cookies and Local Storage
Atteste is a single-page web application built with Flutter and hosted on Firebase Hosting. We do not use traditional HTTP cookies for tracking or advertising. Our use of client-side storage falls into the following categories.
2.1 Strictly Necessary Storage
These storage mechanisms are essential for the application to function. They cannot be disabled without breaking core functionality. Under Article 5(3) of the ePrivacy Directive, strictly necessary storage does not require consent.
| Technology | Purpose | Duration |
|---|---|---|
| Firebase Auth (IndexedDB) | Stores your authentication session token so you remain signed in between visits. Without this, you would need to log in every time you open the application. | Persists until you sign out or the token expires (typically 1 hour, with automatic refresh). |
| Firestore Offline Cache (IndexedDB) | Caches your collection data locally so the application loads quickly and can function during temporary network interruptions. | Persists until you clear browser data or sign out. Cache size is managed automatically by Firebase. |
2.2 Functional Storage
These storage mechanisms remember your preferences to provide a more personalised experience. They do not track you across websites or share data with third parties.
| Technology | Purpose | Duration |
|---|---|---|
| Theme Preference (localStorage) | Remembers whether you selected dark mode or light mode so your visual preference is applied immediately on each visit. | Persists until you change your preference or clear browser data. |
Your currency preference and country setting are stored in your user profile on our servers (Firestore), not in local storage. These are covered by our Privacy Policy rather than this Cookie Policy.
2.3 Analytics Storage
Atteste does not currently use any analytics cookies or tracking technologies. We do not use Google Analytics, Facebook Pixel, or any third-party analytics service.
If we introduce analytics in the future (such as Firebase Analytics), we will update this policy before activation and request your consent where required by law. Analytics storage will never be enabled without your prior opt-in.
2.4 Advertising and Third-Party Tracking
Atteste does not use any advertising cookies, tracking pixels, or third-party advertising technologies. We do not sell or share your data with advertisers. We do not participate in any advertising networks or real-time bidding systems.
3. Third-Party Services
The only third-party services that may store data on your device are:
- Firebase (Google LLC) — provides authentication and database caching as described in sections 2.1 above. Firebase operates under Google's data processing terms. Data may be processed in the United States. For more information, see Firebase Privacy and Security.
We do not embed social media widgets, comment systems, video players, or other third-party components that place their own cookies or tracking technologies on your device.
4. How to Manage Your Preferences
Browser Controls
You can manage or delete cookies and local storage through your browser settings. Each browser provides different controls:
- Clearing site data — most browsers allow you to clear cookies, IndexedDB, and localStorage for a specific site through the browser settings or developer tools.
- Blocking storage — you can configure your browser to block all cookies and local storage, but this will prevent Atteste from functioning.
- Private/Incognito browsing — using private browsing mode means all local storage is cleared when you close the browser window.
Please note that if you clear your browser's local storage, you will be signed out of Atteste and will need to log in again. Your data is not lost because it is stored securely on our servers.
In-App Controls
You can manage functional preferences directly within the application:
- Theme preference — go to Settings to toggle between dark and light mode.
- Sign out — signing out clears your authentication session and cached data.
5. Data Retention
Strictly necessary storage is retained only for as long as needed for its stated purpose. Authentication tokens expire and refresh automatically. Cached data is cleared when you sign out. Functional preferences persist until you change them or clear your browser data.
We do not retain any local storage data beyond what is described in this policy.
6. International Data Transfers
Firebase services process data in the United States. Authentication tokens and cached data stored on your device remain on your device and are not transferred, but the underlying data they represent is synchronised with Firebase servers located in the United States. Appropriate safeguards are in place as described in our Privacy Policy.
7. Changes to This Policy
We may update this Cookie Policy from time to time to reflect changes in our technology, legal requirements, or business practices. When we make material changes, we will update the "Last Updated" date at the top of this policy and notify you through the application.
We encourage you to review this policy periodically. Your continued use of Atteste after changes are posted constitutes your acceptance of the updated policy.
8. Contact Us
If you have questions about this Cookie Policy or our use of local storage technologies, please contact us:
Yield SPM (Pty) Ltd (operator of Attesté) CIPC registration number: 2024/185151/07 Registered office: 23 Kameeldoringdraai, Woodland Hills, Bloemfontein, Free State, 9301, Republic of South Africa General: info@atteste.art Privacy: info@atteste.art
For privacy-related requests, including data access or deletion requests, please refer to our Privacy Policy or email us at the address above. Version 1.1 reflects the change of operator entity from Kalahari Investments LLC (Georgia) to Yield SPM (Pty) Ltd (South Africa).