The OPPThe OPP
Sign inStart free trial
← All legal documents

Cookie Policy

The cookies and similar technologies our website and app use.

Effective from 2026-06-10·Contact: legal@theopp.be

This Cookie Policy explains how Haxoria SRL uses cookies and similar technologies on the theopp.be website and within The OPP application. Read this alongside our Privacy Policy.

1. What is a cookie?

Cookies are small text files stored by your browser when you visit a website. They let the site recognize you across page loads, remember preferences, and operate features like staying logged in. "Similar technologies" includes localStorage, sessionStorage, and pixel-style web beacons; we treat them all the same way as cookies in this policy.

2. Cookies we use

Strictly necessary

These are required for the Platform to function. They cannot be disabled without breaking core features like logging in.

  • Session and refresh tokens — stored as HTTP-only, Secure, SameSite=Lax cookies. Used to keep you signed in and to rotate refresh tokens. Lifetime: 15 minutes for the access token, 30 days for the refresh token.
  • CSRF protection token — set on form submissions to prevent cross-site request forgery. Session-scoped.
  • Tenant routing cookie — temporarily set during signup and login to route the request to the right tenant subdomain. Session-scoped.

Functional

These improve your experience but are not strictly required. We use them only when you actively interact with the relevant feature.

  • In-app preferences (sidebar collapsed state, table sort orders, last-used filters, the "Edit with AI" drawer state). Stored in localStorage on your device. Lifetime: until you clear them.
  • Theme variables — for per-tenant branding (logo color, accent color). Stored as a short-lived cookie matching your tenant's theme.

Analytics

We currently do not use third-party analytics on the marketing site or in the Platform. If we add an analytics service in the future, we will:

  • List it on this page with the purpose, provider, and retention period;
  • Where required by EU law, request your consent through a banner before setting the related cookies.

Advertising

We do not use advertising cookies, tracking pixels, or cross-site profiling. We do not share data with ad networks.

3. Managing cookies

Most browsers let you view, manage, and delete cookies through their settings. Be aware that disabling strictly-necessary cookies will prevent you from logging into the Platform.

4. Do Not Track

Our website respects browser-level "Do Not Track" (DNT) signals where the underlying service permits it. Because we do not run third-party advertising or cross-site tracking, our compliance is naturally aligned with DNT users' expectations regardless of the header.

5. Changes to this policy

We may update this Cookie Policy if our tooling changes. Material updates are reflected in the "Effective from" date above. We recommend reviewing this page periodically.

6. Contact

Questions about cookies: privacy@theopp.be.

Haxoria SRL — operator of The OPP. Registered in Belgium. For legal questions, legal@theopp.be.

This page describes our standard published terms; any signed customer agreement (MSA, Order Form) takes precedence over the version published here.