Legal
Cookie Policy
This policy lists every cookie ClosOn sets in your browser, explains what each one does, and tells you how to control them. Last updated April 10, 2026.
What are cookies?
Cookies are small text files that a website stores on your device when you visit. They allow the site to remember information about your visit - such as whether you are logged in - so that the experience works correctly and securely. ClosOn uses only the cookies described below; we do not use advertising cookies or any third-party tracking.
Cookies we set
We group cookies into two categories: Essential cookies that are required for the app to function, and Functional cookies that remember your preferences but are not strictly necessary.
Always active - required for core functionality
closon_session
Set by Laravel's session manager
This is ClosOn's primary session cookie. It stores a session identifier that links your browser to your server-side session record (stored in our database, not in the cookie itself). It keeps you logged in as you navigate between pages and maintains temporary data such as form state. The cookie is marked HttpOnly - it cannot be read by JavaScript - and is invalidated when you log out or after the session idle timeout.
XSRF-TOKEN
Set by Laravel's CSRF middleware
This cookie contains a cryptographically signed token used to prevent Cross-Site Request Forgery (CSRF) attacks. Every form submission and state-changing API request includes this token so that ClosOn can verify the request originated from our own interface, not from a malicious third-party site. The token is regenerated on every login. It is readable by JavaScript so that client-side code (Livewire, fetch requests) can attach it to outgoing requests.
remember_web_*
Set only when "Remember me" is checked at login
If you choose "Remember me" when signing in, Laravel sets an encrypted persistent cookie containing a secure recall token. This token is matched against a hashed value stored in our database and allows ClosOn to recognise you on your next visit without requiring you to enter your password again. The cookie is marked HttpOnly and is cleared immediately when you log out.
Set only when you interact with the cookie banner
closon_cookie_consent
Set when you click "Accept all"
Stores the value 1 to record that you have accepted optional cookies. ClosOn reads this cookie on every page load to decide whether to show the consent banner. The long lifetime means you will not be asked again once you have accepted. You can revoke this at any time via "Cookie settings" in the footer or on your profile page - doing so clears this cookie and re-shows the banner on your next visit.
cookie_consent_declined
Set when you click "Decline" or dismiss the banner
Stores the value 1 to record that you have declined optional cookies. This prevents the consent banner from reappearing on every visit, which would be disruptive. No analytics or tracking is activated while this cookie is present. You can change your mind and re-open the consent banner at any time via "Cookie settings" in any page footer or on your profile.
No advertising or third-party tracking cookies
ClosOn does not use Google Analytics, Facebook Pixel, advertising networks, or any other third-party cookies. Every cookie listed above is set directly by ClosOn and stays on our domain. We do not sell or share cookie data with any third party.
How to manage your cookie preferences
You have several ways to control cookies:
- Cookie settings link - Every page footer contains a "Cookie settings" button. Clicking it clears both consent cookies and reloads the page so the banner re-appears, letting you make a fresh choice.
- Profile page - If you are signed in, your Profile → Cookie Settings tab shows your current consent status and lets you revoke or re-grant consent in one click.
- Browser settings - All modern browsers allow you to view, block, or delete cookies under Settings → Privacy. Note that blocking essential cookies will prevent ClosOn from functioning correctly.
Questions?
If you have any questions about how ClosOn uses cookies, please contact us at [email protected]. You can also read our full Privacy Policy for broader information on how we handle your data.
Also see: Privacy Policy, Terms & Conditions, Impressum.