Passary Logo
Passary

Cookie Policy

Last updated: November 25, 2025

Effective date: November 25, 2025

1. Introduction

This Cookie Policy explains how Passary ("we", "us", or "our") uses cookies and similar technologies when you visit our website at passary.com (the "Service"). This policy should be read in conjunction with our Privacy Policy.

By using our Service, you consent to the use of cookies as described in this Cookie Policy. This policy complies with:

  • Directive 2002/58/EC (ePrivacy Directive) as amended by Directive 2009/136/EC
  • Regulation (EU) 2016/679 (General Data Protection Regulation - GDPR)
  • Hungarian Act CXII of 2011 on the Right of Informational Self-Determination

Privacy-First Approach

Passary is designed with privacy as a core principle. We use minimal cookies and rely primarily on essential local storage. We do NOT use tracking, advertising, or analytics cookies.

2. What Are Cookies and Similar Technologies?

2.1 Cookies

Cookies are small text files that are placed on your computer or mobile device when you visit a website. They are widely used to make websites work more efficiently and provide information to website owners.

2.2 Local Storage and IndexedDB

Local Storage and IndexedDB are browser-based storage mechanisms that allow websites to store data directly in your browser. Unlike cookies, this data is not automatically sent to the server with every request. Key characteristics:

  • Capacity: Can store much larger amounts of data than cookies (typically 5-10MB for Local Storage, unlimited for IndexedDB)
  • Persistence: Data persists until explicitly deleted by the user or the website
  • Scope: Accessible only from JavaScript on the same origin (domain)
  • Not transmitted: Unlike cookies, Local Storage data is not sent with HTTP requests

2.3 Session Storage

Similar to Local Storage but data is cleared when the browser tab is closed. We may use this for temporary application state.

3. How Passary Uses Cookies and Storage Technologies

3.1 Essential Cookies and Storage

Passary uses the following essential storage mechanisms that are strictly necessary for the Service to function:

TechnologyPurposeDuration
IndexedDBStores your encrypted vault data locally on your devicePersistent (until deleted by user)
LocalStorage
passary_cookie_consent		Records your cookie consent preferencePersistent (until revoked)
LocalStorage
passary_prefs		Stores UI preferences (theme, view settings)Persistent
SessionStorageTemporary application state during your sessionSession (cleared when tab closes)

Legal Basis: These storage mechanisms are essential for the Service to function as requested by you (GDPR Article 6(1)(b) - performance of a contract). Under the ePrivacy Directive, consent is not required for strictly necessary cookies/storage.

3.2 What We Do NOT Use

Passary does NOT use:

  • Analytics Cookies: No Google Analytics, Matomo, or similar tracking
  • Advertising Cookies: No ad networks, retargeting pixels, or marketing cookies
  • Social Media Cookies: No Facebook Pixel, Twitter tracking, etc.
  • Third-Party Cookies: No cookies set by external domains
  • Tracking Cookies: No user behavior tracking or profiling
  • Performance Cookies: No performance monitoring cookies

4. Cookie Categories Explained

For transparency, here is a breakdown of common cookie categories and whether Passary uses them:

Strictly Necessary/Essential

Required for the website to function. Cannot be disabled without breaking core functionality.

✓ Passary uses these (Local Storage for vault data)

Performance/Analytics

Collects information about how visitors use a website (e.g., Google Analytics).

✗ Passary does NOT use these

Functional

Enhances functionality and personalization (e.g., remember language preference).

✗ Passary does NOT use cookies for this (we use Local Storage for preferences, which is essential)

Targeting/Advertising

Used to deliver ads relevant to you and your interests (e.g., Facebook Pixel, Google Ads).

✗ Passary does NOT use these

5. Your Rights and Choices

5.1 Managing Browser Storage

You have full control over the data stored in your browser. Here's how to manage it:

Chrome

Settings → Privacy and Security → Site Settings → Cookies and site data → See all site data → Search for "passary.com" → Remove

Firefox

Settings → Privacy & Security → Cookies and Site Data → Manage Data → Search for "passary.com" → Remove Selected

Safari

Preferences → Privacy → Manage Website Data → Search for "passary.com" → Remove

Edge

Settings → Cookies and site permissions → Manage and delete cookies and site data → See all cookies and site data → Search for "passary.com" → Remove

Warning: Clearing browser storage for passary.com will delete your locally stored vault data. Only do this if you have a backup of your vault file or if you intend to permanently delete your vault.

5.2 Browser Cookie Settings

Most browsers allow you to:

  • View what cookies/storage is used by each website
  • Delete cookies/storage from specific websites
  • Block cookies from specific websites
  • Block all third-party cookies
  • Clear all cookies/storage when closing the browser

5.3 Do Not Track (DNT)

Some browsers offer a "Do Not Track" (DNT) signal. Since Passary does not track users at all, we inherently respect this preference, though we don't need to technically implement DNT detection as we don't track in the first place.

6. Third-Party Services

Passary does not integrate with any third-party services that use cookies or tracking technologies. We do not use:

  • Content Delivery Networks (CDNs) that set cookies
  • Analytics services (Google Analytics, Matomo, etc.)
  • Advertising networks
  • Social media widgets or plugins
  • Third-party authentication providers
  • Payment processors (service is currently free)

All application code is served directly from our own infrastructure without third-party dependencies that process personal data.

7. Children's Privacy

Our Service is not directed to individuals under the age of 16. We do not knowingly collect or use cookies/storage from children under 16. Since we use only essential local storage and no tracking, we have no way to determine the age of users.

8. Changes to This Cookie Policy

We may update this Cookie Policy from time to time to reflect changes in technology, law, our business operations, or for other reasons. Changes will be posted on this page with an updated "Last updated" date.

Material changes will be communicated through:

  • A prominent notice on our homepage
  • An updated effective date on this page

We encourage you to review this Cookie Policy periodically to stay informed about how we use cookies and storage technologies.

9. Technical Details

9.1 Local Storage vs Cookies

Understanding the difference between cookies and local storage:

FeatureCookiesLocal Storage
Capacity~4KB per cookie5-10MB
Sent with requestsYes (every HTTP request)No
AccessibilityServer & ClientClient-side only (JavaScript)
ExpirationCan be set (session/persistent)Never expires (manual deletion only)

9.2 Security Measures

Security measures we implement for local storage:

  • Encryption: All vault data stored in IndexedDB is encrypted with AES-256-GCM before storage
  • Same-Origin Policy: Browser security prevents other websites from accessing passary.com's storage
  • HTTPS Only: All communications use TLS encryption
  • Content Security Policy: Strict CSP headers prevent XSS attacks that could access storage
  • No Sensitive Data in Cookies: We don't use cookies for sensitive information

10. Compliance and Legal Framework

10.1 GDPR Compliance

Under GDPR, cookies that are not strictly necessary require user consent. Passary's approach:

  • Essential Storage: We only use storage that is strictly necessary for the service (GDPR Article 6(1)(b))
  • Consent Banner: We display a privacy notice regarding essential storage use
  • No Non-Essential Cookies: We don't use analytics/marketing cookies that would require consent

10.2 ePrivacy Directive

The ePrivacy Directive (Cookie Law) requires:

  • Information: Users must be informed about cookies (this policy fulfills that requirement)
  • Consent: Non-essential cookies require consent (we don't use non-essential cookies)
  • Exception: Strictly necessary cookies don't require consent (our local storage qualifies)

11. Contact Us

If you have any questions about this Cookie Policy or our use of cookies and storage technologies, please contact us:

Passary Team

Budapest, Hungary

Email: privacy@passary.com

Manage Your Preferences

EssentialRequired

Necessary for the vault to function (encryption, local storage access).

Passary does not use any analytics or marketing cookies. We respect your privacy by design.