Cookie Policy
1. Introduction
This Cookie Policy explains how Flowo, operated by Gabriele Merigo, based in Turin, Italy ("Flowo", "we", "us", or "our"), uses cookies and similar tracking technologies when you visit or use www.flowospace.com (the "Service").
This policy should be read together with our Privacy Policy, which provides additional information about how we collect and use personal data.
By continuing to use the Service after accepting our cookie banner, you consent to our use of cookies as described in this policy. You can withdraw or change your consent at any time.
2. What Are Cookies?
Cookies are small text files placed on your device (computer, tablet, smartphone) when you visit a website. They allow the website to recognize your device and remember information about your visit, such as your preferences, login state, or pages visited.
We also use similar technologies, including:
- Local storage: stores data persistently in your browser
- Session storage: stores data for the duration of your browser session
- Web beacons / pixels: small graphics that track interactions
- Server-side identifiers: stored in our database to link sessions
In this Cookie Policy, "cookies" refers collectively to all such technologies.
3. Categories of Cookies We Use
3.1 Strictly Necessary Cookies
These cookies are essential for the Service to function properly. They enable core features such as authentication, security, session management, and remembering your consent choices. They cannot be disabled without rendering the Service unusable. Under Art. 122 of the Italian Privacy Code and Recital 30 GDPR, these cookies do not require consent.
| Cookie / Storage | Provider | Purpose | Duration |
|---|---|---|---|
| next-auth.session-token | Flowo (first-party) | User authentication and session management | 30 days |
| next-auth.csrf-token | Flowo (first-party) | CSRF protection | Session |
| next-auth.callback-url | Flowo (first-party) | Authentication redirect handling | Session |
| NEXT_LOCALE | Flowo (first-party) | Language preference (IT/EN) | 1 year |
| _iub_cs-* (consent cookies) | Iubenda | Store your cookie consent preferences | 12 months |
3.2 Functional Cookies
These cookies enhance functionality and personalization but are not strictly necessary. They remember your preferences and settings to provide a better experience.
| Cookie / Storage | Provider | Purpose | Duration |
|---|---|---|---|
| flowo-theme | Flowo (first-party) | Remember theme preference | 1 year (local storage) |
| flowo-onboarding-completed | Flowo (first-party) | Track if onboarding tour was completed | Persistent (local storage) |
| flowo-tour-state | Flowo (first-party) | Track interactive tour progress | Persistent (local storage) |
3.3 Analytics Cookies
These cookies help us understand how visitors interact with the Service by collecting and reporting information anonymously. We use this data to improve the Service.
| Cookie / Storage | Provider | Purpose | Duration |
|---|---|---|---|
| ph_*_posthog | PostHog (EU cloud) | Product analytics, anonymized user behavior tracking | 1 year |
| __ph_opt_in_out_* | PostHog (EU cloud) | Opt-in/opt-out preference for analytics | 10 years |
PostHog is configured to use EU data residency and IP anonymization. We do not link analytics data to identifiable individuals beyond what is necessary for product improvement.
3.4 Third-Party Cookies from Integrations
When you use certain features, third-party services may set their own cookies:
| Service | Purpose | Privacy Policy |
|---|---|---|
| Google (OAuth login, Calendar/Tasks sync) | Authentication and integration with Google services | policies.google.com/privacy |
| Lemon Squeezy (checkout) | Payment processing | lemonsqueezy.com/privacy |
| Vercel | Hosting infrastructure and security | vercel.com/legal/privacy-policy |
3.5 Marketing Cookies
We do not currently use marketing cookies, advertising cookies, or third-party tracking pixels for behavioral advertising. We do not share data for cross-context behavioral advertising.
4. How to Manage Your Cookie Preferences
4.1 Through Our Cookie Banner
When you first visit the Service, a cookie banner appears allowing you to accept all cookies, reject non-essential cookies, or customize your preferences by category. You can change your preferences at any time by clicking the "Cookie Settings" link in the footer.
4.2 Through Your Browser Settings
Most browsers allow you to refuse or accept cookies, delete existing cookies, and block third-party cookies. Please refer to your browser's documentation:
Note: blocking essential cookies will prevent the Service from functioning correctly.
4.3 Do Not Track and Global Privacy Control
We respect the Global Privacy Control (GPC) signal where applicable. We do not currently respond to Do Not Track (DNT) browser signals as no industry standard has been finalized.
5. Consent
For non-essential cookies, we obtain your prior, informed, and freely given consent before placing them, in compliance with Art. 122 of the Italian Privacy Code (implementing the ePrivacy Directive 2002/58/EC) and Art. 6(1)(a) GDPR.
You can grant, deny, or withdraw consent at any time through the cookie banner or Cookie Settings link. Withdrawing consent does not affect the lawfulness of processing based on consent before its withdrawal.
6. Data Controller and Contact
The data controller for cookies set by Flowo is:
Gabriele Merigo
Turin, Italy
Email: privacy@flowospace.com
For cookies set by third parties, those third parties act as independent data controllers and you should consult their respective privacy policies.
7. Changes to This Cookie Policy
We may update this Cookie Policy from time to time to reflect changes in the cookies we use or for legal, regulatory, or operational reasons. The "Last updated" date at the top indicates when it was last revised. Material changes will be communicated through the cookie banner or other appropriate means.
8. More Information
For more information about your privacy rights and how we handle your personal data, please see our Privacy Policy and Terms of Service.
For general information about cookies and online privacy, you may visit: