Features Pricing For Agencies GDPR ePrivacy About Contact
RO | EN
Start Free →
Legal

Privacy Policy

How we collect, use, and protect your personal data.

At CookieFix, we are committed to protecting your privacy. This Privacy Policy explains what personal data we collect, how we use it, and what rights you have regarding your data.

Last updated: February 20, 2026

1. Data Controller

The data controller for cookiefix.ro is CookieFix, based in Bucharest, Romania, EU. For any questions regarding your personal data, you can contact us at: [email protected].

2. Data We Collect

We collect the following categories of personal data:

  • Account data — name, email address, and password when you create an account.
  • Domain data — website URLs you add to the platform for cookie scanning and consent management.
  • Consent records — anonymized records of visitor consent choices on your websites (IP addresses are not stored).
  • Usage data — pages visited, features used, and technical information (browser type, device) collected through server logs.
  • Contact data — name, email, and message content when you contact us through the contact form.

3. How We Use Your Data

We use your personal data for the following purposes:

  • To provide and maintain the CookieFix service, including cookie scanning, consent management, and analytics.
  • To manage your account and process payments for paid plans.
  • To communicate with you about your account, service updates, and support requests.
  • To improve our service based on aggregated, anonymized usage patterns.
  • To comply with legal obligations, including GDPR and Romanian data protection law.

4. Cookies on Our Website

We practice what we preach. Our website uses CookieFix for cookie consent management. We use the following categories of cookies:

  • Necessary cookies — required for the website to function (session, CSRF protection). These do not require consent.
  • Analytics cookies — help us understand how visitors use our website. Only set after consent.
  • Marketing cookies — used for advertising purposes. Only set after consent.

5. Data Sharing

We do not sell your personal data. We may share data with the following categories of recipients:

  • Hosting providers — our servers are located in the EU (Hetzner, Germany).
  • Payment processors — for paid subscriptions (Stripe), which has its own privacy policy.
  • Legal authorities — only when required by law or valid legal process.

6. Data Retention

We retain your account data for as long as your account is active. Consent records are retained for the period required by applicable regulations (typically 5 years for GDPR compliance proof). When you delete your account, all associated personal data is permanently deleted within 30 days. Anonymized, aggregated data may be retained indefinitely for statistical purposes.

7. Your Rights

Under GDPR, you have the following rights regarding your personal data:

  • Right of access — request a copy of your personal data.
  • Right to rectification — request correction of inaccurate data.
  • Right to erasure — request deletion of your personal data.
  • Right to restriction — request limitation of data processing.
  • Right to data portability — receive your data in a structured, machine-readable format.
  • Right to object — object to processing based on legitimate interests.

To exercise any of these rights, contact us at: [email protected]. We will respond within 30 days.

8. Security

We implement appropriate technical and organizational measures to protect your personal data, including encryption in transit (TLS/SSL), encrypted storage, access controls, and regular security reviews. However, no method of transmission over the internet is 100% secure.

9. Changes to This Policy

We may update this Privacy Policy from time to time. When we make significant changes, we will notify you by email or through a notice on our website. The updated policy takes effect on the date stated at the top of this page.

10. Contact

If you have any questions about this Privacy Policy or how we handle your data, contact us at: [email protected]. You also have the right to lodge a complaint with the Romanian Data Protection Authority (ANSPDCP) or any other EU supervisory authority.