Cookie Policy
Version 1 | April 2026
Overview
This Cookie Policy explains what cookies PeerDesk uses, why we use them, and how you can control them.
1. Strictly Necessary Cookies
These cookies are required for the platform to function and cannot be disabled. They do not track you for advertising or analytics purposes.
| Cookie Name | Type | Purpose | Duration | Party |
|---|---|---|---|---|
next-auth.session-token | Session / Authentication | Stores your encrypted authentication session token. Required to keep you logged in across page navigations. | Session (browser close) or up to 30 days if "remember me" is enabled | First party |
__Secure-next-auth.session-token | Session / Authentication | Secure (HTTPS-only) variant of the session token, used in production. | Session or up to 30 days | First party |
next-auth.csrf-token | Security | Cross-Site Request Forgery (CSRF) protection token. Prevents unauthorized form submissions and API calls. | Session (browser close) | First party |
__Host-next-auth.csrf-token | Security | Strict host-bound CSRF token variant, used in production over HTTPS. | Session | First party |
next-auth.callback-url | Functional | Stores the URL to redirect you to after login. | Session | First party |
2. Analytics Cookies (Planned)
PeerDesk plans to activate Google Analytics 4 in a future release to better understand how the platform is used and to improve it. Google Analytics uses cookies to collect anonymized usage data (page views, session duration, navigation paths).
Google Analytics is not yet active. When it is activated, we will:
- Update this Cookie Policy with the specific Google Analytics cookie names and durations
- Update the Sub-Processor Register with the effective date
- Display a consent banner on first visit requesting your permission before any analytics cookies are set
- Enable IP anonymization and ensure data is processed in the EU where possible
The legal basis for analytics cookies will be consent (Art. 6(1)(a) GDPR). You will be able to withdraw consent at any time via the cookie preferences link in the footer.
3. No Other Third-Party Cookies
PeerDesk currently does not use:
- Advertising or targeting cookies
- Social media cookies or share buttons
- Retargeting pixels
4. Local Storage
PeerDesk may use browser local storage for non-personal UI preferences (e.g., sidebar state, display settings). This data stays in your browser and is not transmitted to our servers.
5. Your Choices
You can instruct your browser to refuse all cookies or to alert you when cookies are sent. If you disable the strictly necessary cookies listed in Section 1, you will not be able to log in to PeerDesk. When analytics cookies are activated, you will be able to decline them via the consent banner without affecting platform functionality.
6. Contact
For questions about this Cookie Policy, contact us at mail@peerdesk.org.
Version: 1 | Last updated: April 2026