Cookie Policy

Effective date: 14 April 2026 · Last updated: 14 April 2026

This Cookie Policy explains what cookies are, which ones Passpol uses, and what your options are. The short version: we use one strictly necessary cookie to keep you logged in. Nothing else.

1. What Are Cookies?

Cookies are small text files that a website stores in your browser when you visit. They are used for many purposes — keeping you logged in, remembering preferences, tracking behaviour across sites, and serving targeted adverts.

Not all cookies are equal. Some are essential for a website to function at all. Others are optional and used for analytics, marketing, or personalisation. UK law (the Privacy and Electronic Communications Regulations 2003 — PECR) sets out rules on when consent is required before setting cookies.

2. Cookies We Use

Passpol uses strictly necessary cookies only. We do not use analytics, advertising, tracking, or any third-party cookies.

Cookie / Storage	Purpose	Duration	Type
`esg_token` (localStorage)	JWT authentication token. Keeps you logged in to your Passpol account during and between sessions. Without this, login cannot function.	Removed on logout; expires automatically after 24 hours of inactivity	Strictly necessary

We do not use:

Analytics cookies (e.g. Google Analytics, Mixpanel, Hotjar)
Advertising or targeting cookies
Social media tracking pixels
Third-party cookies of any kind

3. Legal Basis — Why We Don't Need a Cookie Banner

Under PECR Regulation 6, cookies that are strictly necessary for a service explicitly requested by the user are exempt from the requirement to obtain consent.

Because the only storage we use is the JWT authentication token — which is essential for the login function you have requested — we are not required to display a cookie consent banner or obtain prior consent before setting it.

What this means for you: There is no cookie banner on Passpol because none is legally required. If we ever introduce non-essential cookies (e.g. analytics), we will update this policy and obtain your consent before setting them.

4. How to Control Cookies

You can control and delete cookies and local storage through your browser settings. All major browsers allow you to:

View what cookies and local storage items are set by a website
Delete individual cookies or clear all stored data
Block cookies from being set in future

Browser-specific guidance is available at:

Chrome: Settings → Privacy and security → Cookies and other site data
Firefox: Settings → Privacy & Security → Cookies and Site Data
Safari: Preferences → Privacy → Manage Website Data
Edge: Settings → Cookies and site permissions

Please note: if you disable or delete the esg_token item from your browser's local storage, you will be logged out of Passpol and will need to sign in again. Blocking local storage entirely will prevent the login function from working.

5. Changes to This Policy

We will update this Cookie Policy if the cookies or local storage we use change. Specifically:

If we introduce any non-essential cookies (e.g. analytics or marketing), we will update this page and implement a consent mechanism before setting those cookies.
We will notify registered users by email of any material changes to this policy.
The "Last updated" date at the top of this page will always reflect the most recent version.

6. Contact

If you have any questions about how Passpol uses cookies or local storage, please contact us:

Email: hello@passpol.co.uk
Passpol Ltd · Company No. 17156285 · Registered in England and Wales

Passpol Ltd · Company No. 17156285 · Registered in England and Wales · hello@passpol.co.uk