1. Cookies used
| Name | Type | Purpose | Duration |
|---|---|---|---|
better-auth.session_token | Strictly necessary | Authentication (keeps you logged in). HttpOnly cookie, cryptographically signed. | 7 days, refreshed each visit |
levia-locale | Preference | Stores your language choice (FR/AR/EN) for the next site visit. | 1 year |
| Stripe cookies (checkout side only) | Third party · payment | Stripe payment page during a purchase. Levia has no access to these cookies. | Variable (Stripe) |
2. Why no Google Analytics?
We measure site usage only via server logs (anonymized, kept 90 days). No data is shared with Google, Meta or Microsoft. This avoids:
- The need for an invasive consent banner (GDPR Art. 7 + CNIL deliberation 2020-091)
- Data transfer to the United States (issue since Schrems II)
- Page slowdown (each tag = 50-200 ms of latency)
- Legitimate prospect concern about privacy
If we need more precise analytics (conversion tracking, A/B tests), we'll use cookieless and self-hosted European solutions (Plausible, Umami, or cookieless Microsoft Clarity).
3. How to refuse cookies?
Strictly necessary cookies (authentication, language) cannot be refused without breaking the service. If you don't want to accept better-auth.session_token, you simply cannot sign in.
For Stripe cookies during a payment, you can disable third-party cookies in your browser, but the payment won't go through (you can use bank transfer payment instead, on request).
4. Local storage (localStorage)
A few UI preferences are stored in your browser's localStorage (not as cookies):
levia:sidebar:pinned: sidebar pinned or in rail mode (compact)levia:team:viewMode: team directory display mode (grid / list / compact)levia:theme: light / dark / system mode
This data stays on your device and is never sent to our servers. You can delete it anytime from your browser's developer tools or using the "Clear site data" feature.
5. Contact
For any question about this policy: <email/>
See also: full privacy policy.