Cookie Policy

1. What is a Cookie?

A cookie is a small text file placed on your device (computer, tablet, smartphone) when you visit a website. Cookies allow the site to recognize you, remember your preferences, and improve your browsing experience.

2. The Cookies We Use

πŸͺ Your Choice Matters

We respect your privacy and give you control over cookies:
Accept all cookies: You benefit from an optimal experience with analytics features
Essential cookies only: Only cookies necessary for the site to function will be used

Essential Cookies (Required)

These cookies are essential for the site to function. They cannot be disabled as they are necessary for security and basic functionality.

πŸ” NextAuth Session Cookie

  • Name: next-auth.session-token or __Secure-next-auth.session-token
  • Purpose: Maintain your login securely
  • Duration: 30 days (renewed on each visit)
  • Type: HTTP-only, Secure, SameSite=Lax cookie
  • Data stored: Encrypted session token (no readable personal information)

πŸ›‘οΈ CSRF Protection Cookie

  • Name: next-auth.csrf-token or __Host-next-auth.csrf-token
  • Purpose: Protect against cross-site request forgery attacks
  • Duration: Browser session
  • Type: HTTP-only, Secure cookie

Local Storage (LocalStorage)

We also use browser localStorage to improve your experience:

  • Current transcriptions: Temporary saving of your transcriptions to prevent data loss
  • Cookie preferences: Remembering your cookie acceptance choice
  • Interface preferences: Theme (light/dark), preferred language

This data remains on your device until you manually delete it or clear your browsing data.

3. Analytics Cookies

πŸ“Š Google Analytics 4

⚠️ Subject to your consent: These cookies are only set if you accept them.

  • Purpose: Audience measurement and service improvement (page views, user journey, performance)
  • Cookies set: _ga, _ga_*, _gid
  • Duration: From 24 hours to 2 years depending on the cookie
  • IP anonymization: Enabled by default
  • Google Privacy Policy: View

4. Third-Party Cookies

Some third-party services may set cookies when you interact with their features:

πŸ’³ Stripe (Payments)

  • Purpose: Transaction security and fraud prevention
  • Cookies: __stripe_mid, __stripe_sid
  • Privacy policy: stripe.com/privacy

πŸ”‘ Google OAuth (Login)

If you choose to sign in with Google:

5. Legal Basis

βš–οΈ GDPR and ePrivacy Compliance

Our use of cookies complies with European regulations:

  • Essential cookies: Legitimate interest (service operation)
  • Analytics cookies: Prior explicit consent
  • Right to refuse: You can refuse non-essential cookies without affecting access to the service
  • No "cookie wall": Access to the site is never conditional on accepting cookies

In accordance with GDPR (General Data Protection Regulation) and the ePrivacy Directive, we obtain your consent before setting non-essential cookies.

Analytics cookies are only activated after obtaining your explicit consent via our cookie banner.

6. Managing Your Preferences

Modify Your Choices

You can modify your cookie preferences at any time:

  • Click on "Cookie Settings" at the bottom of the page
  • Modify your preferences
  • Your new choices apply immediately

Browser Settings

You can also manage cookies through your browser settings.

Here's how to access these settings:

  • Chrome: Settings β†’ Privacy and Security β†’ Cookies
  • Firefox: Options β†’ Privacy & Security β†’ Cookies
  • Safari: Preferences β†’ Privacy β†’ Cookies
  • Edge: Settings β†’ Cookies and site permissions

Delete Local Data

To delete locally stored data (localStorage):

  • Use your browser's developer tools (F12 β†’ Application β†’ Storage)
  • Or clear site data for smartnote.fr in settings (press F12 then Application tab)

7. Retention Period

Here is the retention period for each type of cookie:

  • NextAuth session cookies: 30 days (renewed on each login)
  • CSRF cookies: Browser session duration
  • LocalStorage: Until manual deletion by the user

8. Cookies and Personal Data

The essential cookies we use do not store directly identifiable personal data. Session tokens are encrypted and contain only technical references.

For more information about how we process your personal data, see our Privacy Policy.

9. Modifications

We may update this cookie policy to reflect changes in our practices or for legal reasons. Significant changes will be notified to you via our cookie banner.

10. Contact

For any questions about our use of cookies:
contact@innovaweb.fr

Last updated: January 19, 2026