Cookie Policy

Cookies are small text files placed by a server or script that your browser stores and sends back on subsequent requests within configured scopes. LocalStorage persists structured preference JSON across sessions unless manually cleared. SessionStorage mirrors similar APIs but clears when the tab closes.

We describe transparently when scripts rely on each mechanism so your consent choices match underlying behaviour rather than marketing shorthand alone.

Necessary technologies operate the consent ledger, maintain secure session continuity where authentication exists, and mitigate brute-force attempts against enquiry endpoints through ephemeral counters hosted at infrastructure level.

When you enable analytics in Cookie Settings, pseudonymous identifiers may be issued to understand aggregate navigation paths, approximate geography at regional resolution, and scroll engagement on long-form policy pages such as this one.

Analytics vendors must process instructions solely under documented agreements and cannot reuse identifiers for unrelated profiling without renewed consent.

Marketing cookies fire only after explicit opt-in through the modal or Accept All equivalent. They support attribution modelling when sponsored placements reference hydration programmes. Frequency caps reduce repetitive placements.

Certain interactions memorise UI state locally—such as expanded accordion panels—without transmitting identifiers to servers. These behaviours mimic functional cookies but remain confined to your device unless paired with analytics toggles.

• Optional analytics identifiers renew every thirteen months unless consent expires sooner.
• Marketing cohort labels expire after ninety days of inactivity unless you reaffirm participation.
• Necessary consent artefacts persist until overwritten by newer saves reflecting updated toggles.

Icon fonts or analytics SDKs delivered through reputable CDNs inherit HTTPS policies from this site. Each vendor undergoes lightweight diligence focusing on subprocessors, breach notification timelines, and data residency commitments.

Reopen Cookie Settings from the floating banner controls whenever you change your mind. Browser manufacturers publish guides for blocking third-party cookies wholesale; extreme blocking may impair preference persistence.

Global Privacy Control signals are honoured where technically feasible alongside explicit consent UI. Legacy Do Not Track headers lack uniform industry interpretation; we prioritise recorded consent JSON over ambiguous defaults.

When new vendors integrate, we revise this policy and renew prompts if materially different categories emerge. Archived summaries remain available on request for enterprise procurement reviews.