Cookies Policy
Last updated:
Last updated: April 23, 2026
This Cookies Policy explains what cookies and similar technologies are used on the GPRHub platform (gprhub.com), how we use them, and what choices you have. It complements our Privacy Policy.
1. Who We Are
GPRHub is operated by Amoledo Sp. z o.o.:
- Registered address: ul. Hoża 86/410, 00-682 Warszawa, Poland
- KRS: 0001068982 | NIP: 7011174670 | REGON: 526950935
- Email: [email protected]
We are the controller of personal data processed through cookies on gprhub.com, where such cookies contain personal data within the meaning of GDPR Article 4(1).
2. What Are Cookies?
Cookies are small text files stored on your device (computer, smartphone, tablet) when you visit a website. They allow the website to recognize your device, remember your preferences, and function correctly between page loads and visits.
We also use related technologies such as session storage, local storage, and tracking pixels, which work similarly to cookies but are managed differently by the browser. For simplicity, this Policy uses the term "cookies" to refer to all such technologies.
3. Legal Basis
The use of cookies on gprhub.com is subject to:
- Article 399 of the Polish Electronic Communications Law of 12 July 2024 (in force since 10 November 2024) — requires your informed consent for cookies that are not strictly necessary.
- General Data Protection Regulation (EU) 2016/679 (GDPR) — where cookies process personal data.
We distinguish two categories of cookies:
- Strictly necessary cookies — do not require consent because they are essential to provide the service you requested.
- Optional cookies (analytics) — require your prior explicit consent, which you may give, refuse, or withdraw at any time.
4. Categories of Cookies We Use
4.1. Strictly Necessary Cookies (No Consent Required)
Essential for the Platform to function. Without them, core features (login, payment, language selection) would not work.
| Cookie name | Purpose | Duration | Type |
|---|---|---|---|
| laravel_session | Maintains your session while browsing (login, cart, form state) | 2 hours | First-party |
| XSRF-TOKEN | Protects against Cross-Site Request Forgery attacks | 2 hours | First-party |
| remember_web_* | Keeps you logged in when you select "Remember me" | 5 years | First-party |
| locale | Stores your preferred interface language | 1 year | First-party |
| cookie_consent | Remembers your choice regarding optional cookies | 1 year | First-party |
4.2. Analytics Cookies (Consent Required)
We use Google Analytics 4 (provided by Google Ireland Limited) to understand how visitors use the Platform — which pages are visited, from where, how long sessions last. This information is collected in an aggregated, pseudonymized form and helps us improve the service.
These cookies are set only after you give consent through the cookie banner. If you refuse, Google Analytics is not activated and no analytics cookies are placed on your device.
| Cookie name | Purpose | Duration | Provider |
|---|---|---|---|
| _ga | Distinguishes unique users (pseudonymized client ID) | 2 years | Google Analytics |
| _ga_[container-id] | Stores session state for Google Analytics 4 | 2 years | Google Analytics |
| _gid | Distinguishes users within a 24-hour window (legacy) | 24 hours | Google Analytics |
What Google Analytics collects:
- Pseudonymized client identifier (not directly linked to your name or email)
- Pages visited and time spent on each
- Referrer (the website you came from)
- Approximate geographic location (country/city level, derived from IP — IP itself is anonymized before storage per our configuration)
- Browser type, operating system, device type
- Interactions such as clicks, scroll depth, form events (without personal data content)
What Google Analytics does NOT do on our Platform:
- We do not use Google Signals or cross-device tracking.
- We do not use Google Analytics for advertising audiences or remarketing.
- We do not send personally identifiable information (PII) such as emails or names to Google Analytics.
- We do not enable Google Analytics Data Sharing options with other Google products.
Legal basis: Your consent, under GDPR Article 6(1)(a) and Article 399 of the Polish Electronic Communications Law.
International transfer: Google Analytics data may be transferred to the United States. Google relies on the EU–U.S. Data Privacy Framework (adequacy decision) and Standard Contractual Clauses to lawfully transfer data.
Google's own policies:
- Privacy Policy: policies.google.com/privacy
- How Google uses data: policies.google.com/technologies/partner-sites
4.3. Payment Processing Cookies (Set by Stripe)
When you make a deposit, you are redirected to Stripe's secure checkout. Stripe sets its own cookies on stripe.com / checkout.stripe.com to process payments, detect fraud, and comply with payment-card regulations. These cookies are set outside gprhub.com and governed by Stripe's own Cookie Policy: stripe.com/cookies-policy/legal
Because Stripe checkout is a payment service you explicitly request by initiating a deposit, these cookies are considered necessary for the transaction.
4.4. Cookies We Do Not Use
For clarity, the following types of cookies are not used on gprhub.com:
- Advertising or retargeting cookies
- Social media sharing pixels (Facebook, LinkedIn, X/Twitter, TikTok)
- Third-party analytics beyond Google Analytics
- Fingerprinting or device identification beyond standard session cookies
- Personalized content cookies based on profiling
5. Managing Your Cookie Preferences
5.1. Cookie banner. On your first visit to gprhub.com, a consent banner will appear asking whether you allow optional analytics cookies. You can:
- Accept all — allows strictly necessary + analytics cookies.
- Reject optional — allows only strictly necessary cookies. Analytics will not be activated.
- Customize — toggle each category individually.
5.2. Changing your choice later. You can change your cookie preferences at any time by clicking the "Cookie preferences" link in the footer of any page. Withdrawing consent does not affect the lawfulness of processing before withdrawal.
5.3. Browser settings. You can also configure your browser to block or delete cookies:
5.4. Google Analytics opt-out. In addition to our banner, you can use Google's official browser add-on to opt out of Google Analytics across all websites: tools.google.com/dlpage/gaoptout
5.5. Impact of blocking strictly necessary cookies. Blocking essential cookies will prevent the Platform from functioning correctly — you will not be able to log in, submit forms, or maintain a session.
6. Cookies and Personal Data
Some cookies may contain or be associated with personal data (for example, a session cookie linked to your logged-in account, or a Google Analytics client identifier). Where this is the case, the processing of that personal data is described in our Privacy Policy, including legal basis, retention, and your rights under GDPR.
7. International Transfers
Cookies set directly by gprhub.com are processed on our servers located within the European Union.
Cookies set by third parties (Google Analytics, Stripe) may be processed in the United States and other jurisdictions. These providers rely on:
- The EU–U.S. Data Privacy Framework adequacy decision (where applicable)
- Standard Contractual Clauses approved by the European Commission
- Additional safeguards as described in their own privacy policies
8. Retention
Cookie lifetimes are listed in the tables in Sections 4.1 and 4.2. After the specified duration (or when you log out / clear browser data / withdraw consent), cookies are deleted.
Google Analytics data retention on Google's servers is configured to 14 months (the minimum available setting) — after this period, individual user-level and event-level data is automatically deleted.
9. Changes to This Policy
We may update this Cookies Policy to reflect changes in our practices or applicable law. The "Last updated" date at the top shows the most recent revision. If we introduce additional cookie categories, we will update this Policy and, if consent is required, ask for it through the cookie banner before setting any new cookies.
10. Contact
For any questions about cookies or this Policy, please contact us:
- Email: [email protected]
- Post: Amoledo Sp. z o.o., ul. Hoża 86/410, 00-682 Warszawa, Poland
You may also lodge a complaint with:
- Urząd Ochrony Danych Osobowych (UODO) — Polish Data Protection Authority, ul. Stawki 2, 00-193 Warszawa, uodo.gov.pl
- Urząd Komunikacji Elektronicznej (UKE) — Polish Office of Electronic Communications, uke.gov.pl