Strictly necessary, only.

What this is

This Cookie Policy explains the cookies and similar technologies Beamprobe uses on the website at beamprobe.com and the application at app.beamprobe.com.

It supplements our Privacy Policy and applies under UK GDPR and the Privacy and Electronic Communications Regulations 2003 (PECR).

The short version

We use strictly necessary cookies only. We do not use:

• Advertising cookies
• Cross-site tracking
• Third-party analytics that profile users (Google Analytics, Mixpanel, Segment, Hotjar)
• Social-media tracking pixels (Facebook, LinkedIn, Twitter)
• Re-marketing tags

This is why we don't show a cookie banner. PECR exempts strictly necessary cookies from prior consent requirements.

The cookies we set

1. Session cookie

• Name: _beamprobe_key
• Purpose: Maintains your authenticated session after sign-in
• Type: First-party, HTTP-only, Secure, SameSite=Lax
• Lifetime: Session — deleted when you close the browser, or 14 days for "Remember me"
• Legal basis: Strictly necessary (PECR exemption)

2. CSRF token

• Name: _csrf_token
• Purpose: Protects against cross-site request forgery attacks on form submissions
• Type: First-party, HTTP-only, Secure
• Lifetime: Session
• Legal basis: Strictly necessary (security)

3. Theme preference (optional)

• Name: theme (localStorage, not technically a cookie)
• Purpose: Remembers your light/dark theme choice
• Type: First-party localStorage entry
• Lifetime: Until manually cleared
• Legal basis: Strictly necessary for the feature you opted into

What we do not use

For full transparency:

• No Google Analytics, no GA4. We use server-side aggregate analytics (page hits) without cookies or fingerprinting.
• No Hotjar, FullStory, or session-replay tools. We do not record what you do on our site.
• No advertising networks. No Google Ads, Meta Ads, or LinkedIn Ads tracking.
• No third-party fonts that track. We use Google Fonts via subset CDN with no cookies set.
• No social-media embed tracking. No Facebook Pixel, LinkedIn Insight tag, Twitter pixel.

Third-party services we use that may set their own cookies

• Stripe (billing) sets cookies on its own domains during checkout. See Stripe's cookie policy.
• Google OAuth (optional sign-in) sets cookies on Google domains during the OAuth flow. See Google's cookie policy.

These cookies are set on third-party domains, not on beamprobe.com, and are subject to the third party's policies.

How to disable cookies

You can block or delete cookies via your browser settings. Disabling our session cookie will prevent you from staying signed in. Disabling the CSRF cookie will prevent forms from submitting. The site will not function without these.

Changes

If we add, remove, or change cookies materially we will update this page. The "Last updated" date at the top reflects the current version date.

Questions

Cookie or privacy questions: dpo@beamprobe.com.