This Cookie Policy applies to all visitors of codegotech.com and explains how Codego Group LTD ("Codego", "we", "us"), a company registered in Malta and the registered owner of this domain, deploys cookies and similar technologies on this website. It should be read alongside our Privacy Policy, which governs the broader processing of Personal Data. This policy is aligned with the EU ePrivacy Directive (2002/58/EC, as amended) and, where applicable, the UK Privacy and Electronic Communications Regulations 2003. For questions, contact banking@codegotech.com. Our Privacy Policy is available at codegotech.com/privacy-policy.
A cookie is a small text file that a website places on your device — computer, tablet, or mobile phone — when you visit. Cookies are widely used to make websites function correctly, to remember your preferences, and to provide information to website owners about how their site is used. Cookies are set either by the website you are visiting directly (known as "first-party cookies") or by third-party services whose content or functionality is embedded within that website (known as "third-party cookies"). In addition to cookies, we may use related technologies such as pixel tags, web beacons, or local storage objects. For brevity, this policy refers to all such technologies collectively as "Cookies" unless the distinction is material. Cookies may be "session cookies", which are deleted automatically when you close your browser, or "persistent cookies", which remain on your device for a set period or until you delete them manually. Under Article 5(3) of the ePrivacy Directive, storing or accessing information on a user's device requires either the user's freely given, specific, informed, and unambiguous consent, or a legal basis falling within the strictly necessary exemption. We have structured our cookie deployment accordingly. Strictly necessary Cookies are placed without consent because they are essential for the operation of the website. All other Cookies are placed only after you have provided consent through our cookie banner, implemented via cookie-banner.js. You may withdraw that consent at any time using the controls described in Section 09 of this policy.
We classify the Cookies on codegotech.com into four categories, consistent with the framework adopted by the Information Commissioner's Office and aligned with guidance from the Information and Data Protection Commissioner of Malta (IDPC). The categories are as follows. Strictly Necessary Cookies. These Cookies are required for the website to function and cannot be switched off. They do not require your consent under Article 5(3) of the ePrivacy Directive because they are technically necessary to provide a service explicitly requested by you. Examples include cookies that maintain your session, support security mechanisms, or enable content delivery infrastructure. No Personal Data collected by these Cookies is used for marketing or analytics purposes. Functional Cookies. These Cookies enable enhanced features and personalisation, such as remembering your preferred language. They are not strictly necessary but improve usability. They require your consent before being set. Analytics Cookies. These Cookies collect information about how visitors use the website — for example, which pages are visited most frequently and whether error messages are received. Information is aggregated and, where possible, pseudonymised. Analytics Cookies require your consent. Marketing Cookies. At the date of this policy, we do not deploy marketing or advertising Cookies on codegotech.com. Should this change, this policy will be updated and you will be asked for fresh consent. The legal basis for processing Personal Data collected via consented Cookies is your consent, pursuant to Article 6(1)(a) of the UK GDPR and EU GDPR. Where Cookies relate to our legitimate interest in maintaining website security and performance, the applicable basis is Article 6(1)(f) GDPR, subject to our legitimate interests assessment.
The table below sets out each Cookie currently deployed on codegotech.com, its purpose, category, whether it is first-party or third-party, and its retention period. This table is reviewed each time the policy is updated.
| Cookie Name | Set By | Party | Category | Purpose | Retention | Consent Required |
|---|---|---|---|---|---|---|
| cookie_consent | Codego (cookie-banner.js) | First-party | Strictly Necessary | Records your cookie consent preference so the banner is not shown on every page load. | 12 months | No — records consent state |
| lang_pref | Codego (language switcher) | First-party | Functional | Stores your selected interface language so it persists across pages and return visits. | 12 months | Yes |
| _ga | Google (GA4) | Third-party | Analytics | Assigns a unique pseudonymous identifier to distinguish users; used to calculate session and user counts in Google Analytics 4. | 13 months | Yes |
| _gid | Google (GA4) | Third-party | Analytics | Distinguishes users; used to throttle request rate and expire session data after 24 hours. | 24 hours | Yes |
| _ga_[container-id] | Google (GA4) | Third-party | Analytics | Persists session state for a specific GA4 measurement ID; used to maintain and record session-level data. | 13 months | Yes |
| TawkConnectionTime | Tawk.to | Third-party | Strictly Necessary (where chat widget is actively used) | Records the time of connection to the Tawk.to chat service; technically necessary to maintain the live-chat session requested by the user. | Session | No — session / technically necessary when chat is initiated |
| twk_idm_key | Tawk.to | Third-party | Functional | Identifies returning visitors to the Tawk.to chat widget so prior chat context may be retrieved. | 6 months | Yes |
| twk_uuid_[hash] | Tawk.to | Third-party | Functional | Assigns a pseudonymous visitor identifier to the Tawk.to chat session. | 6 months | Yes |
| __cf_bm | Cloudflare | Third-party | Strictly Necessary | Cloudflare bot-management cookie; supports bot score computation and distinguishes humans from automated clients. Required for site security. | 30 minutes | No — strictly necessary for security |
| cf_clearance | Cloudflare | Third-party | Strictly Necessary | Stores the result of a Cloudflare challenge so the visitor is not re-challenged on subsequent requests within the validity window. | 30 minutes – 1 year (varies by challenge type) | No — strictly necessary for security |
| cf-turnstile-t (local storage token) | Cloudflare Turnstile | Third-party | Strictly Necessary | Cloudflare Turnstile CAPTCHA token stored temporarily to verify that a form submission originates from a human user; prevents automated abuse of contact or onboarding forms. | Session / token TTL (typically 5 minutes) | No — strictly necessary for form security |
We use Google Analytics 4, operated by Google LLC (and, for users in the European Economic Area and United Kingdom, Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland), to understand aggregate patterns of website use. GA4 collects information such as pages visited, time spent on pages, approximate geographic region (derived from IP address), device type, and referral source. We have configured GA4 with IP anonymisation enabled, meaning the final octet of IPv4 addresses and the last 80 bits of IPv6 addresses are masked before storage. Despite this, Google may still process data as a Processor on our behalf; the applicable legal basis for that processing is your consent under Article 6(1)(a) GDPR combined with our use of Google's Data Processing Amendment. Data collected via GA4 is transmitted to Google servers. Google may transfer data outside the EEA; Google relies on the EU–US Data Privacy Framework and Standard Contractual Clauses as transfer mechanisms. For further information, see Google's privacy policy at policies.google.com/privacy. If you do not wish GA4 to collect data about your browsing, you may: (a) decline analytics Cookies when prompted by our cookie banner; (b) install the Google Analytics Opt-out Browser Add-on, available at https://tools.google.com/dlpage/gaoptout; or (c) adjust your browser settings as described in Section 09 of this policy. Withdrawing consent or installing the opt-out add-on will not affect the functionality of codegotech.com.
We embed a live-chat widget provided by Tawk.to Inc., 187 East Warm Springs Rd, SB298, Las Vegas, Nevada 89119, USA ("Tawk.to"). This widget allows visitors to send enquiries to our team in real time. The Tawk.to widget loads a JavaScript file from Tawk.to's servers when the page loads. However, Cookies that persist visitor identity (twk_idm_key and twk_uuid_[hash]) are only set after you provide consent through our cookie banner. The session-level TawkConnectionTime cookie is treated as strictly necessary only in the specific context where you actively initiate a chat; it does not persist beyond the session. When you use the chat widget, Tawk.to may collect your IP address, browser type, the pages you have viewed, and any Personal Data you voluntarily provide in the chat. This data is processed by Tawk.to as a Processor acting on our behalf under a Data Processing Agreement. Tawk.to is based in the United States; international transfers rely on Standard Contractual Clauses. Please refer to Tawk.to's privacy policy at tawk.to/privacy-policy for further information. If you prefer not to use the live-chat widget, you may contact us directly at banking@codegotech.com. Disabling functional Cookies will not prevent the chat widget from appearing visually, but it will prevent Tawk.to from identifying you as a returning visitor.
codegotech.com is served via Cloudflare, Inc., 101 Townsend St, San Francisco, CA 94107, USA. Cloudflare acts as our content delivery network and provides DDoS protection, web application firewall services, and bot management. In this capacity, Cloudflare acts as a Processor on our behalf pursuant to Cloudflare's Data Processing Addendum. Bot management (__cf_bm). Cloudflare places the __cf_bm cookie on your device to detect and mitigate automated bot traffic. This cookie processes a limited set of technical signals (such as request timing and browser characteristics) and is retained for 30 minutes. It is strictly necessary for the security and availability of the website and does not require consent. Challenge clearance (cf_clearance). If Cloudflare presents a challenge page (for example, following detection of anomalous traffic), the cf_clearance cookie records the successful completion of that challenge so you are not re-challenged within the same session or clearance window. This is strictly necessary for site operation. Cloudflare Turnstile. Where contact or onboarding forms are protected by Cloudflare Turnstile, a privacy-preserving CAPTCHA alternative, Cloudflare may store a short-lived token (typically via local storage rather than a persistent cookie) to confirm that form submissions originate from a human user. This is strictly necessary to prevent automated abuse and does not require consent. Turnstile is designed to avoid invasive tracking; it does not use personalised advertising signals. Cloudflare processes data in the United States and other jurisdictions. Transfers outside the EEA rely on Standard Contractual Clauses. For Cloudflare's privacy policy, see cloudflare.com/privacypolicy.
We obtain and record cookie consent through a banner implemented via our own cookie-banner.js script, which loads when you first visit codegotech.com. The banner presents you with clear, layered information about the Cookies we use and invites you to accept all non-essential Cookies, accept only strictly necessary Cookies, or manage your preferences by category. The consent mechanism is designed to meet the requirements of Article 7 GDPR and Article 5(3) of the ePrivacy Directive. Specifically: — Consent is requested before non-essential Cookies are set. No analytics or functional Cookies are loaded prior to a positive consent action. — The consent request is granular: you may accept analytics Cookies independently of functional Cookies. — Consent is freely given: declining non-essential Cookies carries no penalty and the core website content remains accessible. — Your consent choice is recorded in a first-party cookie named cookie_consent (see Section 03) with a 12-month validity. After 12 months, you will be asked to renew your consent. — You may withdraw or amend your consent at any time by clicking the "Cookie Settings" link in the website footer, which re-opens the consent interface. Withdrawal of consent does not affect the lawfulness of processing carried out on the basis of consent before its withdrawal (Article 7(3) GDPR). We do not rely on pre-ticked boxes, scrolling, or continued browsing as indicators of consent.
Each Cookie has its own retention period, which is set out in the table in Section 03. As a general summary: Session cookies expire automatically when you close your browser. This includes TawkConnectionTime. Short-term cookies (up to 30 minutes) include Cloudflare's security cookies (__cf_bm), which expire within 30 minutes of the last request. Medium-term cookies (up to 6 months) include Tawk.to visitor-identity cookies. Long-term cookies (up to 13 months) include GA4 analytics cookies (_ga, _ga_[container-id]) and our own consent and language-preference cookies. Where a Cookie is set by a third party, the retention period is controlled by that third party. We review third-party Cookie durations when we update this policy. If a third party changes its Cookie retention without notice to us, the table in Section 03 will be updated at the next scheduled review. Personal Data collected via Cookies is retained only for as long as necessary for the stated purpose or as required by law. For further information on our overall data retention practices, please refer to our Privacy Policy.
You have several means of controlling Cookies, in addition to the consent interface described in Section 07. Cookie banner / preference centre. Click "Cookie Settings" in the footer of any page on codegotech.com to revisit your consent choices at any time. Changes take effect immediately. Browser settings. All major browsers allow you to block or delete Cookies through their privacy or security settings. Instructions are available at: — Chrome: support.google.com/chrome/answer/95647 — Firefox: support.mozilla.org/en-US/kb/cookies-information-websites-store-on-your-computer — Safari: support.apple.com/en-gb/guide/safari/sfri11471/mac — Microsoft Edge: support.microsoft.com/en-gb/windows/manage-cookies-in-microsoft-edge Note that blocking all Cookies may impair the functionality of codegotech.com and other websites. Strictly necessary Cookies cannot be disabled through our preference centre, although your browser may override this if configured to reject all Cookies. Google Analytics opt-out. To prevent GA4 from collecting data about your visits across all websites (not only codegotech.com), install the Google Analytics Opt-out Browser Add-on, available at https://tools.google.com/dlpage/gaoptout. This add-on instructs the Google Analytics JavaScript not to transmit data to Google. Tawk.to. To prevent Tawk.to from setting persistent visitor Cookies, decline functional Cookies via our cookie banner. You may also disable cookies for tawk.to in your browser settings. Do Not Track. Some browsers allow you to send a "Do Not Track" signal. We acknowledge this signal but, as there is no legally recognised standard for its interpretation, we do not alter our Cookie behaviour solely in response to it. Your consent choices via our cookie banner remain the primary control mechanism.
Some Cookies set on codegotech.com result in Personal Data being transmitted to, or stored on servers in, countries outside the European Economic Area (EEA), including the United States. This applies specifically to data collected by Google (GA4), Tawk.to, and Cloudflare. Where such transfers occur, we ensure they are subject to appropriate safeguards as required by Chapter V of the GDPR. The mechanisms we rely upon are: — Standard Contractual Clauses (SCCs) approved by the European Commission under Article 46(2)(c) GDPR, incorporated into our Data Processing Agreements with Google Ireland Limited, Tawk.to Inc., and Cloudflare Inc. — EU–US Data Privacy Framework: Google LLC participates in the EU–US Data Privacy Framework, which the European Commission recognised as providing an adequate level of protection by adequacy decision of 10 July 2023. By accepting analytics or functional Cookies, you are informed that your data may be transferred to these third countries on the basis of the safeguards described above. You may obtain copies of the applicable SCCs by contacting us at banking@codegotech.com. Codego Group LTD is registered in Malta and is subject to Maltese data protection law as implemented through the Data Protection Act (Chapter 586 of the Laws of Malta). The supervisory authority for Malta is the Information and Data Protection Commissioner (IDPC), reachable at https://idpc.org.mt.
To the extent that Cookie-related processing constitutes the processing of Personal Data, you hold the following rights under the GDPR, exercisable against Codego Group LTD as Controller: Right of access (Art. 15 GDPR). You may request confirmation of whether we process Personal Data about you and, if so, a copy of that data and supplementary information about the processing. Right to rectification (Art. 16 GDPR). You may request correction of inaccurate Personal Data. Right to erasure (Art. 17 GDPR). You may request deletion of Personal Data where, for example, you withdraw consent and no other legal basis applies, or where the data is no longer necessary for the purpose for which it was collected. Right to restriction (Art. 18 GDPR). You may request that processing be restricted in certain circumstances, for example while the accuracy of data is contested. Right to data portability (Art. 20 GDPR). Where processing is based on consent and carried out by automated means, you may request a machine-readable copy of your Personal Data. Right to withdraw consent (Art. 7(3) GDPR). You may withdraw consent for Cookie-based processing at any time via the preference centre, without affecting the lawfulness of prior processing. Right to object (Art. 21 GDPR). Where processing is based on legitimate interests (Art. 6(1)(f)), you may object. We will assess whether our legitimate interests override your rights. To exercise any of these rights, contact us at banking@codegotech.com. We will respond within one calendar month in accordance with Article 12 GDPR. You also have the right to lodge a complaint with the IDPC at https://idpc.org.mt or, if you are located in another EU Member State, with the supervisory authority of your habitual residence.
Controller. The Controller responsible for Cookie-related processing on codegotech.com is: Codego Group LTD Registered in Malta Website: codegotech.com E-mail: banking@codegotech.com Questions and requests. If you have any questions about this Cookie Policy, wish to exercise your data protection rights, or wish to obtain copies of our Data Processing Agreements with third-party cookie providers, please contact us at banking@codegotech.com. We aim to acknowledge all queries within five working days and to provide a substantive response within one calendar month. Complaints. If you are not satisfied with our response, you have the right to lodge a complaint with the Information and Data Protection Commissioner of Malta (IDPC): Information and Data Protection Commissioner Website: https://idpc.org.mt Level 2, Airways House, High Street, Sliema SLM 1549, Malta If you habitually reside in another EU Member State, you may instead lodge a complaint with the supervisory authority of that Member State. Related documents. This policy should be read alongside our Privacy Policy, available at codegotech.com/privacy-policy. Updates to this policy. We review this Cookie Policy at least annually and whenever a material change occurs in our Cookie deployment. The current version is identified by the "Last reviewed" date in the header of this page. Where changes are material, we will notify you via the cookie banner on your next visit and invite renewed consent where required. This Cookie Policy was last reviewed and updated on 5 May 2026.