Summary
What cookies are. Cookies are small text files that a website stores in your browser when you visit it. They allow the site to remember technical information between pages and visits — for example, the fact that you have just signed in, that you have solved an anti-bot challenge, or that you have set a preference. Similar technologies include localStorage, sessionStorage, and tracking pixels; in this policy we use the term “cookies” generically for all such browser-side storage mechanisms, regardless of the specific technical implementation.
Why we use them.reclamepenet.ro uses cookies exclusively for functionality that is indispensable to operating the platform: keeping you signed in across requests, validating the security challenges that prevent automated abuse, and preventing CSRF (cross-site request forgery) attacks. We do not use cookies for behavioral analytics, for profiling you for advertising purposes, or for relaying your identity to third-party marketing networks. The “Functional”, “Analytics” and “Marketing” categories are declared in full for transparency, but they are not populated as of the date of this policy.
How you can manage them.Strictly necessary cookies cannot be disabled from inside the site, because without them authentication and anti-abuse protection do not work — but you can delete them at any time from your browser settings. For every other category (when any exist) we will request explicit consent through a banner on your first visit, and that consent can be withdrawn at any moment. Details about the withdrawal mechanism are in the “How to withdraw your consent” section below.
Categories
a) Strictly necessary
Purpose: these cookies are indispensable to the basic operation of the platform — without them you cannot sign in, you cannot complete a form that is protected against abuse, and we cannot protect your requests against CSRF attacks.
Current population: this category contains three technical cookies, detailed in the table below: the authentication session token, the challenge cookie of the Cloudflare Turnstile anti-abuse system, and a CSRF token.
Consent posture: these cookies are set automatically based on the legitimate interest of operating the service technically, in line with recital 30 of the GDPR and article 4(5) of Romanian Law 506/2004 — “strictly necessary” for providing the service that the user has expressly requested. We do not request separate consent for them, because without them the site does not function. You can delete them manually from your browser, but the direct consequence is that you will be signed out and unable to use the platform.
b) Functional / Preferences
Purpose: cookies that would store non-essential preferences — for example, your chosen visual theme, your preferred language beyond what is auto-detected, or other interface personalization choices.
Current population: no cookies in this category as of the date of this policy. If we add such cookies in the future, we will update this policy, increment its version, and request a new consent through the banner.
Consent posture: explicit opt-in. Refusal does not affect the basic functionality of the platform in any way.
c) Analytics
Purpose: cookies that would allow aggregate measurement of interaction with the site — pages visited, session duration, conversion flows — in order to understand what works and what needs to be improved at the product level.
Current population: no cookies in this category as of the date of this policy. Operational monitoring of the application is performed exclusively through server-side monitoring infrastructure, without browser cookies and without persistent user-level identifiers. The processing categories of this infrastructure are described in the sub-processor list.
Consent posture: explicit opt-in, if and when introduced. Refusal does not affect platform functionality.
d) Marketing
Purpose: cookies that would allow cross-site tracking, advertising retargeting, or conversion attribution to third-party marketing networks.
Current population: no cookies in this category as of the date of this policy. reclamepenet.ro does not run advertising pixels, does not integrate retargeting networks, and does not share identifiers with third-party advertising platforms.
Consent posture: explicit opt-in, with symmetrical refusal (the same effort required to “Decline” as to “Accept”), in line with EDPB guidelines 03/2022 on consent design patterns (“dark patterns”).
Cookie list
| Name | Purpose | Retention |
|---|---|---|
sb-*-auth-token | Authentication session token. Allows the platform to recognize you across requests after you have signed in and to display the content of your own workspace. Set at sign-in, removed at sign-out or upon session expiry. | Session duration (periodic token rotation; deletion on logout) |
cf_chl_* | Challenge cookie of the Cloudflare Turnstile system, used on pages with public forms (for example /conectare) to validate that the request comes from a real browser and not a bot. It does not identify the person — only the device/browser within the validation window. | Up to 30 minutes |
csrf-token | Anti-CSRF (cross-site request forgery) token. Ensures that an action triggered from a form or a POST request actually originates from our interface and not from a third-party site attempting to force an action on your behalf. | Current session (regenerated on each response; does not persist after the browser is closed) |
How to withdraw your consent
The mechanism for withdrawing consent must be as simple as the mechanism for granting it. You have two practical paths and a fallback path:
- Re-display the cookie banner: visit /cookies?reset=1 to clear your previous consent choices and re-trigger the first-visit banner. You can then refuse or selectively accept the non-essential categories, or change your earlier choices.
- Self-service via the privacy panel: the /setari/confidentialitate panel lets you centrally manage your active consents, download a copy of your personal data, and request account deletion. This page will be available soon; until then, or if you encounter any difficulty, write to us directly at privacy@reclamepenet.ro and a human operator will process your request within the legal one-month window provided by article 12(3) of the GDPR.
- Browser-level deletion: you can also delete all cookies set by reclamepenet.ro directly from your browser’s settings panel (Chrome, Firefox, Safari, Edge — all of them offer this option under “Privacy & Security” or equivalent). Note that this action will sign you out of the platform and invalidate the current session; you will need to sign in again on your next visit.
Withdrawing consent has effect for the future and does not affect the lawfulness of processing based on consent before its withdrawal, in line with article 7(3) of the GDPR.
Legal basis
The setting and reading of cookies on your terminal device are regulated by the ePrivacy Directive 2002/58/EC, transposed into Romanian law by Law 506/2004 on the processing of personal data and the protection of privacy in the electronic communications sector (article 4). For non-essential cookies, the legal basis for the processing of the resulting personal data is your consent, in line with article 6(1)(a) and article 7 of Regulation (EU) 2016/679 (GDPR). For strictly necessary cookies we rely on the “strictly necessary for providing the service expressly requested by the user” exception set out in article 4(5)(b) of Law 506/2004.
The privacy policy describes the treatment of all personal data processed by reclamepenet.ro, including data resulting from cookies.
Changes to this policy
This is version 1.0, in force from 2 May 2026. We will update this policy whenever we introduce a new cookie, change the purpose of an existing one, or change a relevant sub-processor. Minor changes (language clarifications, typographical corrections) are noted by a new “last updated” date, without re-requesting consent. Material changes — any new non-essential cookie, or any change in the processing category — trigger re-display of the consent banner on your next visit and will request a new explicit acceptance from you.