ZTZT.dev - Cookie Policy

Cookie Policy

ZTZT.dev uses a single technical cookie to ensure secure browsing, in compliance with the EU General Data Protection Regulation (GDPR) and ePrivacy Directive. This policy explains the cookie's purpose and security measures.

Our Use of Cookies

We use only one cookie, __Host-PHPSESSID, which is strictly necessary for the functionality and security of our website. It is used for:

• Content Security Policy (CSP): Stores a nonce to prevent Cross-Site Scripting (XSS) attacks by allowing only trusted scripts.
• Cross-Site Request Forgery (CSRF) Protection: Stores a token to secure form submissions.

This cookie is exempt from requiring user consent under GDPR and ePrivacy Directive, as it is essential for delivering the secure browsing experience you requested.

Cookie Security

The __Host-PHPSESSID cookie is configured with the following security features:

• Secure: Transmitted only over HTTPS connections.
• HttpOnly: Inaccessible to JavaScript, reducing XSS risks.
• SameSite=Strict: Restricted to same-site requests, preventing CSRF attacks.
• __Host- prefix: Ensures the cookie is only valid for the ztzt.dev domain, not subdomains unless explicitly set.
• 30-minute lifetime: Expires after 30 minutes to minimize exposure.

No tracking, analytics, or marketing cookies are used on ZTZT.dev.

Managing Cookies

As __Host-PHPSESSID is strictly necessary, it cannot be disabled without affecting website functionality. You can clear cookies via your browser settings, but this may require re-authentication for certain features.

Contact Us

For questions about our cookie policy, contact Santosh Pandit at privacy@ztzt.dev or via LinkedIn.