Cookie Policy

Last updated: 2026-06
Version: 2026-06


1. Introduction

This Cookie Policy explains how topsky.app ("Service," "we," "us") uses cookies and similar technologies. Please read this policy alongside our Privacy Policy and Terms of Service.


2. What Are Cookies?

Cookies are small text files stored on your device when you visit a website. They serve various purposes:

  • Session management: Keeping you logged in
  • Security: Detecting and preventing abuse
  • Preferences: Remembering your settings
  • Analytics: Understanding how visitors use the service

You can control cookies via your browser settings, but disabling some cookies may impair functionality.


3. Types of Cookies We Use

3.1 Strictly Necessary Cookies

These cookies are essential for the Service to function. They do not require your consent but are disclosed for transparency.

Cookie NamePurposeSet ByLifetimeData Type
__Secure-next-auth.session-tokenNextAuth session authentication tokentopsky.app7 days or until logoutEncrypted JWT token
__Secure-next-auth.callback-urlNextAuth post-login redirect URLtopsky.appSession (temporary)URL string

Why necessary: Without these cookies, you cannot log in or maintain a secure session. These are required for the authentication system to function.

3.2 Security & Abuse Prevention

Cookie NamePurposeSet ByLifetimeData Type
Cloudflare Turnstile cookiesCAPTCHA verification to prevent bot abuse on registration and password resetCloudflareVariableSecurity token

See Cloudflare's Cookie Policy for details on Turnstile cookies and data processing.

3.3 Analytics & Tracking Cookies

topsky.app does not use Google Analytics, Plausible, Mixpanel, or any third-party analytics platforms. No analytics data is shared with or sent to any third party.

We use a single first-party, anonymous usage-analytics cookie to understand aggregate traffic (how many visits we get and the web-vs-desktop-app split). It contains no personal data.

Cookie NamePurposeSet ByLifetimeData Type
ts_aidFirst-party anonymous usage analytics (aggregate visit counts, web vs. desktop-app split)topsky.app (first-party)6 monthsRandom anonymous identifier — stored on our servers only as a SHA-256 hash; no IP address, no personal data

What we do with it:

  • Count page views and unique visits in aggregate, and distinguish web vs. desktop-app usage.

What we do not do:

  • Build behavioural profiles or track user journeys for marketing
  • Run conversion funnels or A/B click-through tracking
  • Use the data for advertising, or share it with any third party

Server-side analytics records are automatically deleted after 180 days (database TTL). The ts_aid identifier is anonymous and is not linked to your identity unless you are signed in, in which case it may be associated with your account for the same aggregate purposes only.

3.4 Advertising & Marketing Cookies

topsky.app does not use advertising networks, retargeting pixels, or marketing cookies.

We do not:

  • Track you for targeted advertising
  • Share data with ad networks
  • Use Facebook Pixel, Google Ads, or similar platforms
  • Send data to marketing platforms

4. Cookie Consent & Your Choices

4.1 Consent Not Required for Strictly Necessary Cookies

Under ePrivacy law (Directive 2002/58/EC), cookies that are strictly necessary for the service function do not require prior consent. However, we provide this notice as transparency.

4.2 How to Control Cookies

In Your Browser

Most browsers allow you to:

  • View cookies stored on your device
  • Delete cookies individually or all at once
  • Block cookies from specific sites or all sites
  • Manage cookie settings (allow all, block all, or allow selectively)

Browser-specific instructions:

  • Chrome: Settings → Privacy & Security → Cookies and other site data
  • Firefox: Options → Privacy & Security → Cookies and Site Data
  • Safari: Preferences → Privacy → Manage Website Data
  • Edge: Settings → Privacy, Search & Services → Clear browsing data

Impact of Disabling Cookies

If you disable strictly necessary cookies:

  • You will not be able to log in
  • Session authentication will fail
  • You cannot use the Service

Recommendation: Keep strictly necessary cookies enabled; all others are optional.

4.3 Opt-Out of Third-Party Services

Cloudflare Turnstile

Turnstile is used for security purposes. To learn more or opt out of certain Cloudflare services:


5. Local Storage & Similar Technologies

In addition to cookies, topsky.app may use:

5.1 Local Storage

  • Purpose: Storing user preferences (theme)
  • Data retained: UI preferences only (no personal data)
  • Clearing: Done via browser Developer Tools or manually

5.2 Session Storage

  • Purpose: Temporary session data (form drafts, search filters)
  • Lifetime: Until you close your browser tab
  • Clearing: Automatic upon tab/browser closure

6. Third-Party Services & Their Cookies

6.1 Cloudflare Turnstile

Service: Bot protection via CAPTCHA on registration and password reset
Cookies: May set cookies for security verification
Data: IP address, browser fingerprinting signals
Privacy Policy: https://www.cloudflare.com/en-gb/privacy/
Cookie Policy: https://www.cloudflare.com/en-gb/cookie-policy/

6.2 No Other Third-Party Cookie-Setting Services

We do not use:

  • Google Analytics or Google Tag Manager
  • Facebook Pixel
  • LinkedIn tracking
  • HubSpot or other CRM tracking pixels
  • Heat mapping or session recording tools (FullStory, Hotjar, etc.)
  • A/B testing platforms that set tracking cookies

7. Retention of Cookie Data

7.1 Session Tokens

  • Lifetime: 7 days of inactivity or until you log out
  • Storage: Encrypted in cookies; decrypted server-side only
  • Automatic deletion: Upon expiry or logout

7.2 Turnstile Security Cookies


8. Changes to This Cookie Policy

We may update this policy to reflect:

  • New cookies or technologies introduced
  • Changes to third-party services
  • Legal or regulatory requirements

Updates will be posted here with a new "Last updated" date and "Version" number. Continued use of the Service after posting changes constitutes acceptance of the updated policy.


9. International Transfers

Cookies set by topsky.app are stored on your device (client-side) and transmitted to our UK/EU-based servers. Cloudflare Turnstile cookies may involve data transfers to Cloudflare's global infrastructure.

For details on international data transfers, see our Privacy Policy (Section 6).


10. Compliance

This Cookie Policy complies with:

  • Privacy and Electronic Communications Regulations 2003 (SI 2003 No. 2426): Requiring notice and consent for non-essential cookies
  • UK GDPR: Treating cookie data as personal data requiring legal basis
  • Data Protection Act 2018: UK data protection law
  • CCPA (California): Consumer disclosure of cookies and tracking

11. Contact & Questions

If you have questions about our use of cookies or wish to request further information:

Email: kontakt@top-sky.eu
Privacy Policy: https://topsky.app/privacy
Terms of Service: https://topsky.app/terms

We aim to respond to cookie-related inquiries within 15 business days.


End of Cookie Policy