Skip to main content
NEWIntroducing Norypt MDM — anonymity-first mobile device management for activists, journalists & privacy teams.Learn more →
Norypt

Legal

Cookie Policy

Last updated: March 2026 · Applies to norypt.com

Zero Persistent Storage

Norypt does not write cookies, localStorage, sessionStorage, IndexedDB, or any other persistent data to your device. Cookie consent choices apply only for your current session and are forgotten the moment you close or refresh the page. This is a deliberate privacy design choice, consistent with our products.

1. What Are Cookies?

Cookies are small text files that websites typically place on your device to store information between visits. They are governed in the EU by the ePrivacy Directive (2002/58/EC, as amended) and the General Data Protection Regulation (GDPR, Regulation 2016/679). Norypt's approach exceeds these requirements by storing nothing at all.

2. Strictly Necessary (Always Active)

Norypt itself sets zero cookies — no first-party cookies are written to your device at any point. However, our infrastructure provider Cloudflare may set one technical cookie as part of its bot-protection layer. This is set by Cloudflare's edge network, not by Norypt's application code, and cannot be disabled without disabling the security layer entirely.

NamePurposeDurationProvider
__cf_bmBot detection and management. Set automatically by Cloudflare's infrastructure to distinguish human visitors from automated traffic. No personal data is profiled.30 minutesCloudflare, Inc.

Cloudflare's privacy policy: cloudflare.com/privacypolicy. Cloudflare processes data under Standard Contractual Clauses as a sub-processor.

3. Optional Categories

Norypt does not currently use analytics, marketing, advertising, or functional third-party scripts. No optional cookies are set. The consent panel on this site is shown to EU/EEA visitors as a transparency mechanism — at present, there is nothing to enable or disable beyond the Cloudflare infrastructure cookie described above.

Analytics

Not in use. No analytics scripts are loaded on this site.

Functional

Not in use. No functional third-party scripts (e.g. chat) are active.

Marketing

Not in use. Norypt does not use advertising networks or retargeting. If this changes, this policy will be updated before any marketing scripts are deployed.

4. Managing Your Choices

A consent panel is shown to EU/EEA visitors on every page load. You can also access it at any time using the "Cookie Settings" button visible at the bottom-right of the screen during your session.

Because we use no persistent storage, withdrawing consent is instant and complete — simply refresh the page and all optional scripts are removed. No data was retained. You may also manage cookies via your browser settings, though this is not necessary given our zero-storage approach.

5. Your Rights Under GDPR

  • Right to withdraw consent — Refresh the page. Consent is cleared. No residual data exists.
  • Right of access — We hold no cookie or tracking data about you to access.
  • Right to erasure — Not applicable: nothing is stored to erase.
  • Right to object — Use the consent panel to disable any optional category at any time.
  • Right to lodge a complaint — You may contact your national supervisory authority or any EU data protection authority.

6. Contact

Questions about this policy or your privacy rights:

Email: norypt@proton.me

Address: Norypt, based in Europe

Supervisory Authority: You have the right to lodge a complaint with the supervisory authority in your EU member state of residence. See edpb.europa.eu for a full list.