Cookie policy

komplai sets no tracking cookies. We use only first-party functional cookies, and only when you sign in. This page documents which cookies we use and why, so you can document it for your municipality's IT security team or legal counsel.

Version 1.0 · 20 May 2026

What are cookies

Cookies are small text files a site stores in your browser. Typically used to remember your settings (language, login) or to track your behaviour across sites (ads, analytics). komplai uses ONLY the former category — we set no cookies that follow you around the web.

Which cookies we use

We set two types: (1) A session cookie (`__Secure-authjs.session-token`) when you sign in to hub.komplai.dk, docs.komplai.dk, or templates.komplai.dk. Expires when you sign out or after 30 days of inactivity. (2) A CSRF token cookie (`__Host-authjs.csrf-token`) that protects login forms against cross-site request forgery. Both are necessary to sign in and submit forms securely; they cannot be opted out of without breaking the platform. Both are HTTPS-only and `SameSite=Lax`, so they are never sent to third-party domains.

Third-party cookies

None. komplai does not integrate Google Analytics, Meta Pixel, LinkedIn Insight Tag, or any other third-party trackers. Our web analytics run on our own server at Hetzner Germany (see Privacy → Web analytics for details) and are cookie-free — a daily visitor hash is derived from IP + User-Agent + an internal salt, which rotates at midnight and on every server restart.

How to refuse cookies

Because we only set strictly necessary functional cookies, there is no consent to give or withdraw. You can delete komplai's cookies via your browser settings at any time; doing so will log you out of hub/docs/templates, but will not otherwise affect your use of our public surfaces (komplai.dk, redact.komplai.dk, demo.komplai.dk).

Changes to this policy

If we ever add a cookie that requires consent, we will update this page and show a consent banner BEFORE the cookie is set. This page is versioned; the 'last updated' date at the top tells you when the policy was last revised.