Cookie Policy
1. What are cookies?
A cookie is a small text file that a website places on your device (computer, tablet, smartphone) when you visit it. Cookies are widely used to make websites work, to make them work more efficiently, and to provide information to website owners.
This Cookie Policy explains what cookies and similar technologies (pixel tags, local storage, fingerprinting) we use on involv-intranet.com, why we use them, and how you can control them.
2. Legal framework
- Article 5(3) of the EU ePrivacy Directive (2002/58/EC, as amended)
- Article 129 of the Belgian Electronic Communications Act of 13 June 2005
- GDPR (Regulation 2016/679) for any personal data processed via cookies
- The Belgian Data Protection Authority’s (APD/GBA) cookie guidance of October 2023
Strictly necessary cookies do not require consent. All other cookies (functional, analytics, marketing) require your prior, freely given, specific, informed, unambiguous, and explicit consent.
3. Categories of cookies we use
3.1 Strictly necessary cookies (no consent required)
Essential to operate the Website, secure it against abuse, and provide the services you request.
| Cookie | Purpose | Provider | Duration |
|---|---|---|---|
__cf_bm | Bot detection & DDoS protection | Cloudflare Inc. | 30 minutes |
cookie_consent / CookieScriptConsent | Stores your cookie preferences | CookieScript | 12 months |
| WordPress session cookies | Session & language preference | involv-intranet.com | Session / 1 year |
3.2 Functional cookies (consent required)
Enable enhanced functionality such as video playback, chat, and content embeds.
| Cookie | Purpose | Provider | Duration | Country |
|---|---|---|---|---|
__hssc, __hstc, hubspotutk, messagesUtk | HubSpot live chat, meetings, forms & personalisation | HubSpot Inc. | up to 13 months | USA — DPF + SCCs |
VISITOR_INFO1_LIVE, YSC, __Secure-*PSID | YouTube embedded video (when played) | Google LLC | up to 24 months | USA — DPF |
3.3 Analytics cookies (consent required)
Help us understand how visitors interact with the Website. Some are set via our first-party tracking endpoint at collector.involv-intranet.com (see section 4.1).
| Cookie | Purpose | Provider | Duration | Country |
|---|---|---|---|---|
_ga, _ga_* | Google Analytics 4 — distinguish users | Google LLC | 13 months | USA — DPF |
FPAU, FPGSID | Google first-party tracking via server-side GTM | Google LLC | up to 24 months | USA — DPF |
_clck, _clsk | Microsoft Clarity — heatmaps and session recordings. Captures mouse movements, clicks, scrolls and form interactions. Sensitive fields are masked by default. | Microsoft Corporation | up to 12 months | USA — DPF |
__hssc, __hstc analytics | HubSpot website analytics | HubSpot Inc. | up to 13 months | USA — DPF |
3.4 Marketing & advertising cookies (consent required)
Used to deliver advertisements more relevant to you and measure the effectiveness of advertising campaigns.
| Cookie | Purpose | Provider | Duration | Country |
|---|---|---|---|---|
_gcl_au, _gcl_aw, _gac_* | Google Ads conversion tracking & remarketing | Google LLC | up to 90 days | USA — DPF |
__mggpc, IDE, test_cookie | Google DoubleClick advertising | Google LLC | up to 13 months | USA — DPF |
_fbp, fr | Meta Pixel — Facebook/Instagram retargeting and conversion measurement | Meta Platforms Ireland Ltd | up to 90 days | Ireland (EU) + USA — DPF |
| Referly tracking cookies | Affiliate / partner referral tracking | Referly Inc. (Dover, DE, USA) | up to 12 months | USA — SCCs |
“DPF” = EU–U.S. Data Privacy Framework. “SCCs” = Standard Contractual Clauses. See our Privacy Statement for international transfer details.
4. Similar technologies
4.1 Server-side tracking via collector.involv-intranet.com
We operate a server-side Google Tag Manager (sGTM) container at collector.involv-intranet.com. This endpoint acts as a first-party proxy that receives tracking events from your browser and forwards them to the vendors listed in section 3 (Google Analytics, Google Ads, Meta Pixel, Microsoft Clarity, HubSpot).
- More accurate measurement (resilient to third-party cookie blocking)
- Better data quality (we control what data leaves the visitor’s browser)
- Allows us to limit what is shared with each vendor (data minimisation)
- We still ask for your consent before activating non-essential tracking
- Your “Reject all” choice blocks all server-side tracking too
- The vendors still receive your data subject to the safeguards above
4.2 Other technologies
- Local storage / session storage — to remember preferences within a session or across visits.
- Pixel tags / web beacons — small images used to count visitors (treated like cookies for consent purposes).
- Fingerprinting — we do not use device fingerprinting or other identification techniques outside the scope of this Cookie Policy.
5. How to manage your cookie preferences
5.1 Via our cookie banner
When you first visit the Website, you see a cookie banner with three options:
- Accept all — consents to all categories
- Reject all — consents only to strictly necessary cookies
- Customise — choose per category
You can change or withdraw your consent at any time by clicking the “Cookie preferences” link in the footer of every page.
5.2 Via your browser
Most browsers let you control cookies through their settings: Chrome · Firefox · Safari · Edge
5.3 Opt out of third-party advertising
- Google Ads: adssettings.google.com
- Your Online Choices (EDAA): youronlinechoices.eu
- Network Advertising Initiative (NAI): optout.networkadvertising.org
- Meta: facebook.com/help/568137493302217
5.4 Do Not Track
Our Website does not currently respond to “Do Not Track” browser signals because there is no industry consensus on how to interpret them. We respect your choice through the cookie banner instead.
6. Changes to this Cookie Policy
We may update this Cookie Policy from time to time to reflect changes in our practices, in the cookies we use, or in applicable law. Material changes will be communicated via the cookie banner.
7. Contact
If you have any question about our use of cookies, contact: [email protected]
You also have the right to lodge a complaint with the Belgian Data Protection Authority (APD/GBA) — see our Privacy Statement section 9.
