Strictly necessary
Used for things you've actively requested — staying signed in to the admin or client dashboard, remembering your language preference, securing forms against bot abuse. These cookies are not optional because the corresponding feature would not work without them.
better-auth.session_token (Better Auth) — sign-in session for staff and clients. First-party. 7 days, sliding renewal.
NEXT_LOCALE — chosen language (en / el). First-party. 1 year.
po-unlock-<eventId> — proof that the visitor entered the password for a private event. First-party, httpOnly. 30 days.
plusone-cc — your cookie-banner choice (essential / all). First-party. 1 year.
cf_bm (Cloudflare) — bot-management challenge. Third-party (Cloudflare on our behalf). 30 minutes.
Analytics (optional)
If you opt in, we measure aggregate site traffic (pages, country, device) via Vercel Analytics and Vercel Speed Insights. No cross-site tracking, no advertising profile, no individual identification. You can decline at any time via the "Cookie preferences" link in the footer.
_vercel_analytics — anonymous session sample for traffic measurement. First-party. 30 minutes.
Managing cookies
On first visit you'll see a banner asking your preference. You can re-open it any time via "Cookie preferences" in the footer, or clear cookies in your browser settings. You can also block all cookies at the browser level — some features (like staying signed in) won't work without strictly-necessary cookies.
Browser shortcuts: Chrome — Settings → Privacy → Cookies and other site data. Safari — Settings → Privacy → Manage Website Data. Firefox — Settings → Privacy & Security → Cookies and Site Data.