Cookie Policy for Codego Press — last reviewed 5 May 2026.
This Cookie Policy explains how Codego Press, the editorial publication of Codego Group LTD (a company registered in Malta), uses cookies and similar technologies on news.codegotech.com (the "Site"). It applies to all visitors, readers, and Members who access the Site, regardless of location. Codego Group LTD acts as the Data Controller for all Personal Data processed in connection with the Site. This Policy should be read alongside our Privacy Policy, which sets out the broader legal basis for processing your Personal Data. Where cookies involve the storage of, or access to, information on your device, the requirements of Article 5(3) of the ePrivacy Directive (as implemented in Maltese law) apply in addition to the UK and EU General Data Protection Regulation.
Section 01 — What Cookies Are
A cookie is a small text file that a website places on your device — computer, tablet, or mobile — when you visit it. Cookies are widely used to make websites function correctly, to remember your preferences, and to provide information to the site owner about how the site is being used. Cookies set by the website operator are called "first-party cookies". Cookies set by organisations other than the website operator are called "third-party cookies". Both types are used on this Site, as described in Section 03 below.
Cookies are not the only technology that can store or access information on your device. Similar technologies include web beacons, pixel tags, and local storage objects. For the purposes of this Policy, all such technologies are referred to collectively as "cookies" unless a distinction is necessary. Under Article 5(3) of the ePrivacy Directive, storing or accessing information on a user's device requires either the user's informed consent or a determination that the cookie is strictly necessary for the provision of a service explicitly requested by the user. This Policy explains which of those legal bases applies to each category of cookie used on the Site.
Cookies have a defined lifespan. "Session cookies" are temporary and are deleted from your device when you close your browser. "Persistent cookies" remain on your device for a set period, or until you delete them manually. The duration of each cookie used on the Site is disclosed in the table in Section 03.
Section 02 — Categories of Cookies We Use
The Site uses four recognised categories of cookies. The legal basis applicable to each category under the ePrivacy Directive and the UK/EU General Data Protection Regulation (GDPR) differs, and that difference has practical consequences for whether your consent is required before those cookies are placed on your device.
Strictly Necessary Cookies. These cookies are required for the Site to function. They enable core technical operations — such as maintaining your signed-in session as a Member or protecting the Site from malicious traffic. Because these cookies are essential to deliver a service you have explicitly requested (accessing the Site or signing in to your Member account), they are exempt from the consent requirement under Article 5(3) of the ePrivacy Directive. They cannot be disabled without materially impairing Site functionality. No consent banner is displayed for strictly necessary cookies, and you cannot opt out of them whilst continuing to use the Site in the manner for which they are required.
Functional Cookies. These cookies remember choices you make to personalise your experience — for example, the language edition of the Site you have selected (Italian, Spanish, French, German, Arabic, or Turkish) or a record that you have already confirmed your newsletter subscription. Functional cookies are not strictly necessary to deliver the Site, but they improve usability in a manner directly related to a service you have requested. We rely on your implied consent or, where required, your express consent for these cookies. They can be cleared via your browser settings; doing so will reset your preferences on your next visit.
Analytics Cookies. These cookies collect aggregated information about how visitors use the Site — pages viewed, session duration, approximate geographic region, and similar metrics — to help us understand readership and improve editorial output. Analytics cookies are not strictly necessary and are placed only with your prior consent, in compliance with Article 5(3) of the ePrivacy Directive and Article 6(1)(a) GDPR. You may withdraw consent at any time; withdrawal does not affect the lawfulness of processing carried out before withdrawal.
Marketing Cookies. The Site does not operate advertising, remarketing, or behavioural-profiling programmes. No marketing or advertising cookies of any kind are set on this Site.
Section 03 — Cookies Disclosure Table
The table below lists every cookie currently in use on the Site, its category, its purpose, its origin (first-party or third-party), and its maximum storage duration. This table is reviewed whenever the Site's technical configuration changes.
| Cookie Name | Category | Set By | Purpose | Duration | Consent Required |
|---|---|---|---|---|---|
ghost-members-ssr |
Strictly Necessary | First-party (Ghost CMS) | Maintains a Member's authenticated session after sign-in. Without this cookie, the Site cannot recognise that you are logged in between page loads. Also stores the newsletter consent flag to avoid displaying repeated subscription prompts to confirmed subscribers. | Session (deleted on browser close) / up to 24 hours for persistent variant | No — strictly necessary |
__cf_bm |
Strictly Necessary | Third-party (Cloudflare) | Distinguishes legitimate human traffic from automated bots. Used by Cloudflare's bot management service to apply rate-limiting and protect the Site against distributed denial-of-service attacks and credential-stuffing. Essential infrastructure; cannot be disabled without undermining Site security and availability. | 30 minutes | No — strictly necessary |
_cfuvid |
Strictly Necessary | Third-party (Cloudflare) | Used by Cloudflare to identify individual users for the purpose of applying rate-limiting rules consistently across requests originating from the same source. Supports abuse-prevention and infrastructure-level security. | Session | No — strictly necessary |
lang_pref |
Functional | First-party | Records the language edition of the Site selected by the reader (EN, IT, ES, FR, DE, AR, or TR) so that subsequent pages load in the chosen language without requiring re-selection on every visit. | 12 months | Implied consent on selection |
_ga |
Analytics | Third-party (Google Analytics 4) | Registers a unique identifier used to generate statistical data on how the reader uses the Site. Tracks pageviews and session behaviour at an aggregate level. No cross-site tracking is configured; data is used solely for internal editorial analytics. | 13 months | Yes — prior consent required |
_gid |
Analytics | Third-party (Google Analytics 4) | Registers a unique identifier used to generate statistical data on how the reader uses the Site within a single day. Supplements _ga for same-day session distinction. |
24 hours | Yes — prior consent required |
_gat / _gat_UA-* |
Analytics | Third-party (Google Analytics 4) | Used to throttle the rate at which data is sent to Google Analytics servers. Limits the volume of requests during periods of high traffic. No Personal Data is contained in this cookie beyond a throttle flag. | 1 minute | Yes — prior consent required |
Cookie names and technical parameters may change as the Site's infrastructure is updated. We will update this table whenever a material change occurs. The "Last Updated" date at the bottom of this page reflects the most recent revision.
Section 04 — Legal Bases for Processing
Where a cookie involves the processing of Personal Data (for example, an analytics cookie that processes a pseudonymous device identifier), we are required to identify a lawful basis under Article 6 GDPR in addition to satisfying the requirements of Article 5(3) of the ePrivacy Directive.
For Strictly Necessary cookies, the lawful basis is Article 6(1)(f) GDPR — legitimate interests. Our legitimate interest is the secure and functional operation of the Site. This interest is not overridden by your interests or fundamental rights, because the processing is limited to what is technically essential and you have freely chosen to access the Site.
For Functional cookies, the lawful basis is Article 6(1)(f) GDPR — legitimate interests in providing a coherent multilingual reading experience — or, where express consent is collected, Article 6(1)(a) GDPR. The newsletter consent flag cookie does not itself constitute consent to receiving a newsletter; it records a consent decision made through a separate opt-in mechanism.
For Analytics cookies, the lawful basis is Article 6(1)(a) GDPR — your freely given, specific, informed, and unambiguous consent. We do not place GA4 cookies until and unless you consent. You may withdraw consent at any time without detriment, as set out in Section 05 below. Where analytics data is transferred to Google's servers in the United States, such transfer is conducted under Standard Contractual Clauses adopted by the European Commission. Further detail is set out in our Privacy Policy.
Section 05 — How to Manage and Reject Cookies
You have several mechanisms available to control, limit, or delete cookies placed by the Site.
Browser settings. All major browsers allow you to view, block, or delete cookies through their privacy or security settings. Blocking all cookies will prevent the Site from maintaining your Member session and will disable language-preference functionality. Selectively blocking third-party cookies will disable GA4 analytics without affecting Site navigation. Instructions for the most commonly used browsers are available at the links below:
- Google Chrome: Settings > Privacy and security > Cookies and other site data
- Mozilla Firefox: Settings > Privacy & Security > Cookies and Site Data
- Apple Safari: Preferences > Privacy > Manage Website Data
- Microsoft Edge: Settings > Cookies and site permissions > Manage and delete cookies
Google Analytics opt-out. Google provides a browser add-on that prevents GA4 from collecting data about your visits across all websites that use Google Analytics. You can download and install it at: https://tools.google.com/dlpage/gaoptout. This add-on functions independently of any cookie consent choice made on the Site.
Cloudflare cookies. The Cloudflare cookies listed in Section 03 (__cf_bm and _cfuvid) cannot be opted out of through a consent mechanism. Cloudflare is the Site's content delivery and security infrastructure provider. Its cookies are placed as part of the network layer through which all traffic to the Site passes. Blocking these cookies at the browser level may result in the Site being inaccessible or degraded, and Codego Press is unable to alter this behaviour. Cloudflare's own privacy documentation is available at cloudflare.com/privacypolicy.
Withdrawing consent for analytics cookies. If you previously consented to analytics cookies and wish to withdraw that consent, you may do so by clearing your cookies in your browser settings (which will remove the _ga, _gid, and _gat cookies and prompt a fresh consent choice on your next visit) or by installing the Google Analytics opt-out browser add-on referenced above. Withdrawal of consent does not affect the lawfulness of any processing carried out prior to withdrawal.
Section 06 — Third-Party Services and Data Transfers
Two third-party services set cookies or process data in connection with your use of the Site: Cloudflare, Inc. and Google LLC (operating Google Analytics 4).
Cloudflare, Inc. is headquartered in the United States. Cloudflare processes network-level data — including IP addresses and device characteristics — as part of its bot-management and content-delivery services. This processing occurs regardless of consent because it is part of the essential infrastructure through which the Site is served. Codego Group LTD has entered into a data processing agreement with Cloudflare. Cross-border transfers of Personal Data to Cloudflare in the United States are conducted under Standard Contractual Clauses. Further information is available in Cloudflare's privacy policy and at cloudflare.com/gdpr/introduction.
Google LLC operates Google Analytics 4 and is headquartered in the United States. Where you consent to analytics cookies, pseudonymised data about your use of the Site (including a randomly assigned device identifier, pageviews visited, session duration, and approximate country of origin) is transmitted to Google's servers. Codego Press has configured GA4 to anonymise IP addresses and has not enabled any cross-site or remarketing features. Data transfers to Google in the United States are conducted under Standard Contractual Clauses. Google's data processing terms are available at business.safety.google/adsprocessorterms.
No other third-party services set cookies or receive Personal Data through the Site's cookie infrastructure at the time this Policy was last updated.
Section 07 — Ghost CMS and Member Data
The Site operates on Ghost CMS, an open-source publishing platform. Ghost's session cookie (ghost-members-ssr) is placed on your device when you sign in to your Member account. This cookie is strictly necessary: without it, the platform cannot maintain your authenticated state between page requests, and features that require sign-in — including the ability to post comments on articles — will not function.
Membership on the Site is free. To become a Member, you provide an email address and, optionally, a name. Your email address is stored on the Site's Ghost CMS instance. It is used to deliver newsletters you have opted into and to authenticate your Member session. Your email address is not shared with third parties for marketing purposes. Where you post comments on articles, your IP address is logged for moderation purposes. Further detail on Member data processing is set out in our Privacy Policy.
The newsletter consent flag stored within the Ghost session cookie records only that you have already confirmed your newsletter subscription. It does not itself constitute consent to receive the newsletter; that consent is separately obtained and recorded at the point of subscription via a confirmed opt-in process. Deleting this cookie will not unsubscribe you from the newsletter; to unsubscribe, use the unsubscribe link in any newsletter email or contact us at [email protected].
Section 08 — Your Rights Under GDPR
To the extent that cookies on this Site process Personal Data, you have the following rights under Articles 15–22 GDPR, exercisable by contacting us at [email protected]:
- Right of access (Art. 15 GDPR): You may request confirmation of whether we process Personal Data about you and, if so, obtain a copy of that data.
- Right to rectification (Art. 16 GDPR): You may request correction of inaccurate Personal Data we hold about you.
- Right to erasure (Art. 17 GDPR): You may request deletion of your Personal Data where no overriding legitimate ground for retention exists.
- Right to restriction of processing (Art. 18 GDPR): You may request that we restrict processing of your Personal Data in defined circumstances.
- Right to data portability (Art. 20 GDPR): Where processing is based on consent and carried out by automated means, you may request your data in a structured, commonly used, machine-readable format.
- Right to object (Art. 21 GDPR): Where processing is based on legitimate interests, you may object at any time. We will cease processing unless we can demonstrate compelling legitimate grounds.
- Right to withdraw consent (Art. 7(3) GDPR): Where processing is based on consent, you may withdraw that consent at any time without affecting the lawfulness of prior processing.
We will respond to all verifiable requests within one calendar month. Where a request is complex or numerous, we may extend this period by a further two months and will inform you accordingly. We do not charge a fee for handling requests unless they are manifestly unfounded or excessive.
Section 09 — Cookies and Children
The Site publishes editorial content directed at an adult professional and general readership in the fintech and banking sectors. The Site is not intentionally directed at children under the age of 16. We do not knowingly place analytics or functional cookies on the devices of children. If you believe that a child has provided Personal Data to the Site, please contact us at [email protected] so that we can take appropriate action.
Section 10 — Changes to This Cookie Policy
Codego Group LTD reserves the right to update this Cookie Policy at any time to reflect changes in the cookies used on the Site, changes in applicable law, or changes in the Site's technical infrastructure. Where changes are material — for example, the introduction of a new category of cookie that requires consent — we will take reasonable steps to bring the updated Policy to your attention, which may include a notice on the Site's homepage or a notification to registered Members by email.
The version of this Policy in force at the time you access the Site governs our use of cookies during that session. The date on which this Policy was most recently updated is stated at the foot of Section 12. We encourage you to review this Policy periodically. Continued use of the Site following the publication of an updated Policy constitutes acknowledgement of the updated terms, save that, where consent is the applicable legal basis, we will seek fresh consent if the nature of the processing changes materially.
Section 11 — Supervisory Authority and Complaints
Codego Group LTD is established in Malta. The competent data protection supervisory authority for the purposes of the GDPR is the Information and Data Protection Commissioner of Malta (IDPC). If you believe that our processing of your Personal Data — including through the use of cookies — infringes applicable data protection law, you have the right to lodge a complaint with the IDPC without prejudice to any other administrative or judicial remedy.
The IDPC can be contacted at:
Information and Data Protection Commissioner
Level 2, Airways House
High Street, Sliema SLM 1549
Malta
Website: https://idpc.org.mt
We would, however, welcome the opportunity to address any concern directly before you contact the IDPC. Please write to us at [email protected] in the first instance.
Section 12 — Contact
All queries, requests, and complaints relating to this Cookie Policy or to the processing of Personal Data by Codego Press should be directed to:
Codego Group LTD
Data Protection Enquiries
Email: [email protected]
Codego Group LTD has not appointed a formal Data Protection Officer within the meaning of Article 37 GDPR. GDPR and data protection enquiries are handled by the Codego support team at the address above. We aim to acknowledge all written enquiries within five working days and to provide a substantive response within one calendar month of receipt.
For further information on how we collect, use, and protect your Personal Data beyond the context of cookies, please refer to our Privacy Policy, which is published on the Site.
Last updated: 18 June 2025