Cookie Policy

Last updated: 3 June 2026 · Effective from: 3 June 2026

This Cookie Policy explains what cookies and similar technologies Invoicing Zone uses, why we use them, and how you can manage them. It supplements our Privacy Policy.

Good news: Invoicing Zone is built to keep cookie use to an absolute minimum. We do not use marketing or advertising cookies. We do not embed cross-site trackers. The cookies we do use are all strictly necessary to sign you in, remember your interface language, or keep the Service secure.

1. What cookies are

Cookies are small text files that websites place on your device when you visit them. They let a website recognise your browser on subsequent visits, store preferences, and keep you signed in. Cookies set by the site you are visiting are called first-party; cookies set by a different domain are called third-party.

Modern web applications also use similar technologies that are not technically cookies — in particular local storage in your browser. For transparency, we list local storage entries alongside true cookies in the inventory below.

2. Categories we use

We use only two categories of technology:

Strictly necessary cookies and storage — required for the Service to work. Without them, you could not sign in, stay signed in, or keep your interface language. These do not require your consent under EU law (Article 5(3) of the ePrivacy Directive and corresponding Lithuanian rules).
Functional preferences — remembering which language you chose. This is stored in a cookie so that the right language loads on your next visit.

We do not use analytics cookies (our website analytics provider is cookie-free), marketing cookies, social media cookies, or any cross-site tracking technologies.

3. Cookie and storage inventory

Name	Type	Purpose	Duration	Provider
`iz_locale`	First-party cookie	Remembers your chosen interface language (English, Lithuanian, or Portuguese).	1 year	Invoicing Zone
`auth_token`	First-party local storage	Holds your short-lived JSON Web Token so you stay signed in while you use the application.	Until you sign out or your session expires (60 minutes after issue)	Invoicing Zone
`refresh_token`	First-party local storage	Allows the application to refresh your `auth_token` without asking you to sign in again.	Up to 7 days from issue	Invoicing Zone
`sessionid`	First-party cookie (HttpOnly, Secure)	Used by the Django backend administration panel only. Not set during normal use of the application.	Session	Invoicing Zone
`csrftoken`	First-party cookie (Secure)	Cross-site request forgery protection for backend forms. Only set when interacting with the backend administration panel.	1 year	Invoicing Zone

We will update this table whenever a cookie or storage entry is added, changed, or removed.

4. Third-party services

We have deliberately chosen privacy-preserving providers so that no third-party cookies are set on our website:

Plausible — our website analytics provider is hosted in the European Union and is cookie-free by design. It collects aggregated, non-identifying counts of page views and referrers; it does not set cookies, fingerprint your browser, or track you across sites. See plausible.io/data-policy.
Sentry — our error monitoring provider operates from the European Union. The Sentry browser SDK does not set cookies.
Google Fonts — we load the Inter typeface from Google Fonts for performance reasons. Google does not set tracking cookies via the Fonts CSS endpoint, but your IP address is briefly visible to Google when the stylesheet is requested. See Google's Privacy Policy.

5. How to manage cookies

You can control or delete cookies and local storage entries through your browser settings:

Blocking strictly necessary cookies or clearing local storage will sign you out and may prevent you from using the Service. The site does not require any consent banner because all the cookies and storage we use are strictly necessary or set only after you explicitly change a preference (such as your interface language).

6. Legal basis

We rely on the strictly necessary exemption under Article 5(3) of Directive 2002/58/EC (the ePrivacy Directive) and the corresponding provisions of Lithuanian law for the cookies and storage listed above. To the extent personal data is involved, the legal basis is the performance of our contract with you (Article 6(1)(b) of the GDPR) and our legitimate interest in keeping the Service secure and functional (Article 6(1)(f)).

7. Changes to this policy

We may update this Cookie Policy from time to time, for example when we add or remove a feature that uses cookies or storage. The current version is always at invoicing.zone/legal/cookies and the “Last updated” date at the top reflects the latest revision.

8. Contact

For any question about this Cookie Policy, contact us at:

MB “Devsolutely”
Kauno g. 3A, LT-01314 Vilnius, Lithuania
Email: [email protected]