Legal
Cookie Policy
Last updated: May 2026
1. What Are Cookies?
Cookies are small text files placed on your device when you visit a website. They help the website function, remember your preferences, and in some cases help website operators understand how visitors use their site.
This policy explains what cookies ESA Support uses, why we use them, and how you can control them.
2. Cookies We Use
2a. Strictly Necessary Cookies
These cookies are essential for the website to function. They cannot be disabled — without them, features like logging in and secure form submission would not work.
| Cookie name | Purpose | Duration |
|---|---|---|
| esasupport_session | Laravel session cookie — keeps you logged in and maintains your current session state | Session (expires when browser closes) |
| XSRF-TOKEN | Cross-Site Request Forgery (CSRF) protection token — prevents unauthorised form submissions | Session |
| remember_web_* | Set only if you tick "Remember me" at login — keeps you logged in across browser restarts | 400 days |
Lawful basis: Legitimate interests (Article 6(1)(f) UK GDPR) — these cookies are strictly necessary to provide the service and do not require your consent.
2b. Functional Cookies
These cookies remember your preferences to improve your experience (for example, keeping the cookie banner dismissed once you have responded to it). We use functional cookies only where necessary and with your consent.
| Cookie name | Purpose | Duration |
|---|---|---|
| cookie_consent | Stores your response to the cookie consent banner so you are not shown it repeatedly | 365 days |
Lawful basis: Consent (Article 6(1)(a) UK GDPR).
2c. Analytics Cookies
At this time, ESA Support does not use third-party analytics cookies (such as Google Analytics). We only collect standard server logs (IP address, page visited, timestamp) for security and operational purposes — these are not stored in cookies and are retained for 30 days only. See our Privacy Policy for details.
2d. Third-Party Cookies
ESA Support embeds or connects to the following third-party services which may set their own cookies:
| Service | Purpose | Their privacy policy |
|---|---|---|
| Stripe | Payment processing. Stripe may set cookies on the checkout page to detect fraud and ensure secure payment | stripe.com/gb/privacy |
| Cloudflare | CDN and DDoS protection. Cloudflare may set a __cf_bm cookie to distinguish human visitors from bots |
cloudflare.com/privacypolicy |
We do not control third-party cookies. Please refer to each provider's privacy policy for details of how they use cookies and how to opt out.
3. How to Control Cookies
3a. Browser Settings
Most browsers allow you to view, block, and delete cookies through their settings. Note that disabling strictly necessary cookies will prevent you from logging in or using the platform.
3b. Withdraw Consent
If you have previously consented to functional cookies and wish to withdraw that consent, you can clear your browser cookies or contact us at support@esasupport.co.uk and we will guide you through removing specific cookies.
4. Changes to This Policy
We may update this Cookie Policy as our use of cookies changes or in response to changes in applicable law. We will notify you of material changes by updating the "Last updated" date at the top of this page. For significant changes, we will also notify registered users by email.
5. Contact Us
Questions about our use of cookies?
We aim to respond within 5 working days.
You also have the right to lodge a complaint about our use of cookies with the Information Commissioner's Office (ICO) at ico.org.uk/make-a-complaint or by calling 0303 123 1113.