Cookie Policy

What cookies we use, why we use them, and how to control them.

Last updated: 31 March 2026
This policy applies to attendiq.co.uk and the AttendIQ web platform.
Questions: privacy@attendiq.co.uk

1. What are cookies

Cookies are small text files placed on your device when you visit a website or use a web application. They allow the site to recognise your device on return visits, keep you logged in, and remember your preferences.

Similar technologies include local storage and session storage - these work differently to cookies at a technical level, but serve similar purposes. This policy covers all such technologies.

Under UK law (the Privacy and Electronic Communications Regulations 2003 - PECR), we must tell you what cookies we use and obtain your consent for any that are not strictly necessary.

2. The cookies we use

We keep our cookie footprint small. We do not use advertising cookies, tracking pixels, social media cookies, or any third-party analytics platform.

Essential cookies

These are strictly necessary for the platform to function. They cannot be disabled without breaking the Service. No consent is required for these under PECR.

NamePurposeDurationSet by
session_token Keeps you authenticated while using the platform. Without this, you would be logged out on every page. Session (deleted when browser closes) AttendIQ
csrf_token Security: prevents cross-site request forgery attacks, where a malicious site tricks your browser into making requests to AttendIQ on your behalf. Session AttendIQ
mfa_verified Records that you have completed multi-factor authentication for this session. Prevents you being asked to re-authenticate on every page. Session AttendIQ
sb-* (Supabase auth) Authentication tokens set by our database/auth provider (Supabase) to maintain your logged-in session securely. Up to 7 days (persistent auth) or Session Supabase (attendiq.co.uk domain)

Functional cookies

These are not strictly necessary but help us maintain service quality. They do not track you across other websites.

NamePurposeDurationSet by
sentry-sc Application error monitoring. When an error occurs in the platform, Sentry captures technical details (browser type, page, error message) to help us diagnose and fix bugs. No personal content from your session is captured. Session Sentry (sentry.io)
__sentry_release Identifies which version of the AttendIQ platform generated an error, so our engineers can pinpoint the affected code. 1 year Sentry (sentry.io)

We do not currently use analytics cookies (such as Google Analytics). If we introduce analytics in future, this policy will be updated and appropriate consent will be sought before any analytics cookies are set.

3. Third-party cookies

We use one third-party service that sets cookies:

Sentry (sentry.io) - Sentry is our application monitoring tool. It captures error data when something goes wrong in the platform so our engineers can fix it quickly. Sentry is operated by Functional Software Inc, based in the USA. Data transfers to Sentry are covered by a UK International Data Transfer Agreement. Sentry does not use this data for advertising or share it with other organisations.

We do not use:

  • Google Analytics or any other web analytics platform
  • Advertising networks (Meta Pixel, Google Ads, LinkedIn Insight Tag, etc.)
  • Social media plugins or share buttons that set cookies
  • Live chat platforms that track visitors
  • A/B testing or heatmap tools

4. Managing your cookie preferences

Essential cookies

Essential cookies cannot be disabled - blocking them will prevent you from logging in to the platform. They are not used for any purpose beyond keeping the Service functioning.

Functional cookies (Sentry)

You can opt out of Sentry error monitoring by contacting us at privacy@attendiq.co.uk. Please note that if you opt out, we will not receive automatic error reports from your session. This may affect how quickly we can identify and resolve bugs that affect your account.

Browser controls

All major browsers allow you to view, block, and delete cookies. Instructions for the most common browsers:

Google Chrome
Settings → Privacy and Security → Cookies and other site data
Mozilla Firefox
Settings → Privacy & Security → Cookies and Site Data
Apple Safari
Preferences → Privacy → Manage Website Data
Microsoft Edge
Settings → Cookies and site permissions → Cookies and site data

Blocking or deleting essential cookies will log you out of the platform and prevent you from logging back in until the cookies are allowed again.

5. Your rights and our legal basis

Under UK PECR, we must have your consent to set non-essential cookies. Essential cookies are exempt from the consent requirement because they are strictly necessary for the service you have requested.

For non-essential cookies (Sentry functional cookies), our legal basis under UK GDPR is legitimate interests (Article 6(1)(f)): specifically, our interest in maintaining a stable, high-quality platform by monitoring for and resolving application errors. We consider this processing to be proportionate and not overridden by users' interests, given the limited and non-personal nature of the data captured.

You have the right to object to processing on the basis of legitimate interests. To object, contact us at privacy@attendiq.co.uk.

For your full privacy rights, see our Privacy Policy.

6. Changes to this policy

We will update this Cookie Policy if we add new cookies or change how we use existing ones. Material changes will be noted on this page with an updated "last updated" date. If we introduce any new non-essential cookie category that requires consent, we will seek that consent before setting the cookies.

7. Contact

For questions about cookies or this policy:

Email: privacy@attendiq.co.uk
Post: AttendIQ Ltd, England and Wales (registered address to be confirmed on incorporation)

To lodge a complaint about our use of cookies with the UK regulator: ico.org.uk, 0303 123 1113.

UK data residency
GDPR compliant by design
99.5% uptime SLA
UK-based support team