1. What a cookie is
A cookie is a small text file that a website stores in your browser to remember information (language, session, preferences). There are essential, functional, analytics and advertising cookies.
2. Essential cookies we use today
These are required for the portal to work. They are exempt from consent under article 22.2 of the Spanish LSSI-CE.
- vibrako_session: keeps you signed in after Spotify authentication. Expires in 30 days.
- vibrako_oauth_state: protects the OAuth flow against CSRF attacks. Expires when the tab closes.
- vibrako_oauth_verifier: OAuth PKCE exchange step. Expires once login completes.
3. Local storage (not cookies)
We store some preferences in your browser local storage. They are not sent to our servers.
- vibrako:theme: light or dark theme.
- vibrako:recent-searches: recent searches.
- vibrako:bookmarks*: fast bookmarks before sign-in.
- vibrako:cookies-accepted: your choice in the banner (all or essential).
4. Analytics cookies
None for now. If in the future we add privacy-respectful analytics (for example Plausible or GA4 with IP anonymization), we will declare it here and, where applicable, request prior consent.
5. Third-party cookies
Vibrako embeds Spotify and YouTube players. Those embeds do not set cookies until you press play. If you activate them, their own policies apply (Spotify, Google).
6. Summary table
- vibrako_session · Essential · Session · 30 days
- vibrako_oauth_state · Essential · OAuth · Browser session
- vibrako_oauth_verifier · Essential · OAuth PKCE · Browser session
7. How to manage them
You can delete cookies and local storage from your browser settings. You can also change your banner choice at any time by removing the vibrako:cookies-accepted key and reloading the page.
8. Changes to this policy
If we add new cookie categories we will update this page and show the banner again to ask for consent.