Home / Cookie Policy

Cookie Policy

How we use cookies and similar technologies on our services

Last Updated: July 1, 2025

GeoServer ("we," "our," or "us") respects your privacy and is committed to transparency regarding our use of cookies and similar tracking technologies. This Cookie Policy explains what cookies are, how we use them, the types of cookies we employ, and how you can manage or disable them.

This policy applies to our website, web applications, and related services (collectively, the "Services") operated by GeoServer. By using our Services, you consent to the use of cookies as described in this policy.

1 What Are Cookies?

Cookies are small text files that are stored on your device (computer, tablet, or mobile phone) when you visit a website. They are widely used to make websites work more efficiently, provide a better user experience, and deliver information to website owners.

Similar technologies may include:

  • Web beacons (also known as pixel tags or clear GIFs) — small pieces of code embedded in web pages or emails to track user activity
  • Local storage — data stored directly in your browser with no expiration date
  • Device fingerprinting — techniques that collect information about your device and browser configuration to identify your device across visits

For simplicity, this policy uses the term "cookies" to refer to all of these technologies.

2 How We Use Cookies

We use cookies for various purposes, including:

  • Essential operations: To ensure our Services function properly and to maintain your session when you're logged in
  • Security: To protect your account and our Services from unauthorized access and fraudulent activity
  • Preferences: To remember your settings and preferences, such as language or display options
  • Analytics: To understand how users interact with our Services so we can improve performance and content
  • Marketing: To deliver relevant advertisements and measure the effectiveness of our marketing campaigns

3 Types of Cookies We Use

We categorize cookies into the following groups based on their purpose:

Cookie Name Type Purpose Duration
gs_session Essential Maintains your login session across page requests Session
gs_csrf_token Essential Protects against cross-site request forgery (CSRF) attacks Session
gs_language Functional Remembers your preferred language setting 1 year
gs_timezone Functional Stores your timezone for accurate map timestamp rendering 1 year
gs_theme Functional Remembers your light/dark theme preference 1 year
_ga Analytics Google Analytics — distinguishes unique users 2 years
_gid Analytics Google Analytics — distinguishes users for 24 hours 24 hours
_gat Analytics Google Analytics — throttles request rate 1 minute
_fbp Marketing Facebook Pixel — delivers targeted advertising 3 months
_gcl_au Marketing Google Ads — stores ad campaign information 3 months
connect.sid Third-Party Session cookie set by our authentication provider Session
__stripe_mid Third-Party Stripe — used for payment fraud prevention 1 year
__stripe_sid Third-Party Stripe — session identifier for payment processing Session
mapbox_api_token Third-Party Mapbox — enables map rendering services on our platform Session
hotjar_localStorageUsers Third-Party Hotjar — analytics and session recording tool 1 year

📌 Note on Third-Party Cookies

Cookies set by third-party services are governed by those providers' own privacy and cookie policies. We encourage you to review their policies directly for more information on how they handle your data.

4 Session vs. Persistent Cookies

Session cookies are temporary and are deleted when you close your browser. They are used to keep you logged in during your visit and to remember items in your workflow between page loads.

Persistent cookies remain on your device for a set period or until you manually delete them. They are used to remember your preferences across visits and to deliver personalized content and analytics.

Our cookie table above indicates the duration of each cookie we deploy.

5 Managing Your Cookie Preferences

You have several options for managing or disabling cookies:

Browser Settings

Most web browsers allow you to control cookies through their settings. You can typically:
• Block all cookies or only third-party cookies
• Delete cookies that have already been set
• Set your browser to notify you before a cookie is placed

Here are links to help pages for popular browsers:

Important: Disabling cookies may affect the functionality of our Services. Some features, such as login sessions and personalized map settings, may not work properly if cookies are disabled.

Cookie Consent Banner

When you first visit our website, you will see a cookie consent banner that allows you to accept or customize your cookie preferences. You can revisit these settings at any time by clicking the "Cookie Settings" link in the footer of our website.

6 Third-Party Cookies and Services

We work with several third-party providers who may set their own cookies through our Services. These providers include:

  • Google Analytics — Web analytics service to understand how visitors use our website
  • Google Ads — Advertising platform for remarketing and conversion tracking
  • Facebook Pixel — Advertising measurement tool for targeted ad delivery
  • Stripe — Payment processing and fraud prevention services
  • Mapbox — Map rendering and geocoding services
  • Hotjar — User experience analytics and session recording
  • Auth0 — Authentication and identity management

Each of these providers has its own privacy policy. We do not control the cookies set by these third parties and encourage you to review their respective policies for more details.

7 Do Not Track Signals

Some browsers have a "Do Not Track" (DNT) feature that signals to websites that you prefer not to have your online activity tracked. At this time, there is no universal standard for how to respond to DNT signals.

We currently do not automatically respond to DNT signals. However, you can manage your cookie preferences as described in Section 5 above to control tracking on our Services.

8 Cookies and Children's Privacy

Our Services are not directed to individuals under the age of 16. We do not knowingly collect personal information, including via cookies, from children under 16. If we become aware that we have inadvertently collected such data, we will take steps to delete it as soon as reasonably practicable.

9 International Data Transfers

Cookies and related data may be processed in countries other than your country of residence. These countries may have different data protection laws. By using our Services and consenting to our use of cookies, you agree to the transfer of such information to these jurisdictions.

Where applicable, we ensure that appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) approved by the European Commission, to protect your data during international transfers.

10 Changes to This Cookie Policy

We may update this Cookie Policy from time to time to reflect changes in technology, regulation, or our business practices. When we make significant changes, we will notify you through our website or by other means before the changes take effect.

The "Last Updated" date at the top of this page indicates when the policy was most recently revised. We encourage you to review this policy periodically.

11 Contact Us

If you have any questions about this Cookie Policy or how we use cookies, please contact us:

GeoServer Privacy Team

Email: privacy@geoserver.com
Address: GeoServer Inc., 1200 Technology Drive, Suite 400, San Francisco, CA 94103, United States
Phone: +1 (415) 555-0192
Privacy Officer: dpo@geoserver.com

We aim to respond to all inquiries within 15 business days. If you are a resident of the European Economic Area (EEA), you also have the right to lodge a complaint with your local data protection authority.