Cookie Policy

Cookies are small text files that a website asks your browser to store on your device. When you return to a site, your browser sends those files back, allowing the site to recognise your device, keep you secure, or remember certain settings. Cookies may be "session" cookies (deleted when you close your browser) or "persistent" cookies (which remain for a defined period or until you delete them).

Cookies set by the website you are visiting are described as "first-party" cookies; those set by another domain are "third-party" cookies. Cookies are also commonly categorised by purpose, for example strictly-necessary, functional, analytics/performance, and advertising/targeting cookies.

"Similar technologies" include browser storage mechanisms such as local storage and session storage. These are not cookies, but they perform a related function: they allow a website to store small pieces of information in your browser. Session storage in particular holds data only for the duration of the current browser tab and is automatically cleared when that tab is closed. Unlike cookies, browser storage is not transmitted back to a server with every request.

This is a marketing website for a B2B cybersecurity and software-development consultancy. It has no user accounts, no payments or e-commerce, and no operational newsletter. As a result, our use of cookies and similar technologies is minimal and limited to what is strictly necessary to deliver and secure the site, plus a small amount of storage to remember a user-interface preference.

Specifically, we use:

• Cloudflare security and bot-management cookies, set by our hosting, CDN and security provider, Cloudflare, Inc., to keep the site available and to protect it against malicious traffic;
• Cloudflare Turnstile, a privacy-friendly CAPTCHA, which protects our "Contact" and "Get a Quote" forms from spam and automated abuse; and
• a small amount of browser sessionStorage that remembers a user-interface state (for example, that you have dismissed a blog pop-up) so that it is not shown repeatedly during your visit.

All of these are either strictly necessary for the site and its forms to function and remain secure, or are purely functional and stored only in your own browser. We do not use cookies or storage to build profiles, to track you across other websites, or for marketing.

The list below describes each item we use, its purpose, and its category. Cookie names set by third-party security services may change over time as those providers update their systems; the descriptions below explain the function each serves.

Cloudflare security and bot management

• __cf_bm — set by Cloudflare to distinguish humans from bots and to manage bot traffic. This helps protect the site and our forms from automated abuse. Session-based. Strictly necessary.
• cf_clearance — set by Cloudflare where a security challenge has been completed, to record that your browser has passed a check and should not be repeatedly challenged. Persistent for a limited period. Strictly necessary.

Cloudflare Turnstile (form protection)

• Cloudflare Turnstile — a privacy-friendly CAPTCHA used on the "Contact" and "Get a Quote" forms to verify that a submission comes from a genuine user rather than a bot, and to prevent spam. Turnstile may set or read limited cookies and storage values for the purpose of running its challenge and security checks. Strictly necessary for the forms to operate.

Browser sessionStorage (interface state)

• UI dismissal key — a small value stored in your browser's sessionStorage to remember that you have dismissed a non-essential interface element, such as a blog pop-up, so it is not shown again during the same session. This is functional, is not a cookie, is not sent to any server, and is automatically cleared when you close the browser tab.

We want to be clear and specific about what this site does not do. We do not use:

• Google Analytics or any other analytics or performance-measurement cookies;
• advertising, marketing, retargeting or "targeting" cookies;
• marketing pixels, conversion tags, or social-media tracking tags;
• cross-site or cross-device tracking technologies;
• any cookies or storage used to build behavioural profiles or to make automated decisions about you.

In short, the only cookies on this site are strictly-necessary security and form-protection cookies, and the only browser storage is a small functional value held within your own browser.

In the UK, the use of cookies and similar technologies is governed by the Privacy and Electronic Communications Regulations 2003 (PECR), read alongside the UK GDPR and the Data Protection Act 2018.

PECR requires consent before storing or accessing information on a user's device, except where doing so is strictly necessary to provide a service that the user has requested. The security cookies and form-protection technologies described above fall within this strictly-necessary exemption, and the functional sessionStorage value is not a cookie and is held only within your own browser. For these reasons, this site does not require a cookie consent banner.

If we ever introduce non-essential cookies or similar technologies (for example, analytics or marketing tools), we will first put in place an appropriate consent mechanism that lets you accept or reject those technologies, and we will update this policy accordingly before they are deployed.

You can control and delete cookies through your browser settings. Most browsers let you view the cookies stored, delete them individually or in bulk, and block cookies from some or all websites. You can also clear browser storage, including session storage, through the same privacy or site-data controls.

Browser providers publish detailed instructions, for example for Google Chrome, Mozilla Firefox, Apple Safari and Microsoft Edge.

Please note that the cookies and technologies described in this policy are strictly necessary or functional. Blocking the Cloudflare security cookies or Cloudflare Turnstile may prevent the "Contact" and "Get a Quote" forms from working correctly, or may stop you from accessing parts of the site, because they are used to verify legitimate requests and protect the forms from abuse. If you block these and a form fails, you may instead contact us by email at info@pyramidledger.com.

Some of the technologies described here, such as Cloudflare's security processing, involve limited technical data, for example your IP address and request logs, which Cloudflare processes for security and delivery purposes. The personal data you actively provide is collected only through our "Contact" and "Get a Quote" forms, and form submissions are delivered to us by email using Brevo (formerly Sendinblue) as our transactional-email processor.

For full details of what personal data we collect, the lawful bases on which we rely, our processors and recipients (including Cloudflare, Inc. and Brevo), international transfers and the safeguards that apply (such as UK adequacy regulations, the UK International Data Transfer Agreement or the UK Addendum to the EU Standard Contractual Clauses), and your rights under the UK GDPR and the Data Protection Act 2018, please see our Privacy Policy.

We may update this Cookie Policy from time to time to reflect changes in the technologies we use, or in legal or regulatory requirements. Where we make a material change, such as introducing any non-essential cookies, we will update this page and, where appropriate, introduce a consent mechanism before those technologies are used.

We encourage you to review this policy periodically. The version published on this page is the current version and applies to your use of the site.

If you have any questions about this Cookie Policy or about how we use cookies and similar technologies, you can contact us:

• By email: info@pyramidledger.com
• By post: Pyramid Ledger Ltd, EC1V 2NX, London, United Kingdom
• By telephone: +44 (0) 20 4584 2944

If you have a concern about how we handle your personal data, you also have the right to lodge a complaint with the Information Commissioner's Office (ICO), the UK supervisory authority, at ico.org.uk. We would, however, appreciate the opportunity to address your concerns directly before you approach the ICO.