00 Legal

Cookies Policy

Zero cookies. Zero trackers. Zero third-party analytics.

This is a deliberately short page. UltimaOS sets zero cookies on the marketing site, zero cookies in the workspace application, and uses zero third-party trackers. The page exists so that visitors searching for “cookies policy” find an explicit answer rather than a hidden tracking setup.

01 Overview

Section overview

What we do not set.

01

No cookies on the marketing site

The ultimaos.com marketing site sets zero cookies. No session cookies, no preference cookies, no analytics cookies, no advertising cookies.

02

No cookies in the workspace

The UltimaOS workspace application sets zero cookies. Authentication uses local storage of cryptographic key material, not cookies. There is no session cookie that could be intercepted or replayed.

03

No third-party trackers

We do not use Google Analytics, Facebook Pixel, Hotjar, Mixpanel, Segment or any other third-party tracking or analytics service on the marketing site or in the workspace.

02 Details

Section details

What we do instead.

Server-side logging is retained for a maximum of 30 days for security and debugging purposes. Operational telemetry (uptime, error rates) is collected on our servers, not sent to a third party.

01

Server-side logs

Our servers log IP addresses and request metadata for security and debugging purposes, retained for a maximum of 30 days. Logs are never linked to your account identity and never sold or shared.

02

EU-hosted infrastructure

The marketing site is served from EU infrastructure. We do not use a third-party CDN that would set cookies or profile visitors. No Cloudflare, no Fastly, no Akamai.

03

Aggregate operational metrics

We collect aggregate uptime and error-rate metrics on our servers for operational purposes. These are not linked to individual user identities and are not shared with any third party.

04

Public transparency report

Every quarter we publish a transparency report listing government requests received, vulnerabilities patched, and any operational incidents. The report is available on the security disclosure page.

03 Key points

Key takeaways

Why this page exists.

  1. 01

    Transparency builds trust

    Visitors searching for the cookies policy of a service should find an explicit answer. A blank page, a hidden tracking setup, or a misleading statement would betray the trust we are trying to build.

  2. 02

    Regulatory clarity

    The ePrivacy Directive and GDPR require specific consent for non-essential cookies. By setting zero cookies, we eliminate the need for any consent banner — no dark patterns, no friction, no opt-out theater.

  3. 03

    No third-party scripts

    Every third-party script on a website is a potential data exfiltration path. By using zero third-party scripts, we eliminate an entire class of supply-chain attacks (Magecart-style, etc.).

  4. 04

    Sustainable privacy

    This policy is not a one-time compliance exercise. We commit to zero cookies, zero trackers, and zero third-party analytics as a permanent architectural choice — not a setting that can be toggled off.

04b References

Authoritative sources

Standards and references.

05 Frequently asked

Common questions

Questions about cookies.

Does UltimaOS set cookies?
Short answer

No. UltimaOS sets zero cookies on the marketing site and zero cookies in the workspace application.

Do you use third-party trackers?
Short answer

No. We do not use Google Analytics, Facebook Pixel, Hotjar, Mixpanel, Segment or any other third-party tracking or analytics service on the marketing site.

Do you use analytics in the workspace?
Short answer

No. The UltimaOS workspace is fully self-contained and does not phone home with usage events. Operational telemetry (error rates, uptime) is collected on our servers, not sent to a third party.

What about server-side logs?
Short answer

Our servers log IP addresses and request metadata for security and debugging purposes, retained for a maximum of 30 days. Logs are never linked to your account identity and never sold or shared.

Does the marketing site use a CDN?
Short answer

The marketing site is served from EU infrastructure. We do not use a third-party CDN that would set cookies or profile visitors.

Why does this page exist if you have no cookies?
Short answer

Transparency. Users searching for the cookies policy of a service should find an explicit answer; a blank page or hidden tracking would betray the trust we are trying to build.

Do you have a cookie consent banner?
Short answer

No. By setting zero cookies, no consent banner is required under the ePrivacy Directive. There is no dark pattern, no friction, no opt-out theater.

Where can I verify this independently?
Short answer

Open your browser's developer tools on any UltimaOS page, inspect the Network and Application tabs, and verify that no cookies are set and no third-party domains are contacted. The open-source client code is auditable on GitHub.