Cookie Policy
The information provided below aims to inform the user about the placement, use, and management of “cookies” used by our website, managed by Casa Bună Pension, Reciu Village, Gârbova Commune, Alba County, Romania, VAT ID RO39144290. This policy complements the policy regarding personal data protection that you can find in the website’s Privacy Policy, which we encourage you to read, including additional useful information regarding the data protection officer, all data processing purposes, your rights, as well as exceptions and limitations, etc.
Please read the following information carefully:
This website uses its own cookies as well as cookies added by third parties to provide visitors with a much better browsing experience and services tailored to the needs and interest of each individual.
1. What is a “cookie”?
An “Internet Cookie” (also known as a “browser cookie” or “HTTP cookie” or simply “cookie”) is a small-sized file, made of letters and numbers, that will be stored on your computer, mobile terminal, or other equipment of a user accessing the Internet.
The cookie is sent through a request issued by the web server hosting the site to the user’s browser (e.g., Firefox, Internet Explorer, Chrome, etc.) and is completely “passive” (does not contain software programs, viruses or spyware, and cannot access information on the user’s hard drive).
A cookie consists of 2 parts: the name and content or value of the cookie that is uniquely associated with the domain where the site is hosted that sent it to the user’s browser. Furthermore, the lifetime of a cookie is determined; only the web server that sent the cookie can access it again when the user returns to the website associated with that server.
Cookies do not require personal information to be used and cannot personally identify internet users.
2. Types of cookies
2.1. Session-specific cookies
Web pages have no memory. A user navigating from page to page will be seen by the website as a new user. Session cookies typically store an identifier allowing the user to navigate from one webpage to another without having to enter identification information (username, password, etc.) every time. Such cookies are widely used by commercial sites, for example, to keep track of products added by a user to the shopping cart.
2.2. Persistent, permanent, or stored cookies
Persistent cookies are stored on the user’s computer and are not deleted when the browsing session is closed. These cookies can remember the user’s preferences for a specific website, so they can be used in other Internet browsing sessions.
Apart from authentication information, persistent cookies can also retain details about the language and theme selected on a specific website, menu preferences, favorite pages within a site, etc. When the user accesses a site for the first time, it is presented in a default way.
Later, the user selects a series of preferences, which are then remembered by the cookies and used when the user accesses the site again. For example, a website offers its content in several languages. On the first visit, the user selects the English language, and the site remembers this preference in a cookie. When the user visits the site again, the content will automatically be displayed in English.
Persistent cookies can be used to identify individual users and thus analyze users’ online behavior. They can provide information about the number of visitors to a website, the average time spent on a particular page, and generally the performance of a website. These cookies are configured to follow users’ activities for a long period, in some cases even years.
2.3. Flash cookies
If the user has Adobe Flash installed on their computer, small files can be stored on their computer by websites that contain Flash elements (such as video clips). These files are known as “local shared objects” or “flash cookies” and can be used for the same purposes as regular cookies.
When regular cookies are deleted through a browser’s functions, flash cookies are not affected. Thus, a website that uses flash cookies can recognize a user on a new visit if specific cookie data has been retained in a flash cookie.
Since flash cookies are not stored on the user’s computer in the same way as regular cookies, they are more difficult to identify and delete. Banks and financial websites use such cookies precisely for this reason. Because they are difficult to identify, these cookies are stored on users’ computers to allow user authentication and prevent fraud, as potential criminals may have the username and password for authentication but do not have access to the user’s computer. Thus, cookies act as a second level of authentication, in addition to the username and password.
2.4. First-party vs third-party cookies
Each cookie has an “owner” – the website/domain that places the respective cookie. First-party cookies are placed by the Internet domain/website accessed by the user (whose address appears in the browser’s address bar). For example, if the user visits www.xxx.ro, and the domain of the cookie placed on their computer is www.xxx.ro, then it is a first-party cookie.
A third-party cookie is placed by a different Internet domain/website than the one accessed by the user; this means that the accessed website also contains information from a third-party website – for example, an advertising banner that appears on the accessed site. Thus, if the user visits www.xxx.ro but the cookie placed on their computer has the domain www.yyy.ro, then it is a third-party cookie.
The Article 29 Working Party (comprised of the national data protection authorities of the EU member states) considers that, legally, and considering European legislation, the notion of “third-party cookie” refers to a cookie placed by an operator distinct from the one operating the website visited by the user. Third-party cookies are not strictly necessary for the user accessing a website, as they are usually associated with a service distinct from the one “explicitly requested” by the user (by accessing the website).
3. Advantages of cookies
A cookie contains information linking a browser (user) and a specific web server (site). If a browser accesses that web server again, it can read the information already stored and react accordingly. Cookies provide users with a pleasant browsing experience and support websites’ efforts to offer comfortable services to users: preferences regarding online privacy, site language options, or relevant advertising, etc.
4. The lifespan of a cookie
Cookies are managed by web servers. The lifespan of a cookie can vary significantly, depending on the purpose for which it is placed. Some cookies are used exclusively for one session (“session cookies”) and are not retained after the user leaves the site, while some cookies are retained and reused each time the user returns to that site (“permanent cookies”). However, cookies can be deleted by the user at any time through browser settings.
5. The type of information stored and accessed through cookies
Cookies keep information in a small text file that allows a website to recognize a browser. The web server will recognize the browser until the cookie expires or is deleted. The cookie stores important information that enhances the Internet browsing experience: settings regarding the language in which a site is accessed, keeping a user authenticated in their member or email account, online security, keeping and remembering settings, etc.
6. The importance of cookies for the Internet
Cookies are the central point of the efficient functioning of the Internet, helping to generate a friendly browsing experience adapted to the preferences and interests of each user. Refusing or disabling cookies can make some websites impossible to use. Refusing or disabling cookies does not mean that you will no longer receive online advertising, but that it will no longer be able to take into account your preferences and interests highlighted through your browsing behavior.
Examples of important uses of cookies (which do not require user authentication through an account):
- Content and services tailored to the user’s preferences – categories of news, weather, sports, maps, public and government services, entertainment sites, and travel services.
- Offers adapted to users’ interests – remembering passwords, language preferences (e.g., displaying search results in Romanian).
- Remembering child protection filters regarding Internet content (family mode options, safe search functions).
- Limiting the frequency of ad exposure – limiting the number of displays of an ad for a particular user on a site.
- Providing advertising relevant to the user.
- Measurement, optimization, and analytics features – confirming a certain level of traffic on a site, what type of content is viewed more, and how a user arrives at a site (e.g., through search engines, directly, from other websites, etc.). Websites conduct these analyses of their use to improve in the user’s benefit.
7. Security and privacy-related issues
Cookies are NOT viruses! They use a plain text format. They are not made up of pieces of code, so they cannot be executed nor can they auto-run. Consequently, they cannot duplicate or replicate on other networks to run or replicate again. Since they cannot perform these functions, they cannot be considered viruses.
Cookies can, however, be used for negative purposes. Since they store information about user preferences and browsing history, both on a particular website and on several other websites, cookies can be used as a form of spyware. Many anti-spyware products are aware of this fact and constantly mark cookies to be deleted during anti-virus/anti-spyware deletion/scanning procedures.
In general, browsers have integrated privacy settings that provide different levels of cookie acceptance, validity period, and automatic deletion after the user has visited a certain site
8. Other security aspects related to cookies
Since identity protection is very important and represents the right of every internet user, it is advisable to know what potential problems can occur in connection with cookies.
Because information is constantly transmitted in both directions between the browser and website, if an attacker or unauthorized person intervenes in the data transmission path, the information contained in the cookie can be intercepted. Although very rare, this can happen if the browser connects to the server using an unencrypted network (e.g., an unsecured Wi-Fi network). Other cookie-based attacks involve incorrect cookie settings on servers.
If a website does not request the browser to use encrypted channels, attackers can exploit this vulnerability to trick browsers into sending information through unsecured channels. Attackers then use the information to access certain sites unauthorized. It is very important to be careful in choosing the most suitable method of protecting personal information.
9. Tips for safe and responsible cookie-based browsing
Due to their flexibility and the fact that most of the most visited and largest sites use cookies, they are almost inevitable. Disabling cookies will not allow the user access to the most widespread and used websites, including YouTube, Gmail, Yahoo, and many others.
10. Some tips that can ensure worry-free navigation with the help of cookies:
-
Customize your browser settings regarding cookies to establish a comfortable level of security. If you do not mind cookies and are the only person using the computer, you can set long expiration terms for storing your browsing history and personal access data.
If you share access to the computer, you could consider setting the browser to delete individual browsing data each time you close the browser. This is the way to access sites that place cookies and delete any visitation information upon closing the browsing session.
Install and constantly update your antispyware applications. Many of the applications for detecting and preventing spyware include detecting attacks on sites. Thus, they prevent the browser from accessing websites that could exploit browser vulnerabilities or download dangerous software.
Make sure you always have your browser updated. Most cookie-based attacks exploit weaknesses in old versions of browsers.
Cookies are everywhere and cannot be avoided if you want to enjoy access to the best and largest Internet sites, local or international. With a clear understanding of how they operate and the benefits they bring, you can take the necessary security measures so you can navigate the internet confidently.
11. Managing, disabling, and deleting cookies
Disabling and refusing to receive cookies can make certain websites impractical or difficult to visit and use. Also, refusing to accept cookies does not mean you will no longer receive or see online advertising.
It is possible to set your browser so that these cookies are no longer accepted, or you can set the browser to accept cookies only from a specific website. But, for example, if you are not registered using cookies, you will not be able to leave comments.
All modern browsers offer the possibility to change cookie settings. These settings are usually found in the “Options” or “Preferences” menu of your browser.
Detailed information regarding the management, disabling, and deleting of cookies through the browser settings used for Internet browsing is available at the following addresses: