Cookie Policy | Care-Meter

What Are Cookies?

Cookies are small text files placed on your device when you visit a website. They allow websites to recognise your device, remember your preferences, and understand how you use the site.

This policy explains what cookies Care-Meter uses on care-meter.co.uk and within the Care-Meter platform, why we use them, and how you can manage your preferences.

We comply with the UK Privacy and Electronic Communications Regulations 2003 (PECR) and UK GDPR when using cookies. Strictly necessary cookies may be placed without consent; all other cookies require your prior consent.

Summary: Cookies We Use

We keep it minimal

Care-Meter uses no third-party advertising cookies, no tracking pixels, and no cross-site tracking. We use only the cookies required to operate the platform securely and remember your preferences.

Cookie / storage	Purpose	Duration	Category	Consent required?
Session cookie (HttpOnly)	Maintains your authenticated session. HttpOnly: cannot be read by JavaScript. Protected by SameSite=Strict and our Content Security Policy.	30 minutes of inactivity	Strictly necessary	No
cm_access (HttpOnly cookie)	Stores your JWT for API authentication. HttpOnly and SameSite=Strict, inaccessible to JavaScript and protected against cross-site request forgery.	Until sign-out or token expiry	Strictly necessary	No
cm_theme (localStorage)	Remembers your dark/light mode preference so you don't have to reset it on each visit.	Persistent (until cleared)	Functional	Yes, functional consent
cm_notifications (localStorage)	Tracks which in-app notifications you have read to prevent repeated display.	Persistent (until cleared)	Functional	Yes, functional consent
cm_consent (localStorage)	Records your cookie consent choice so we don't show the consent banner on every visit.	Persistent (until cleared)	Strictly necessary	No

Strictly Necessary Cookies

Strictly necessary cookies are required for the Care-Meter platform to function. They cannot be disabled without preventing you from using core features. No consent is required to place these cookies under PECR.

These cookies:

Maintain your authenticated session so you don’t have to log in repeatedly
Store your API authentication token securely (HttpOnly: cannot be accessed by JavaScript or browser extensions)
Record your cookie consent preference

We do not use strictly necessary cookies for analytics, marketing, or any purpose beyond enabling the platform to function.

Functional Cookies

Functional cookies (stored in localStorage) remember your preferences to improve your experience. These require your consent before being set.

Theme preference: remembers whether you have selected dark or light mode
Notification read state: tracks which in-app alerts and notifications you have already read, so they are not repeatedly shown

If you decline functional cookies, the platform remains fully operational. You may simply need to reset your preference on each visit.

Analytics Cookies (None Currently)

No analytics or tracking cookies in use

Care-Meter currently uses no third-party analytics, tracking pixels, or advertising cookies. If this changes, we will update this policy and re-request your consent before deploying any such cookies.

Any platform performance analysis we carry out uses aggregated, anonymised server-side data only. No cookies are involved.

Managing Your Cookie Preferences

Within Care-Meter

You can update your cookie preferences at any time by clicking the “Cookie Settings” link in the footer of any page. This re-opens the consent banner and allows you to accept or decline functional cookies.

Via your browser

You can also manage cookies through your browser settings. Most browsers allow you to:

View and delete existing cookies
Block all cookies or cookies from specific sites
Receive a notification when a cookie is placed

Note that deleting or blocking strictly necessary cookies (the session cookie and cm_access) will prevent you from logging into Care-Meter.

Browser-specific guidance:

Cookie Consent Banner

When you first visit care-meter.co.uk or the Care-Meter platform, a consent banner appears. You can choose “Strictly necessary only” or “Accept all”.

Your choice is stored in localStorage as cm_consentso we don’t repeat the banner. You can change your preference at any time via the Cookie Settings link in the footer.

Engineering note

The consent banner must be shown before any non-strictly-necessary cookies are set. Functional localStorage items (cm_theme, cm_notifications) must only be set after the user has accepted functional cookies or “accept all”. The cm_consent record itself is strictly necessary and may be set immediately. Implemented in line with the ICO’s PECR guidance: implied consent is not sufficient.

Changes to This Policy

We may update this Cookie Policy when we add, change, or remove cookies. We will notify users of material changes by displaying a prominent notice and re-requesting consent where required.

The effective date at the top of this page reflects the current version. Previous versions are available on request from privacy@care-meter.co.uk.

Contact

For questions about cookies or to exercise your rights under UK GDPR:

Email: privacy@care-meter.co.uk
Post: Data Protection, WillMachi Limited, 8 Raite Green, Sittingbourne, Kent, ME10 5JY
ICO: ico.org.uk · 0303 123 1113