%201.svg "Logo primary + Tagline (Black) 1"){kind=small}
COOKIE POLICY hermetis.io
**Document scope.** This document applies to users accessing hermetis.io in its English, Latvian, or Lithuanian language version, and to clients served by **SIA "AGroup"** (Latvia). Clients served by **AGroup sp. z o.o.** (Poland) operate under a separate cookie policy available in the **Polish language version** of hermetis.io.
Hermetis is a complete and secure HR & payroll platform — and the same care we apply to client data also applies to the way we handle your visit to hermetis.io. This Cookie Policy is part of our Privacy Policy and forms an integral part of the legal framework governing our website.
When you visit hermetis.io, we use cookies and similar technologies for two reasons: to make the site work and to learn how to make it better. We never use cookies to identify you personally without a clear basis, and we never sell or share your data with advertising networks.
At your first visit, a consent banner is displayed. You decide which categories of cookies to allow — and you can change this decision at any time, by deleting cookies in your browser or revisiting the banner.
What cookies are and how we use them
Cookies are small data records saved by your browser when you visit a website. They contain no executable code, do not access your device beyond your browser, and are restricted to the domain that set them. Their role is to maintain state between page loads — recognising returning visitors, remembering language preferences, or confirming that a consent choice has already been recorded.
We use Cookiebot as our consent management platform. It organises every cookie on this site into four categories. Necessary cookies are loaded unconditionally because they are required for the site to function. All other categories are activated only after you give explicit consent.
Consent banner — your options
At your first visit to hermetis.io, we display a consent banner where you can decide which categories of cookies to allow. The banner contains three main options:
- "Accept all" — all four cookie categories (necessary, analytical, functional, marketing) are activated with a single click;
- "Only necessary" — only cookies necessary for the site to function are activated; all other categories remain disabled;
- "Customise" (or "Show details") — allows you to choose individually which categories to accept and which to reject.
Your choice is stored for 12 months. After that period, the banner appears again so that you can confirm or change your preferences.
The principles on which our consent handling is based:
- no category other than "necessary" is selected by default — consent always requires an active action on your part;
- refusing consent to cookies other than necessary does not block access to the site or its basic informational functions;
- you may at any time change or withdraw your consent via the cookie management icon available in the footer of the site, or by deleting cookies in your browser and reloading the page;
- withdrawal of consent does not affect the lawfulness of processing carried out on the basis of consent before its withdrawal
Necessary cookies are a precondition for the site to operate. They handle session continuity, form integrity, and consent storage. Because they are strictly necessary for the provision of the service, they are exempt from the consent requirement under the ePrivacy Directive.
In practice, this category covers: remembering your consent preferences (so the banner does not appear at every visit); protecting our forms against automated traffic; and enabling HubSpot — our CMS and CRM — to maintain session continuity and link submitted forms to the correct contact record.
|
Cookie |
Set by |
Consent category |
Purpose |
Retention |
|---|---|---|---|---|
|
CookieConsent |
Cookiebot |
Necessary (no consent) |
Stores the choices made in the cookie banner so we don't ask again at every visit. |
1 year |
|
__cf_bm |
Cloudflare / HubSpot |
Necessary (no consent) |
Tells the site you are a real person, not an automated bot. Ensures correct operation of our forms. |
30 minutes |
|
__hssc |
HubSpot |
Necessary (no consent) |
Maintains an active browsing session in HubSpot so submitted forms are not lost mid-session. |
30 minutes |
|
__hssrc |
HubSpot |
Necessary (no consent) |
Detects when a new browser session has been opened so visitor counts are accurate. |
Until browser is closed |
|
__hstc |
HubSpot |
Necessary (no consent) |
Recognises you as a returning visitor and links visits over time. Used to improve how we communicate. |
13 months |
|
hubspotutk |
HubSpot |
Necessary (no consent) |
Links submitted forms to an existing contact record in our CRM, avoiding duplicates. |
13 months |
|
hs_ab_test |
HubSpot |
Necessary (no consent) |
Ensures that at every visit you see the same version of a page element under A/B testing — without flickering or inconsistency. |
Until browser is closed |
- Analytical cookies — with your consent
Analytical cookies help us understand how visitors use hermetis.io: which pages are most read, where people spend the most time, and where they encounter friction. The data is aggregated and anonymous — we never see individuals, only patterns.
We use Google Analytics 4 and Microsoft Clarity for this purpose. GA4 provides traditional traffic analytics: pageviews, sessions, sources, conversions. Clarity adds behavioural analytics: heatmaps and session replays that show how visitors interact with the page (mouse movements, scrolling, clicks).
Information about privacy: Clarity is configured to automatically mask any form fields (name, email, phone) in session recordings. You will never appear as an identifiable person.
|
Cookie |
Set by |
Consent category |
Purpose |
Retention |
|---|---|---|---|---|
|
_ga |
Google Analytics 4 |
Analytical |
Assigns you an anonymous identifier so GA4 can count you as a unique visitor across multiple sessions. No personal data is recorded. |
2 years |
|
_ga_<ID> |
Google Analytics 4 |
Analytical |
Maintains session-level data linked to the anonymous GA4 identifier so events within a visit are grouped correctly. |
2 years |
|
_gid |
Google Analytics 4 |
Analytical |
A daily visitor identifier. Resets every 24 hours so we can see how many people visit the site each day. |
24 hours |
|
_gat |
Google Analytics 4 |
Analytical |
Temporarily slows requests to Google servers on busy pages to prevent counting errors. |
1 minute |
|
_clck |
Microsoft Clarity |
Analytical |
Provides a consistent Clarity identifier between visits so heatmaps and recordings of your sessions are attributed to one anonymous user. |
1 year |
|
_clsk |
Microsoft Clarity |
Analytical |
Groups all page views within a single visit into one session recording. |
1 day |
|
CLID |
Microsoft Clarity |
Analytical |
Records the moment Clarity first detected your browser, to distinguish new and returning users. |
1 year |
- Functional cookies — with your consent
Functional cookies enable specific features of the site beyond the basic necessary level: the interactive demo, meeting booking, and embedded video. These are not strictly required for the site to load, but they are required for these specific features to work.
|
Cookie / storage |
Set by |
Consent category |
Purpose |
Retention |
|---|---|---|---|---|
|
storylane_session (sessionStorage) |
Storylane |
Functional |
Tracks your progress through the interactive product presentation on the /watch-a-demo page. Without it, the presentation restarts from the beginning at every launch. |
Until browser is closed |
|
__cal_* |
Calendly |
Functional |
Operates the meeting booking widget on the home page and /book-a-meeting page. Enables you to choose a date and sends confirmation both to you and to the Hermetis team. |
Session / persistent |
|
__stripe_mid |
Stripe (via Calendly) |
Functional |
A fraud prevention cookie loaded as part of the Calendly widget. Verifies that the booking request comes from a real browser, not an automated script. |
1 year |
|
Video player cookies |
YouTube / Vimeo |
Functional |
Loaded after you press "play" on an embedded video in a customer story. The embedded video will not load until you accept functional cookies — and it never autoplays. |
Session / persistent |
- Marketing cookies — with your consent
We use a single marketing cookie, set by Apollo.io, which helps us identify the company behind a visit (not the person) and enrich our CRM with firmographic data — industry, company size, country, technology stack.
No tracking of individuals. Apollo.io identifies companies, not persons. If you visit the site as a private person from a home IP address, no significant enriching data is collected.
|
Cookie |
Set by |
Consent category |
Purpose |
Retention |
|---|---|---|---|---|
|
apollo_* |
Apollo.io |
Marketing |
Identifies the company behind a visit (based on IP address and firmographic data) and enriches our CRM with details such as company size and industry. Used by our sales team to make contact with a relevant offer — never for ad retargeting. |
Persistent (various periods) |
Third-country data transfers
Some of the providers above (Google, Microsoft, Cloudflare, Apollo.io, Storylane, Calendly, Stripe) are based in the United States or transfer data outside the European Economic Area. We rely on the EU-US Data Privacy Framework (DPF) as the primary transfer mechanism for these providers, with Standard Contractual Clauses (SCCs) as a backup mechanism. For Storylane, SCCs are the primary mechanism, supplemented by a Transfer Impact Assessment (TIA). For full details, including the specific transfer mechanism applied per provider, see § 9 of the Privacy Policy.
Your rights and how to manage cookies
You can manage cookies in three ways:
- via the consent banner (at the first visit and on every revisit if you have not yet given consent);
- via the cookie management icon available in the footer of the site (visible after consent is given);
- in your browser settings — most browsers allow you to block all cookies, block only third-party cookies, or delete already saved cookies.
Blocking necessary cookies will cause certain functions of the site to malfunction.
This Cookie Policy is part of the Privacy Policy of SIA "AGroup" and applies to users accessing hermetis.io in its English, Latvian, or Lithuanian language version. Clients served by AGroup sp. z o.o. (Poland) operate under a separate cookie policy available in the Polish language version of hermetis.io.
Hermetis · Cookie Policy · Website v1 · Last updated: 31 May 2026