Cookie policy

A cookie is a small text file stored on your device when you visit a website. Cookies let the site remember information about your visit — your login status, your language preference, or your consent choices — so the next time you come back the site behaves as expected.

HostRev also uses "similar technologies" such as localStorage and session storage, which work like cookies but live in your browser's local storage. The same consent rules apply.

We group cookies into three categories. The first is required to make the site work; the other two are opt-in.

These cookies are required to deliver the service you have asked for. Without them, the site cannot function. Under the ePrivacy Directive Art. 5(3) exception, no consent is required.

Session cookie

Keeps you logged in across pages. Set when you sign in; cleared when you sign out.

CSRF token

Protects forms from cross-site request forgery. Refreshed on every page load.

Cookie-consent record

Stores your cookie preferences so we do not ask you again on every page load. Set when you make a choice in the cookie banner.

Site-password gate (pre-launch only)

Remembers that you entered the pre-launch site password. Removed once we publicly launch.

These cookies help us understand how visitors use the site — which pages they read, where they leave, which features they use. We use this to improve the product. The data is aggregated and does not identify you individually.

PostHog (EU)

Product analytics — page views, conversion funnel, feature usage. Hosted in the EU. Does not use third-party advertising cookies.

Sentry

Error monitoring — captures stack traces when something breaks so we can fix it. No personal content of your listings is captured.

Set only after you accept marketing cookies. When enabled, HostRev loads the Meta (Facebook/Instagram) pixel — and, optionally, Google Analytics 4 and Google Ads — and sends conversion events, such as a completed free audit or a purchase, to Meta. These are sent both from your browser and, deduplicated via the Meta Conversions API, from our server, so we can measure which ads actually work. Identifiers such as your email address are only ever shared in hashed (irreversible) form, alongside the _fbp/_fbc advertising cookies. Nothing loads or is sent until you opt in through the banner; if you decline, none of it runs, and you can change your choice anytime via "Cookie preferences".

You make your choice on first visit through the cookie banner — "Accept all", "Reject non-essential", or "Customize". Your choice is stored in your browser's localStorage and applies to future visits on the same browser.

To change your choice later, click "Cookie preferences" in the site footer. The banner reopens with your current selection pre-populated and you can edit it.

You can also clear cookies directly through your browser settings. See the documentation for Chrome, Firefox, Safari, or Edge. Clearing cookies will log you out and reset your preferences; the banner will re-appear on next visit.

We honour the Sec-GPC Global Privacy Control header where your browser sends it: GPC = 1 is treated as a withdrawal of consent for analytics and marketing cookies. We do not act on the older DNT (Do Not Track) header because the standard was deprecated by the W3C in 2018.

We update this policy when we add or remove cookies. Material changes are announced via the cookie banner (which re-opens to ask for your renewed consent) and reflected in the version number and effective date at the top of this page.

Questions about cookies or to exercise your data-subject rights: contact contact@hostrev.io. See also the privacy policy and terms of service.