Cookie Policy
How this site uses cookies and similar browser storage: what we store, on what legal basis, and how you stay in control.
v1.0 · Last updated: July 17, 2026
What are cookies?
Cookies are small text records that a website places in your browser. This site also uses localStorage — a similar browser storage mechanism. For simplicity, this policy refers to both as “cookies”.
Everything this site stores is first-party: it is written and read only by this site and is never shared with advertisers or embedded third parties.
What we store
The complete list is below. Nothing else is stored — no advertising identifiers, no fingerprinting.
Storage durations below are the maximum retention; your browser may clear cookies or localStorage sooner depending on its own settings.
Legal basis and consent
Strictly necessary storage is used on the basis of our legitimate interest (GDPR Art. 6(1)(f)) — the site cannot honour your cookie decision without recording it.
Preference storage and analytics run only with your consent (GDPR Art. 6(1)(a); for storage placed on your device, ePrivacy Directive Art. 5(3)). Nothing non-essential is written before you decide, all optional categories are off by default, and rejecting is as easy as accepting. Your consent record is kept for 12 months; after it expires, or if this policy changes in a way that affects your choice, you will be asked again.
Managing your choice
You can change or withdraw consent at any time by clearing this site's storage in your browser settings; withdrawing is as easy as giving it, and does not affect processing that happened while your consent was valid.
Also available at any time via the “COOKIES” button in the bottom-left corner of every page.
Note that blocking strictly necessary storage means the site cannot remember your cookie decision, so the choice will be asked again on your next visit.
Third parties
This site sets no third-party cookies and shows no advertising. Analytics uses OpenPanel, a privacy-focused service hosted in the EU, under a data-processing agreement: it is cookieless, stores nothing in your browser, and identifies a visit with a daily-rotating anonymous hash instead of a persistent ID. It loads only after you allow the Analytics category, and your data is never sold or used for cross-site tracking.
OpenPanel acts only as our processor and handles the data in the EU. We also count fetches of each page's raw Markdown (.md) twin server-side, anonymously and without cookies, on our legitimate interest (GDPR Art. 6(1)(f)) in understanding which pages are used. Documentation pages that contain a diagram load the Mermaid drawing library from the jsDelivr CDN; this sets no cookies and is used only to render the diagram, but your browser's request to the CDN does reveal your IP address to its operator. Links to external services (for example, GitHub) lead to sites with their own cookie policies, which apply once you are there.
Your rights
You stay in control of everything stored on your device: open cookie settings to change your decision, or clear this site's storage in your browser to reset it. Under the GDPR and comparable laws you also have the rights of access, rectification, erasure, restriction and objection, and the right to withdraw consent at any time.
Analytics is anonymous by design, so there is no personal profile tied to you to export or erase. If you think your rights have not been respected, you can complain to your local data-protection authority — for example your EU/EEA or UK supervisory authority, the OPC or your provincial regulator in Canada, or the PPC in Japan.
Changes and contact
Updates to this policy are published on this page with a new version number and date. If a change affects the categories you consented to, you will be asked for consent again.
This site is operated by the OxPHP open-source project (github.com/oxphp/oxphp). Questions about this policy, or a request to exercise your rights? Open an issue at github.com/oxphp/oxphp/issues.
github.com/oxphp/oxphp/issues →