How we use cookies
Agentrof.com is an informational site. There is no online shop, no payment, and no account or login. We use cookies for a small, clearly defined set of purposes:
- Keep the site working and secure. Remember your cookie choice and your language, and tell real visitors apart from bots.
- Understand how the site is used, only if you allow it. Measure which pages are read and how people navigate, so we can improve the content.
Cookie categories
We group the cookies we set into two categories. Our web analytics is cookieless, so it is described separately below rather than as a cookie category.
Strictly necessary. These are required for the site to function and to stay secure. They remember your cookie preference and your language, and they support bot and security verification. Because the site cannot work properly without them, they are always on and are not subject to consent. Their legal basis is our legitimate interest in running a functional, secure site.
Analytics (consent only). These help us see how the site is used through Google Analytics 4, which processes pseudonymous data such as pages viewed, approximate location, and device or browser type. They run only after you opt in, on the basis of your explicit consent, and you can withdraw at any time.
Cookieless analytics (no cookie, always on). Cloudflare Web Analytics gives us high-level, aggregate insight into traffic without setting a cookie or storing anything on your device. It processes request metadata, including your IP address, transiently at the edge to produce aggregate counts, and does not retain the IP or use fingerprinting or cross-site tracking. Because it sets no cookie and stays privacy-preserving, it runs always and is not subject to consent. Its legal basis is our legitimate interest in understanding, improving, and securing the site.
Cookies we use
| Cookie | Provider | Purpose | Duration | Category |
|---|---|---|---|---|
| agentrof_consent | Agentrof (first-party) | Stores your cookie preference | About 180 days | Strictly necessary |
| pref_lang | Agentrof (first-party) | Remembers your language choice | Up to 1 year | Strictly necessary |
| Cloudflare Turnstile (e.g. cf_* challenge) | Cloudflare | Bot and security verification | Session / short-lived | Strictly necessary |
| _ga | Distinguishes unique visitors | Up to 2 years | Analytics (consent only) | |
| _ga_ | Persists analytics session state | Up to 2 years | Analytics (consent only) |
Our bot protection, Cloudflare Turnstile, processes your IP address to tell humans from bots, on the basis of our legitimate interest in security. It is designed to be privacy-preserving and largely cookieless, and it may set a short-lived challenge cookie only when needed for security.
Our web analytics, Cloudflare Web Analytics, is cookieless and sets nothing on your device, so it does not appear in the table above. It measures only aggregate traffic, and Cloudflare keeps only aggregate statistics, for a limited period.
How to manage your choices
You are always in control of anything beyond the strictly necessary cookies.
- On this site. Use the Cookie preferences link in the footer to open the preferences dialog at any time. You can toggle Analytics on or off. Strictly necessary cookies stay on because the site needs them.
- In your browser. Most browsers let you block or delete cookies through their settings. Blocking strictly necessary cookies may stop parts of the site from working, for example remembering your language.
International transfers
When analytics is enabled, Google Analytics 4 is provided by Google LLC in the United States, so enabling analytics involves a transfer of data to the US. Our hosting, content delivery, and bot protection run on Cloudflare, Inc. (US), and lead and contact form records are stored by Airtable, Inc. (US).
Türkiye has not issued an adequacy decision for any country, including the United States. Our standing transfers therefore rely on appropriate safeguards under Article 9 of the KVKK, in particular the standard contract published by the Personal Data Protection Board, which we rely on and are putting in place with our providers. For visitors in the EU, transfers are made under the following safeguards: Google and Cloudflare are certified under the EU-US Data Privacy Framework, and Airtable relies on the EU Standard Contractual Clauses.
More detail on recipients, legal bases, retention, and your rights is in our Privacy Policy.
Changes to this policy
We may update this policy as our site, the cookies we use, or the law change. When we do, we revise the date at the top of this page. If a change is significant, for example adding a new category of cookie, we will make that clear on the site and, where required, ask for your consent again.