Logo

GET A DEMO

Logo
Logo

Cookie policy

Cookie policy

Effective Date: 9 April 2026

Last Updated: 9 April 2026

Version: 1.0

 

01    Introduction


This Cookie Policy explains how Vanti Ltd (Company No. 00650255), trading as "Smart Core", uses cookies and similar technologies on the Smart Core platform (including the Smart Core Connect web application, marketing website, and associated online services).

This policy should be read alongside our Privacy Policy], which provides further information about how we process Personal Data.

02 What are cookies?


Cookies are small text files placed on your device (computer, tablet, or mobile) when you visit a website or use a web application. They are widely used to make websites work more efficiently, provide a better user experience, and supply information to the site operators.


Similar technologies include:

 Web beacons/pixels: Small transparent images embedded in web pages or emails

 Local storage: Browser-based storage mechanisms (localStorage, sessionStorage)

 Session tokens: Server-side identifiers linked to your browser session

03 How we use cookies

3.1 Strictly Necessary Cookies

These cookies are essential for the Smart Core platform to function. They cannot be disabled without affecting the usability of the service. No consent is required for these cookies under PECR.


Session identifier

Authenticates your login session and maintains your authenticated state

Session / configurable expiry

Smart Core


JWT access token

Secures API requests between your browser and the Smart Core Connect platform

Short-lived (minutes to hours)

Smart Core


JWT refresh token

Allows renewal of access tokens without re-authentication

Longer-lived (days to weeks)

Smart Core


CSRF token

Protects against cross-site request forgery attacks

Session

Smart Core


Cookie consent preferences

Stores your cookie consent choices

12 months

Smart Core


Load balancer affinity

Routes your session to the correct server instance

Session

Microsoft Azure


WebAuthn/Passkey state

Maintains state during passwordless authentication flows

Session

Smart Core

3.2 Functional Cookies

These cookies enable enhanced functionality and personalisation. They may be set by us or by third-party providers whose services we use.


UI preferences Remembers your display preferences (theme, layout, dashboard configuration) 12 months Smart Core

Language preference Stores your selected language 12 months Smart Core

Map settings Remembers map view preferences (zoom level, default location) 12 months Mapbox

Notification preferences Stores your notification display settings 12 months Smart Core

Recently viewed items Tracks recently accessed buildings, floors, or dashboards for quick navigation 30 days Smart Core

3.3 Analytics and Performance Cookies

These cookies help us understand how the platform is used, identify performance issues, and improve the user experience. We only set these with your consent.

Cookie Type Purpose Time to Live Cookie Source

Azure Application Insights Collects anonymised usage telemetry: page views, feature usage, load times, client errors Session + persistent (up to 12 months) Microsoft Azure

Performance monitoring Measures page load times, API response times, and client-side errors Session Smart Core

Data collected by analytics cookies includes:

 Pages and features accessed

 Time spent on pages

 Browser type and version

 Operating system

 Screen resolution

 Referring URL

 Error messages and stack traces (anonymised)

 API call performance metrics


Data NOT collected:

 Personal names or email addresses

 Building occupant data

 Access control or security data

 Sensor readings or IoT data

 Content of communications

3.4 Third-Party Cookies

Certain third-party services integrated into the Smart Core platform may set their own cookies:

Cookie Type Purpose Time to Live Cookie Source

Mapbox Map rendering and geolocation Functional Mapbox Privacy Policy]

Archilogic Floor plan rendering Functional Archilogic Privacy Policy]

Microsoft Azure Platform hosting and CDN Strictly necessary Microsoft Privacy Statement]

We do not permit advertising or tracking cookies from third-party advertisers on the Smart Core platform.

04 Local storage and session storage

In addition to cookies, the Smart Core platform uses browser local storage and session storage for:


localStorage Application state, cached user preferences, offline capability data Until cleared

sessionStorage Temporary session state, form data preservation Until browser tab is closed

IndexedDB Cached building data, floor plans, and dashboard configurations for performance Until cleared or cache expiry

05 Mobile application

The Smart Core mobile application (built with Capacitor) uses the following device storage and identifiers:

Secure token storage

Stores authentication tokens securely on device

No (strictly necessary)


Push notification token

Enables push notifications for alerts and updates

Yes (device permission prompt)


Device identifier

Associates push notifications with the device

Yes (with push notification consent)


Cached data

Offline access to dashboards and recent data

No (strictly necessary)

06 Your choices

6.1 Cookie Consent

When you first access the Smart Core platform, you will be presented with a cookie consent banner that allows you to:

 Accept all cookies: Enable all cookie categories

 Reject non-essential cookies: Only strictly necessary cookies will be set

 Customise preferences: Choose which categories of cookies to accept

6.2 Changing Your Preferences

You can change your cookie preferences at any time by:

 Clicking the "Cookie Settings" link in the platform footer

 Accessing your account settings and navigating to "Privacy & Cookies"

 Contacting our DPO at jason.brameld@vanti.co.uk

6.3 Browser Settings

You can also control cookies through your browser settings. Most browsers allow you to:

 View what cookies are set

 Delete individual or all cookies

 Block all cookies or third-party cookies

 Set preferences for specific websites


Please note that blocking strictly necessary cookies will impair the functionality of the Smart Core platform, and you may be unable to use certain features.


Browser cookie management guides:

 Chrome: chrome://settings/cookies

 Firefox: about:preferences#privacy

 Safari: Preferences > Privacy

 Edge: edge://settings/privacy

07 Cookie retention


Strictly necessary

Session to 30 days (varies by cookie)


Functional

12 months


Analytics and performance

12 months

We review cookie retention periods annually and minimise retention where possible.

08 Updates to this policy


1.0

9 April 2026
Jason Brameld
Initial draft for legal review

Revision History

We may update this Cookie Policy from time to time. Material changes will be communicated through the cookie consent banner and/or the Smart Core platform.

09 Contact us

For questions about this Cookie Policy, please contact Vanti’s Data Protection Officer :

Email: dpo@vanti.co.uk

Vanti Ltd (trading as Smart Core)

10 Bonhill St, London EC2A 4PE

United Kingdom

This Cookie Policy was prepared on 9 April 2026 and should be reviewed by qualified legal counsel before publication.