Cookie Policy

This Cookie Policy describes how BroMood and its ecosystem of applications use cookies and similar technologies on their websites and mobile applications.

Last updated: March 2026

1. What Are Cookies

Cookies are small text files stored on your device when you visit a website. They allow the site to recognise your browser on subsequent visits and to store preferences and session information, thereby improving your browsing experience.

BroMood mobile applications use similar technologies (local storage, SecureStore, session tokens) for the same purposes.

2. Types of Cookies Used

Category Purpose Consent required
Technical / Necessary User session, CSRF protection, authentication, language preferences, security tokens No — always active
Functional Theme preferences (light/dark), favourite salon, personalised settings No — required for operation
Analytics Anonymous visitor counting, usage statistics, most visited pages Yes
Marketing Personalised advertising, remarketing, behavioural profiling Yes

3. Specific Cookies and Storage

Websites (bromood.com, app.bromood.com):

  • bmood_consent — Stores cookie consent preferences. Duration: 1 year.
  • laravel_session — Manages the authenticated user session. Duration: end of session.
  • XSRF-TOKEN — Security token for CSRF protection. Duration: browsing session.

Mobile applications:

  • SecureStore (auth_token) — Authentication token securely stored in the device keychain. Duration: until logout.
  • SecureStore (bb_defaults) — Quick preferences (favourite salon, service, staff). Duration: until modified.
  • AsyncStorage (theme) — Light/dark theme preference. Duration: until modified.
  • Push token (FCM/APNs) — Device identifier for receiving push notifications. Duration: until app is uninstalled.

4. Third-Party Cookies and Technologies

  • Cloudflare (__cf_bm) — Bot protection and network security. Technical, mandatory.
  • Google Firebase / FCM — Push notification management and analytics. Technical, functional.
  • Stripe — Secure payment processing and subscription management. Technical, functional.
  • Brevo — Transactional email open tracking (tracking pixel). Functional.

5. Managing Consent

You can manage your cookie preferences through the cookie banner displayed at first access. You can modify your preferences at any time by clicking "Manage cookie preferences" at the bottom of each page.

For mobile applications you can manage push notifications from your device settings (Settings → Notifications → [App Name]).

You can also disable cookies directly from your browser settings:

  • Google Chrome: Settings → Privacy and security → Cookies and other site data.
  • Mozilla Firefox: Preferences → Privacy & Security → Cookies and Site Data.
  • Apple Safari: Preferences → Privacy → Block all cookies.
  • Microsoft Edge: Settings → Privacy, search and services → Cookies.

Disabling technical cookies may impair the correct functioning of the service.

Back to top ↑