La Lista
Log inGet started
Legal

Cookie policy

Effective March 30, 2026

How La Lista uses cookies and similar technologies on our websites and product, and how you can control them.

This policy explains what we store in your browser, for how long, and why. Personal data connected to cookies is also described in our Privacy policy. You should have qualified legal counsel review this document for your jurisdictions before relying on it as a binding notice.

Related. For security practices and vendors that process data on our behalf, see Security & trust and Subprocessors.

Jump to section

On-page anchors — works best on desktop and mobile browsers.

Who we are

La Lista (“we”, “us”) operates the websites and software that connect your inventory or job listings to advertising workflows on social platforms. Where we place cookies on our own domains, we typically act as the controller of personal data associated with those cookies, consistent with our Privacy policy.

What this policy covers

This policy applies to visitors to our marketing sites, users who sign in to the La Lista application, and anyone who uses features that rely on cookies or similar storage. It does not cover cookies set by third-party platforms when you visit them directly (for example Meta, Google, or LinkedIn) — those services have their own policies.

Cookies and similar technologies

Cookies are small text files stored on your device when you visit a site. They often include an identifier and metadata such as expiry and scope (path and domain). We also use similar technologies where appropriate, such as local storage or session storage in the browser to remember UI state (for example language preference or short-lived onboarding flows). These are not HTTP cookies but can serve a similar purpose; we describe the main ones we use in the product below.

Categories of cookies we use

We group cookies and similar technologies into the following categories:

  • Strictly necessary. Required for core functionality such as security, load balancing, and keeping you signed in. These cannot be disabled if you use the service in a normal browser.
  • Functional / preferences. Remember choices you make (such as language) to improve your experience. Where these are not strictly necessary for the service to operate, we rely on your choice or consent where required by law.
  • Analytics and marketing (optional). We may use measurement or marketing technologies in the future to understand how our sites are used or to reach relevant audiences. If we introduce non-essential cookies of this kind, we will describe them here and obtain consent where required before setting them.

Cookies we may set on our sites and app

The following table describes first-party cookies that our stack and application may set today. Names and lifetimes may vary slightly by environment (for example production vs staging) but the purposes remain the same.

  • sessionStrictly necessary. Set by our API when you log in to La Lista. It ties your browser to an authenticated session in our database. It is typically HttpOnly and scoped to our domain. It lasts until you log out or the session expires according to our security rules.
  • pa_lang_prefFunctional / preferences. Stores your selected language (for example English, Swedish, or German) on the marketing site and related public pages so we can show consistent content on repeat visits. Duration is up to one year. You can clear your browser cookies or change language in the UI where available.
  • pa_public_previewStrictly necessary (conditional). When we deploy a private preview gate for the marketing site, this cookie proves that you entered the preview password. It is only set when that feature is enabled in our environment. It is used to protect non-public content, not for advertising.

In the signed-in product, we may also use browser local storage or session storage for short-lived UX (for example preserving a step in onboarding or client-side preferences). These are not shared with other sites as cookies are and can be cleared from your browser settings.

Third-party sites, embeds, and OAuth

When you connect advertising accounts (for example via Meta OAuth), you may be redirected to a third-party login page. Those providers set and read their own cookies under their own policies. We do not control those cookies. After authorization, we receive tokens or identifiers according to your settings and the platform's terms.

Your choices

Browser settings. Most browsers let you block or delete cookies. Blocking strictly necessary cookies may prevent sign-in or core features from working.

Consent. Where we are required to obtain consent for non-essential cookies, we will present a banner or control and record your choice. You may withdraw consent at any time without affecting the lawfulness of processing based on consent before withdrawal.

Privacy rights. Depending on your location, you may have additional rights regarding personal data. See our Privacy policy and Contact.

Changes to this policy

We may update this policy from time to time. We will post the revised version on this page and update the effective date. If we add new cookies that materially change how we track or market to visitors, we will describe them here and, where required, seek consent before they are used.

Contact

For questions about this policy or cookies, reach us via Contact.

Other legal pages

Privacy, terms, and subprocessors in one place.

Privacy policy

Personal data, legal bases, retention, and your rights.

Terms of service

Use of the La Lista service.

Subprocessors

Vendors that process data on our behalf.

Security & trust

How we approach access, encryption, and vendors.

Questions?

Reach out for privacy requests, DPAs, or procurement — we’ll route you to the right person.

Contact usPrivacy policy