<IMFS/>one
OnboardingPricingContact
Start Trial

Cookie Policy

As an Enterprise B2B infrastructure, IMFS uses local storage technologies predictably, securely, and transparently, focused on guaranteeing operational stability.

Technical Storage Declaration, Revised: September 24, 2026

1. Technical Context and Applicability

This policy explains the nature of the data stored in your browser ("Cookies", "Local Storage", "Session Storage") during the use of the public platform solutii.imfs.ro, as well as the authenticated workspace (Dashboard/App).

For architectural reasons specific to modern applications (Single Page Application / Next.js type), the use of certain technical data fragments saved on the Client's device is strictly necessary to be able to offer the contracted services (e.g., maintaining the encrypted session without re-authenticating at every click).

2. Details of Storage Technologies Used

We separate cookies and stored data based on their level of criticality for the proper functioning of the platform:

Strictly Necessary Storage (System & Security)

Modules without which the ecosystem cannot be used or logged into. Does not require consent according to GDPR directives, being indispensable to providing the electronic service expressly requested by the user.

  • JWT Tokens (JSON Web Tokens): Saves the authentication state (Auth) encrypted in Local Storage / HttpOnly Cookies with a rolling validity of 24h.
  • Anti-CSRF Tokens: Prevents forged validations when submitting financial forms and VAT returns.
  • Load Balancing Affinity: Internal firewall server cookies to tie the user's session to a specific instance (Node) of the cluster, preventing accidental logouts.

Functional Settings & Interface (UI/UX)

Persistent storage (Local Storage) used exclusively to provide a personalized and fluid interface, saving user preferences on the current device.

  • Visual Theme (Theme): Remembers the preferred dark-mode or light-mode setting for the workspace (e.g., next-theme).
  • Interface State: Saves the width of side panels (Sidebar), settings of hidden accounting tables, collapsed modules in ERP (for fluidity upon reopening).

Analytics & Telemetry (B2B Telemetry)

Anonymized scripts that help us monitor the technical health of the system, network bottlenecks, and overall usage of the platform, allowing us to adjust server capabilities according to demand.

  • Analytics Tools: Cookies set by internal or authorized monitoring systems. Collect strictly report loading times, clicks in error, device/resolution (for optimization). Bypass IP logging.

Third-Party & Marketing Cookies (Public page only)

These cookies interact exclusively on the commercial frontend area (marketing website). They are natively disabled once the visitor logs into the Dashboard system instances (where we process CRM/Accounting/AI data). They help us with visibility campaigns on MetaAds or LinkedInAds.

3. JWT Security and XSS Vulnerabilities

The IMFS system operates accounting databases and AI data. As a Zero-Trust architecture model:

  • Most critical credentials are set with HTTPOnly and Secure flags on the server, directly invisible to JavaScript, thus evading XSS (Cross Site Scripting) attempts.
  • Third-party modules in marketing subpages are Sandboxed from the /dashboard or /api route engine.

4. Consent Control

You have, through the integrated GDPR legislation, the freedom to juggle with non-essential permissions.

You can revoke permissions at any time by visiting the "Account Security Center" inside the Dashboard, or by blocking the installation of trackers through your browser's native settings (e.g., Enhanced Tracking Protection in Safari/Firefox or the Site Settings panel in Chrome). Modifying strict cookies (Login system) will inherently lead to your disconnection from the software.

Technical Details & Security Support

Our Information Security team is at your disposal for any architectural clarifications.

Contact InfoSec
<IMFS/>one

Unified infrastructure for secure businesses.

Unified PlatformEU-RO Hosted
Legal & Compliance
  • Terms & Conditions SaaS
  • GDPR & Security Policy
  • Technologies & Cookies
© 2026 IMFS Group. Built with global standard ambition.All rights reserved.