Last Updated: November 05, 2025 

xSigning website and xSigning service use cookies—small text files stored on your device—to optimize your experience, make it more efficient, and adapt it to your preferences. The cookies used have different purposes: personalizing content, providing social media features, analysing our traffic, and managing sessions and preferences. 

xSigning, with registered address at Calle Poeta Joan Maragall 23 (Edificio Networkia) 28020 Madrid, is the Data Controller for personal data collected through this website, including data obtained through cookies and similar technologies. As Data Controller, xSigning determines the purposes and means of processing such data in accordance with Regulation (EU) 2016/679 (GDPR) and the Spanish LSSI, particularly Article 22.2 regarding the use of cookies.

When you visit our site for the first time, you will be presented with a cookie notice that allows you to choose which categories you wish to enable. You may modify these settings at any time using your browser. If you reject certain cookies, some site functionalities may not be available or may be limited. 

Cookies are files that can be sent to your device from a web server to record the user’s navigation on that server (e.g., identifying the session, accessing the service, etc.). These cookies may or may not allow for your identification. Based on their duration or ownership, they can be classified as follows: 

2.1 BY OWNERSHIP 

• First-party cookies: These are sent to the user’s device from a computer or domain managed by the editor itself, and from which the service requested by the user is provided. 
• Third-party cookies: These are sent to the user’s device from a computer or domain that is not managed by the editor, but by another entity that processes the data obtained through the cookies. 

2.2 BY DURATION 

• Session cookies: These are a type of cookie designed to store data while the user accesses a website. 
• Persistent cookies: These are a type of cookie in which the data remains stored on the terminal and can be accessed and processed for a period defined by the cookie controller, which can range from a few minutes to several years. 

2.3 BY FUNCTIONALITY 

• Strictly Necessary cookies: These are essential for the proper functioning of the website. They do not collect any type of user data and gather information such as language preference or whether the cookie policy has been accepted, etc. 
• Analytics cookies: These, processed by us or by third parties, allow us to quantify the number of users and thus carry out the measurement and statistical analysis of the use users make of the offered service. For this purpose, your navigation on our website is analysed to improve the offer of products or services we provide. 
• Advertising or Marketing cookies: These allow for the most effective management possible of the advertising spaces that, where applicable, the editor has included on a website, application, or platform from which the requested service is provided, based on criteria such as edited content or the frequency with which the ads are shown. 

3.1. TECHNICAL AND AUTHENTICATION COOKIES – CLERK INC. 

This service utilizes Clerk Inc. Only for secure user authentication and session management for customers who log in xSigning service. These cookies are Strictly Necessary for the functioning of the service and are only set when the user accesses the restricted area or the xSigning service. They do not require consent, in accordance with Article 22.2 of the LSSI. 

Important Details: 

• They do not store Personally Identifiable Information (PII) by default. 
• They are necessary for Clerk to function correctly and should not be blocked. 
• They use security attributes HttpOnly, Secure, and SameSite=Lax. 
• The exact list may vary depending on the configuration in the Clerk dashboard. 

Data Processor: Clerk Inc. acts as the data processor in relation to authentication.
Processing: The data processed is limited to tokens and session metadata for validation and security purposes.
More information: https://clerk.com/privacy 

3.2. ANALYTICS COOKIES – GOOGLE ANALYTICS 4 

We use Google Analytics 4 (GA4), a web analysis service provided by Google LLC. 

This service uses cookies to collect anonymous and aggregated data about user interaction with the site. 

Data Processor: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
Legal Basis: User consent (Art. 6.1.a GDPR) via the cookie banner.
International Transfers: Google LLC performs transfers to the USA in accordance with the European Commission’s Standard Contractual Clauses.
More information: https://policies.google.com/privacy 

3.3. GDPR CONSENT TECHNICAL COOKIE 

This cookie is essential to remember the user’s selected cookie consent preference, ensuring that the choice is respected on future visits. 

In addition to cookies, this site uses the browser’s local storage, known as localStorage, to save the following user preferences: 

• Visual theme (light mode / dark mode) 
• Interface language (Spanish / English / Catalan) 
• Grid or table settings (column widths, sort order) 
• Cookie banner status (accepted / rejected) 

Purpose: To enhance the user experience and maintain their preferences across sessions.
Data Stored: No personal or unique identifier information is saved; only technical/display preferences are recorded.

Duration: Data remains until the user manually deletes it or resets the browser. 

How to Delete localStorage: This can be done through the browser’s developer tools: in most browsers, F12 → Application/Storage → LocalStorage → delete the desired elements. 

The use of the described cookies and technologies is supported by the following legal grounds: 

• Article 6 (1) (f) of Regulation (EU) 2016/679 (GDPR): Legitimate interest to ensure the correct technical functioning and security of the service. 
• Article 22.2 of Law 34/2002 on Services of the Information Society and Electronic Commerce (LSSI-CE): Exemption from consent for those cookies strictly necessary for the provision of the service expressly requested by the user. 

Therefore, explicit consent is not required for technical and authentication cookies that are essential for the site’s operation. 

User Rights: Under the GDPR, you have the right to access, rectify, erase, restrict processing, object to processing, and exercise data portability regarding your personal data. To exercise these rights, you can contact us through the data protection email: dataprotection@xsigning.com. 

You can configure your browser to accept or reject cookies, as well as to delete them. Keep in mind that by deleting cookies or localStorage, you may be forced to log in again, lose preferences, or affect site functions. 

Browser Instructions: 

• Google Chrome: Settings → Privacy and security → Clear browsing data → Cookies and other site data.
  https://support.google.com/chrome/answer/95647 
• Mozilla Firefox: Options → Privacy & Security → Cookies and Site Data → Clear Data.
  https://support.mozilla.org/en-US/kb/enhanced-tracking-protection-firefox-desktop 
• Safari (macOS): Preferences → Privacy → Manage Website Data → Remove All. https://support.apple.com/guide/safari/manage-cookies-and-website-data-sfri11471/mac 
• Microsoft Edge: Settings→ Privacy, search, and services → Clear browsing data → Choose what to clear. https://support.microsoft.com/en-us/microsoft-edge/manage-cookies-in-microsoft-edge-view-allow-block-delete-and-use-168dab11-0753-043d-7c16-ede5947fc64d 
• Deleting localStorage: Open the developer tools (F12) → Application/Storage→ LocalStorage → delete the desired elements. 

Warning: 

• Deleting authentication cookies may require logging in again. 
• Deleting preferences in localStorage will reset the theme, language, and display settings to default values. 

This cookie policy may be updated at any time to reflect changes in legislation, improvements to our services, or modifications to the cookies we use. We will publish the date of the last update at the beginning of this document.