Bespoke Vision

1. INTRODUCTION

This Cookie Policy explains how Barber London Design Ltd, a company registered in England and Wales under company number 14715894, trading as Furniture Visualizer ("Furniture Visualizer", "we", "us", or "our") utilises cookies and similar tracking technologies when you visit our website or use our digital canvas application (the "Service"). This document must be read directly alongside our Privacy Policy (which details the specific lawful bases governing each cookie category) and our overarching Terms and Conditions.

2. WHAT ARE COOKIES?

Cookies are small text files that are placed on your device (computer, tablet, or mobile) when you visit a website. They are widely used to make websites work, to make them operate more efficiently, and to provide analytical or operational information to the owners of the site. Similar tracking technologies, such as local storage, pixels, and software development kits (SDKs), perform comparable functions; where we refer to "cookies" in this policy, we mean cookies and all such equivalent technologies.

Cookies can be grouped by their operational lifecycle:

Session Cookies: These are temporary tracking files that expire and are automatically cleared from your device once you close your web browser.
Persistent Cookies: These remain stored on your device for a pre-determined period or until you choose to manually delete them.

Cookies can also be grouped by the domain that deploys them:

First-Party Cookies: Set directly by us, operating on our own primary domain.
Third-Party Cookies: Set by separate third-party service providers that we engage to operate the Service securely and efficiently.

3. HOW WE CATEGORISE COOKIES

We group cookies into four distinct functional categories, ensuring perfect symmetry with the data taxonomy defined within our Privacy Policy:

Strictly Necessary Cookies: Required to operate the core infrastructure of the Service safely and correctly. These technologies manage your authenticated user login sessions, protect data forms, secure payment transactions against fraud, and defend our digital canvas against automated bot abuse. Because the platform cannot function safely without these underlying mechanisms, you cannot deactivate them within our systems. We rely on these cookies on the explicit legal basis that they are strictly essential to deliver the Service you have requested.
Functional Cookies: Utilised to remember personal choices you make to provide an enhanced user experience, including your specific Profile and Workspace Settings. These cookies are non-essential, meaning we will only ever deploy them on your device with your explicit consent.
Analytics Cookies: Utilised to monitor aggregated interaction metrics, identify feature popularity trends, and isolate platform errors so that we can systematically optimise the Service. The datasets captured by these cookies are aggregated and de-identified, meaning they do not directly identify you. These are non-essential and require your explicit consent before activation.
Marketing Cookies: Utilised to track the real-time conversion rates of our external advertising campaigns and to optimise the delivery of promotional content tailored to your design preferences. These are non-essential and are only deployed following your explicit consent.

4. THE COOKIES WE USE

To ensure absolute transparency for our users and external compliance auditors, the table below details the exact tracking technologies deployed across our domain. To respect the privacy of our internal systems, we name only the specific tracking elements visible within your web browser, completely omitting internal or server-side tools that do not place files on your local device.

Stripe Integration & Data Boundary: The sensitive data entry and transaction processing components of your payment take place securely on Stripe's own hosted infrastructure. However, Stripe's advanced fraud-prevention script runs directly on our local checkout pages and deploys the essential device identifiers (__stripe_mid and __stripe_sid) listed in the matrix below to protect our ecosystem from card exploits.

4.1 Strictly necessary cookies

These tracking elements are fundamentally required to maintain platform stability, enforce user security, and secure transaction workflows. They are permanently active and cannot be deselected within our interface.

Cookie name / technology	Provider	Purpose	Duration	First / third party
__session	Furniture Visualizer (Firebase)	Keeps you securely signed in to your account as you navigate between different canvas tools, eliminating the need to re-authenticate on every page.	five (5) days	First party
__cf_bm	Cloudflare	Site-wide bot management, rate-limiting, and reverse-proxy security layer that actively shields our entire domain from automated scraping and malicious traffic abuse.	thirty (30) minutes	First party
__stripe_mid	Stripe	Collects hardware telemetry and a persistent device identifier on checkout interfaces to proactively flag, monitor, and mitigate fraudulent card transactions.	one (1) year	First party
__stripe_sid	Stripe	Collects real-time session telemetry on checkout elements to monitor transactional security patterns and combat automated card-testing exploits.	thirty (30) minutes	First party

4.2 Functional cookies

We do not currently set any functional cookies across the Service. If we introduce them in future updates to remember specific toolbar layouts, they will be strictly blocked by default and listed here upon activation, requiring your prior consent.

4.3 Analytics cookies

We do not currently deploy analytics cookies across our domain. We intend to introduce verified analytics infrastructure before our public launch to track aggregated, de-identified feature engagement trends. These cookies will remain entirely inactive until you explicitly opt in via our consent banner. Any analytics data compiled in the future will remain strictly aggregated and non-attributable.

4.4 Marketing cookies

We do not currently deploy marketing cookies or advertising measurement pixels. If we introduce promotional tracking systems in the future to measure external campaign conversions, they will be disabled by default and will require affirmative consent before firing.

5. YOUR CONSENT AND HOW TO CHANGE IT

We are committed to giving you clear, granular control over the tracking technologies deployed on your device. Because the Service strictly blocks all non-essential tracking by default, your data is insulated from analytics and marketing scripts until you explicitly choose to allow them.

5.1 The cookie consent architecture

When you access the Service for the first time, a consent banner will be presented to you. This banner provides an active mechanism to manage your privacy choices via three options:

Accept All: Grants permission for our platform to activate all functional, analytics, and marketing tracking technologies.
Reject Non-Essential: Completely blocks all functional, analytics, and marketing cookies, ensuring that only our strictly necessary technical cookies remain active. Choosing to reject these tracking layers is structurally just as simple and fast as accepting them.
Manage Preferences: Opens an interactive preference window that lets you toggle consent on or off for individual categories (Functional, Analytics, Marketing) before any scripts are executed.

Strictly necessary cookies do not require your consent under UK law, as our digital canvas and authentication infrastructure cannot safely operate without them.

5.2 Revoking or modifying your consent

Your privacy choices are completely flexible, and you can change your mind at any point. To adjust or entirely withdraw your cookie consent, click on the "Cookie preferences" hyperlink embedded within the footer of every page across the Service.

Letting you re-open your interactive consent dashboard at any time allows for real-time adjustments to your toggles. Your selections are backed by a dedicated Cookie Preferences page to ensure your updated settings are immediately recorded across your user session.

6. CONTROLLING COOKIES IN YOUR BROWSER

In addition to the in-app preferences dashboard provided via our consent banner, most modern web browsers allow you to view, manage, and erase cookies directly through their native security settings.

The specific configuration steps differ depending on the browser application you utilise:

Google Chrome: Accessible via Settings > Privacy and security > Third-party cookies.
Microsoft Edge: Accessible via Settings > Cookies and site permissions > Cookies and data stored.
Mozilla Firefox: Accessible via Settings > Privacy & Security > Cookies and Site Data.
Apple Safari: Accessible via Settings > Privacy > Advanced > Website Data.

To access a comprehensive, independent guide detailing how to audit, manage, or delete cookies across various browser environments, you may visit www.aboutcookies.org or www.allaboutcookies.org.

Please Note: If you deploy high-level browser restrictions or privacy extensions that completely block our strictly necessary cookies, critical elements of the Service, including secure user login sessions, Stripe transactional processing, and real-time image generation engines, will fail to function.

7. CHANGES TO THIS POLICY

We may update this Cookie Policy from time to time, for example when we introduce new analytical tools or infrastructure providers. Any modifications will be posted directly on this page with an updated "Last Updated" date displayed at the top of the document. We encourage you to review this page periodically to stay fully informed about how we utilise cookies and maintain your digital privacy.