Cookies Policy
Cookies set before you consent: zero.
We ask first. The only cookies this site can set belong to Google Analytics, which shows us which pages help visitors, and they exist only after you allow them. Decline and you browse the identical site with none.
until you opt in
The disclosure table, still short
Cookie policies list each cookie by name, purpose, and lifetime. Here is our complete inventory, by category, including the two that exist only with your consent.
Effective date: July 11, 2026 · Applies to regulatoryacademy.com
What this policy covers
This policy covers regulatoryacademy.com, the public website of Regulatory Academy. It documents every cookie this site can set (two, both from Google Analytics, and only with your consent), the consent choice that governs them, and the strictly necessary storage used by the client portal. It supplements our Privacy Policy, which describes our broader information practices, and forms part of our Terms of Use.
What we set, and when
Every page on regulatoryacademy.com is static HTML with no login or cart, so the site itself needs no cookies to function. Until you make a choice on the consent banner, it sets nothing at all. Once you choose, one strictly necessary localStorage entry (rlp-consent) records your answer so we don’t ask again; it contains a single word and no identifier.
If you allow analytics, Google Analytics 4 sets two first-party cookies:
- _ga distinguishes returning visitors using a random identifier. Lifetime: 2 years nominal; browsers such as Chrome cap it at about 13 months.
- _ga_TF6MH5V7TS maintains session state for our property. Same lifetime as _ga.
That is the complete list. We enable no Google signals, no demographics, and no advertising features; Google’s Consent Mode keeps every advertising flag permanently denied on this site; and Google processes the analytics data on our behalf. If you decline, or simply never answer the banner, the analytics script never loads and not a single request goes to Google Analytics.
The only other third-party request these pages make is for our display typeface, loaded from Google Fonts. Per Google’s documentation, the Fonts API serves font files without setting cookies.
Verify it yourself
We spend our working lives being audited, so we won’t object if you audit us. In Chrome or Edge, open Developer Tools, choose the Application tab, and expand Cookies in the left rail. In Firefox, use the Storage tab; in Safari, enable the Develop menu and check Storage. Before you answer the banner, the panel is empty. Decline, and it stays empty. Allow analytics, and you will find exactly the two _ga entries named above.
If you ever find more than we have disclosed here, tell us. We will treat it as a deviation and correct it.
Change your mind
Your choice is yours to revise, in either direction. The panel below shows your current setting and changes it immediately: withdrawing consent stops collection on the spot and removes the Google Analytics cookies we can reach from this page.
Loading your current setting…
The client portal
The client portal at portal.regulatoryacademy.com is a separate, credentialed application for active clients and consultants. Signing in requires strictly necessary session storage: an authentication token kept in your browser so the portal knows who you are between clicks. That storage exists solely for sign-in and security, expires with your session or shortly after, and is never used for advertising or analytics.
Portal data handling is governed by our Privacy Policy and the applicable engagement agreement. If you never sign in to the portal, none of this touches your browser.
Outbound links
Where this site links elsewhere (LinkedIn, regulators’ sites, cited sources), those destinations set their own cookies under their own policies once you arrive. We don’t control them, and we receive nothing from them about your visit.
Do Not Track and Global Privacy Control
Some browsers send Do Not Track or Global Privacy Control signals, and sites must decide how to honor them. We honor both the strong way: if your browser sends either signal, we treat it as a declined banner. You are never asked, and the analytics script never loads, unless you later opt in explicitly using the panel above.
If this ever changes
This page changed on July 11, 2026, the day we adopted Google Analytics, and the updated policy shipped in the same release as the cookies it describes. That is the standard we hold ourselves to: if we ever add another cookie, it will be listed here by name, purpose, and lifetime before it ships, with consent requested where the law requires it. The effective date at the top of this page always reflects the current version.
Contact
Questions about cookies or tracking go to the same inbox a person actually reads:
Regulatory Academy
hello@regulatoryacademy.com