Cookie Policy

Last updated: April 9, 2026

What are cookies?

Cookies are small text files that websites place on your device to remember things like your language, whether you're signed in, or which pages you've already visited. Some cookies are set by us (first-party) and some are set by companies we work with (third-party). We also use related technologies like browser local storage and pixels; wherever this policy says “cookies”, we mean all of them.

Our approach

We use a simple, opt-in model. Only strictly essential cookies load by default. Nothing that tracks your behaviour — analytics, advertising, or call attribution — loads unless you say yes. That's true globally, because we prefer a single honest default over a patchwork that depends on where you happen to be.

We implement Google's Consent Mode v2, which means that even if a downstream tag fires early, it receives a “denied” signal until you consent. When you accept Analytics or Marketing cookies, we send an “update” signal and the relevant scripts are injected on the fly.

Cookie categories

Essential. Required for the site to work — navigation, form submission, spam protection, load balancing, sign-in. These cannot be switched off.

Analytics. Helps us understand how visitors use the site so we can improve it. Loads Google Tag Manager and Google Analytics 4 when enabled.

Marketing. Measures campaign performance and attributes phone calls to the marketing channel that brought you. Loads CallRail and any advertising pixels configured in GTM when enabled.

Cookies used on this site

Vendor	Purpose	Category	Cookies / storage	Retention
Maimon Group (this site) Remembers your cookie preferences, keeps you signed in to admin areas, protects against CSRF. maimon_cc, maimon_admin_session, maimon_site_unlock · Up to 6 months	Remembers your cookie preferences, keeps you signed in to admin areas, protects against CSRF.	Essential	maimon_cc, maimon_admin_session, maimon_site_unlock	Up to 6 months
Google Tag Manager / Google Analytics 4 Measures site usage (pages viewed, scroll depth, conversions) so we can improve the site. Runs in a consent-aware mode; no analytics cookies are set unless you enable Analytics. _ga, _ga_*, _gid, _gat · Up to 2 years (per Google defaults)	Measures site usage (pages viewed, scroll depth, conversions) so we can improve the site. Runs in a consent-aware mode; no analytics cookies are set unless you enable Analytics.	Analytics	_ga, _ga_*, _gid, _gat	Up to 2 years (per Google defaults)
CallRail (dynamic number insertion) Swaps the phone number shown on the site so we can attribute calls to the marketing channel that sent you. Only loads when Marketing is enabled. __ctmid, __ctmid_exp, __ar_v4 · Up to 2 years	Swaps the phone number shown on the site so we can attribute calls to the marketing channel that sent you. Only loads when Marketing is enabled.	Marketing	__ctmid, __ctmid_exp, __ar_v4	Up to 2 years
HubSpot (forms & contact requests) Used on enquiry/quote forms to submit the form itself and prevent abuse. Only set when you interact with a HubSpot form. hubspotutk, __hssc, __hssrc, __hstc · Up to 13 months	Used on enquiry/quote forms to submit the form itself and prevent abuse. Only set when you interact with a HubSpot form.	Essential	hubspotutk, __hssc, __hssrc, __hstc	Up to 13 months
Akia (guest chat) Powers the on-site chat/messaging widget and preserves the conversation state across pages. akia-*, local/session storage · Session / up to 12 months	Powers the on-site chat/messaging widget and preserves the conversation state across pages.	Essential	akia-*, local/session storage	Session / up to 12 months
Cloudflare Stream (video) Serves the property tour videos embedded across the site. Session-only and strictly technical. __cf_bm (bot-management), CF_Stream-* (load balancing) · Session / 30 minutes	Serves the property tour videos embedded across the site. Session-only and strictly technical.	Essential	__cf_bm (bot-management), CF_Stream-* (load balancing)	Session / 30 minutes
Google reCAPTCHA Protects forms (quote, contact, enquiry) against spam and abusive bots. Classified as essential because submitting the form without it is not possible. NID, _GRECAPTCHA · Up to 6 months	Protects forms (quote, contact, enquiry) against spam and abusive bots. Classified as essential because submitting the form without it is not possible.	Essential	NID, _GRECAPTCHA	Up to 6 months
Mapbox Renders the interactive maps on property and destination pages. Uses session storage to cache tiles. session/local storage only · Session	Renders the interactive maps on property and destination pages. Uses session storage to cache tiles.	Essential	session/local storage only	Session

Managing your choices

You can change your mind at any time. Use the button below to re-open the preferences panel and switch categories on or off. Your new choice applies immediately — analytics or marketing scripts are injected or left out on the very next action.

You can also control cookies from your browser: most browsers let you block cookies entirely, block third-party cookies only, or clear the cookies you've already accepted. Details are in your browser's help pages (Chrome, Safari, Firefox, Edge). Blocking all cookies may break parts of the site that rely on them, such as the admin area or booking forms.

Where applicable, you also have rights under laws such as the GDPR, UK GDPR, and the CCPA — including the right to access, correct, or delete the personal data we hold about you, and to object to its processing. To exercise those rights, email us at Info@TheMaimonGroup.com.

Changes to this policy

We may update this policy when we add, remove, or change the vendors we work with. The “Last updated” date below always reflects the most recent revision. If the change materially affects how your data is processed, we'll show the banner again and ask you to confirm your preferences.

Questions? See our Terms & Conditions or contact us at Info@TheMaimonGroup.com.