Last updated: May 16, 2026
This Cookie Policy explains how Visto n' Visa, LLC ("Visto n' Visa", "we") uses cookies, pixels, local storage, session storage, limited fingerprinting, and similar technologies (collectively, "Cookies") on the website vistonvisa.com and its versions in other languages, subdomains, and applications (the "Services"). This Policy is incorporated into our Privacy Policy.
1.1. Cookies are small text files with a unique identifier, placed by a browser on your device (computer, phone, or tablet) when you visit a website. They allow the site to recognize your browser, remember your preferences, maintain authenticated sessions, measure audience, and personalize the experience.
1.2. Similar technologies include, among others: local storage and session storage (data stored within the browser itself), web beacons and tracking pixels (1×1 pixel images used to track email opens or page views), SDKs in mobile applications, and platform advertising identifiers (IDFA on iOS, AAID on Android).
2.1. For purposes of this Policy, we classify Cookies into four categories, in accordance with the international standard adopted by European data protection authorities and the UK ICO:
2.2. By origin, cookies may be first-party (set directly by Visto n' Visa) or third-party (set by providers integrated into the Services, such as Google, Meta, or Hotjar). By duration, they may be session cookies (deleted when the browser is closed) or persistent cookies (with a defined expiration date).
3.1. The table below describes the Cookies typically used in the Services. The Cookies actually active in your session may vary depending on the features you access, active integrations, and your consent preferences.
| Cookie | Provider | Purpose | Duration |
|---|---|---|---|
PHPSESSID | vistonvisa.com | Server-side session identifier | Session |
wordpress_logged_in_* | vistonvisa.com | Authenticated user login state | 14 days |
wordpress_sec_* | vistonvisa.com | Authenticated session security token | 14 days |
wp-settings-* | vistonvisa.com | Admin interface preferences | 1 year |
vnv_consent | vistonvisa.com | Cookie consent record | 6 months |
cf_clearance / __cf_bm | Cloudflare | Bot protection and DDoS mitigation | 30 minutes to 1 year |
XSRF-TOKEN / _token | vistonvisa.com | CSRF attack protection | Session |
| Cookie | Provider | Purpose | Duration |
|---|---|---|---|
_ga | Google Analytics (Google LLC) | Anonymous visitor identification | 2 years |
_ga_* | Google Analytics 4 | Session state and measurement | 2 years |
_gid | Google Analytics | Daily visitor identifier | 24 hours |
_gat | Google Analytics | Request rate throttling | 1 minute |
_hjSession_* | Hotjar (when active) | Recording session and heatmap | 30 minutes |
_hjSessionUser_* | Hotjar | Anonymous visitor identifier | 1 year |
| Cookie | Provider | Purpose | Duration |
|---|---|---|---|
vnv_lang | vistonvisa.com | Preferred language (PT/EN/ES) | 1 year |
vnv_currency | vistonvisa.com | Preferred display currency | 1 year |
vnv_country | vistonvisa.com | Detected country for editorial personalization | 30 days |
vnv_theme | vistonvisa.com | Theme preference (light/dark) | 1 year |
| Cookie / pixel | Provider | Purpose | Duration |
|---|---|---|---|
_fbp | Meta Pixel (Meta Platforms, Inc.) | Conversion attribution and remarketing | 90 days |
fr | Meta | Ad personalization identifier | 90 days |
_gcl_au | Google Ads | Conversion attribution | 90 days |
NID / 1P_JAR | Google preferences and personalization | up to 2 years | |
li_at / bcookie | LinkedIn Insight Tag | Attribution in LinkedIn campaigns | up to 2 years |
ttq.* | TikTok Pixel | Attribution in TikTok campaigns | up to 13 months |
3.2. Do Not Track policy. Our ecosystem honors the Global Privacy Control (GPC) signal when emitted by a browser, treating it as a valid opt-out instruction for California residents under the CCPA/CPRA. The generic browser DNT signal is treated equivalently whenever technically feasible.
4.1. Strictly necessary Cookies are used on the basis of legitimate interest (LGPD art. 7, IX; GDPR Art. 6.1.f) or performance of a contract (Art. 6.1.b), as they are indispensable to providing the Services.
4.2. All other categories (performance, functional, marketing) are used on the basis of consent (LGPD art. 7, I; GDPR Art. 6.1.a), expressed by an affirmative action in the consent banner.
5.1. Consent banner. On your first access to the Services, we display a banner where you may "Accept all," "Reject non-essential," or customize your preferences by category.
5.2. Review and withdrawal. You may review and withdraw your consent at any time via the "Cookie Preferences" link in the Services footer. Withdrawal is not retroactive with respect to processing already carried out, but stops any new processing based on the withdrawn categories.
5.3. Browser settings. You may also block or delete cookies directly in your browser. Reference guides:
5.4. Impact of disabling cookies. Disabling essential cookies prevents login, cart, payment, security, and other authenticated features from functioning. Disabling performance/functional cookies reduces personalization and measurement. Disabling marketing cookies may result in less relevant ads on other platforms, but does not reduce the total volume of ads served by third parties.
6.1. To limit cross-context behavioral advertising on third-party platforms, you may use:
7.1. Third-party providers listed in this Policy may process data in jurisdictions outside of Brazil and the EU/UK, particularly in the United States. The applicable safeguards are described in Section 7 of the Privacy Policy.
8.1. This Policy may be updated to reflect changes in the technologies we use, integrations with third parties, or applicable rules. The date of the last update appears at the top of this page.
Data Protection Officer (DPO)
Visto n' Visa, LLC — 169 Madison Avenue, New York, NY 10016, USA
Email: [email protected]
English 
Português 
Español