Nextcloud only stores cookies needed for Nextcloud to work properly. All cookies comes from your Nextcloud server directly, no 3rd-party cookies will be send to your system. Regarding GDPR, only data which contain personal data are relevant.
Cookies stored by Nextcloud¶
|Same-site cookies||no user-related data are stored, all same-site cookies are the same for all users on all Nextcloud instances||forever|
||15 days (can be configured)|
The same-site cookies are used to determine how a request reaches the Nextcloud server. We use to prevest CSRF attacks. No identifable information is stored in those. The rest of the cookies are strickly used to identify the user to the system.