Cookie Policy

Last updated: 13 October 2025

This Cookie Policy explains how Your Company Name (“we”, “us”, “our”) uses cookies and similar technologies on [yourdomain.com] (the “Website”). It sits separately from our Privacy Policy and focuses on storage/reading of information on your device (e.g., cookies, local storage, SDKs, pixels).

If you have questions, contact [[email protected]].

1) What are cookies and similar technologies?

• Cookies are small text files stored on your device by your browser.
• Local/Session Storage lets the Website store data in your browser.
• Pixels/Tags/SDKs are code snippets used for analytics, security, and ads measurement.

Some are first-party (set by us) and others are third-party (set by our service providers).

2) How we categorize technologies

We group cookies/technologies into four categories:

1. Strictly Necessary
   Enable core functions (e.g., secure login, checkout/credits flow, load balancing, fraud/bot protection, language preference needed to deliver the service).
   • Legal basis (EEA/UK): exemption under ePrivacy rules; processing under GDPR Art. 6(1)(b) (contract) and/or 6(1)(f) (legitimate interests: security, availability).
2. Performance (Consent)
   Help us measure site usage and improve features (e.g., page performance, error events, aggregated statistics).
   • Legal basis: your consent (GDPR Art. 6(1)(a)).
3. Functional (Consent)
   Enhance experience beyond what’s strictly necessary (e.g., remembering optional settings, product tours).
   • Legal basis: your consent (GDPR Art. 6(1)(a)).
4. Marketing (Consent)
   Measure conversions and the effectiveness of campaigns, and (where used) show or limit ads for you on other sites.
   • Legal basis: your consent (GDPR Art. 6(1)(a)).
   • Note for EEA/UK: no non-essential tracking without consent.

You can grant/withdraw consent at any time via the Cookie Settings link (footer) or the banner shown on first visit from the EEA/UK.

3) Your choices and how to withdraw consent

• Cookie Settings: Use our on-site Cookie Settings to enable/disable Performance, Functional, and Marketing categories anytime. Changes apply going forward.
• Browser controls: Most browsers let you block or delete cookies. See: Chrome, Firefox, Safari, Edge (help pages). Blocking Strictly Necessary items may break the Website.
• Do Not Track / GPC: Where feasible, we honor global privacy controls as a signal to disable non-essential categories by default in the EEA/UK.

4) What we use (examples)

Below is an illustrative overview. The exact list in Cookie Settings is authoritative and may change over time.

A. Strictly Necessary

• session_id (First-party) — Secure session/login and CSRF protection. Type: cookie. Duration: session.
• credit_checkout (First-party) — Supports credit/checkout flow. Type: local storage. Duration: up to 7 days.
• cf_ / bot score* (CDN/Security, e.g., Cloudflare) — Bot/attack mitigation and availability. Type: cookie. Duration: minutes to hours.
• lang_required (First-party) — Essential UI language required to render the site. Type: cookie. Duration: 1 month.

B. Performance (Consent)

• anon_stats (Analytics, e.g., Matomo/Plausible) — Aggregated page views, performance, and error metrics. Type: cookie. Duration: 13 months.
• pv (First-party) — Counts visits to improve UX. Type: local storage. Duration: 12 months.

C. Functional (Consent)

• tour_seen (First-party) — Remembers if you’ve completed product tours/tooltips. Type: local storage. Duration: 6 months.
• ui_pref_opt (First-party) — Stores optional interface preferences. Type: cookie. Duration: 1–6 months.

D. Marketing (Consent)

• conv_* (Ads measurement, e.g., Google/Microsoft/LinkedIn/Meta/Reddit) — Conversion reporting and audience limits. Type: pixel/cookie. Duration: ongoing until withdrawn.
• email_hash (if used) (Ads partner) — Matches conversions to opt-in campaigns. Type: server-to-server. Duration: ongoing until withdrawn.

We do not set non-essential items unless you opt in. If we add or remove vendors, we’ll update Cookie Settings and this page.

5) Local storage and similar

Where we use Local Storage/Session Storage for necessary functions (e.g., device binding for abuse prevention or resume-checkout), this is treated as Strictly Necessary. Non-essential local storage requires consent and appears under Functional or Marketing.

6) Third-party recipients

Where non-essential categories are enabled, limited data (e.g., IP, user-agent, page path, event IDs) may be shared with the chosen provider to deliver analytics/measurement. Transfers outside the EEA/UK, if any, are safeguarded per GDPR (e.g., Standard Contractual Clauses). See our Privacy Policy for details.

7) Retention

• Cookie/Storage lifetimes vary by item (see tables).
• Analytics reports are retained only in aggregate or for periods necessary to improve the service.
• You can clear cookies/storage any time via your browser.

8) Updates to this Cookie Policy

We may update this Policy to reflect changes in technologies, vendors, or legal requirements. Material changes will be communicated (e.g., banner or notice). The “Last updated” date shows the latest version.