Last updated: 2026-05-09

Cookie Policy

This Cookie Policy explains what cookies are, which cookies CookieGuard sets, why we set them, and how you can control them. CookieGuard is operated by Engagee LTD ("Engagee", "we", "us"). For broader detail on how we handle personal data, see our Privacy Policy.

1. What is a cookie?

A cookie is a small text file that a website stores in your browser when you visit. Cookies are commonly used to keep you signed in, to remember preferences, or to measure how a site is used. Some cookies are set by the site you are visiting (first-party cookies); others are set by third-party services that the site uses (third-party cookies).

2. The cookies we use

We split cookies into two groups: essential (always on, required for the site to work) and non-essential (only set after you give consent in our cookie banner). Specifically:

2.1 Essential — first-party (always on)

Name: studio_session
Set by: CookieGuard (first party)
Purpose: Authenticated session — keeps you signed in across requests so you don't have to re-authenticate on every page load.
Lifetime: Approximately 30 days from your last sign-in.
Type: HTTP-only, Secure, SameSite=Lax.
Why we set it: Strictly necessary for authentication and account features. Without it you cannot stay signed in.

2.2 Essential — third-party (Stripe Checkout only)

Set by: Stripe, on the checkout.stripe.com domain, only when you are upgrading to a paid plan.
Purpose: Operates the secure checkout page (fraud prevention, card-entry session continuity, Stripe Radar signals).
Lifetime: Set and managed by Stripe; see Stripe's cookie policy.
Why we accept them: Card payment cannot be processed safely without them. We never see Stripe's cookies — they live on Stripe's domain.

These Stripe cookies are set on the Stripe checkout page, not on ai2.91-99-176-101.nip.io, and only during a checkout flow. If you never start a checkout, no Stripe cookie is set.

2.3 Analytics — Google Analytics 4 (only with your consent)

Names: _ga, _ga_<property-id> (set on the ai2.91-99-176-101.nip.io domain).
Set by: Google LLC via Google Analytics 4 (third party).
Purpose: Helps us understand which pages people use, which features break, and what to fix. Aggregate counts only — we do not run advertising or remarketing through GA.
Lifetime: Up to 2 years from your most recent visit.
Consent state: We use Google's Consent Mode v2 with analytics_storage set to denied by default. GA4 receives only cookieless pings until you click "Accept all" or enable Analytics in our cookie banner. We never enable ad_storage.
Data flow: Anonymised hit data goes to Google. Google's privacy notice: policies.google.com/privacy.
How to opt out: Click "Manage cookies" in the footer and turn off Analytics, or click "Essential only" in the banner on first visit. You can also install Google's opt-out browser add-on.

2.4 Marketing cookies (not currently used)

There is a "Marketing" toggle in the cookie banner reserved for the future, but at present CookieGuard sets no marketing or advertising cookies. No Facebook Pixel, no Google Ads pixel, no LinkedIn Insight, no TikTok pixel, no retargeting, no social-share trackers, no fingerprinting beacons. If that ever changes, we will update this page and ask for fresh consent before any new cookie is set.

3. How consent works on CookieGuard

On your first visit you'll see a small banner in the bottom-right corner with three choices:

Accept all — turns on Analytics (Google Analytics 4) and any future Marketing cookies.
Essential only — keeps Analytics off. Only the session cookie (and Stripe, during checkout) is set.
Customize — opens a preference panel so you can pick category by category.

Your choice is stored locally in your browser (in localStorage under the key cookie_consent) so we don't ask again on every page. You can change your mind at any time using the Manage cookies link in the footer. If we materially change which cookies we set, we bump the consent version and ask again.

4. Why this matters

Essential cookies (session + Stripe during checkout) are exempt from prior-consent requirements under EU/UK ePrivacy law because they're strictly necessary to deliver functionality you explicitly asked for. Analytics cookies are not exempt — that's why we wait for your consent before GA4 stores any identifier in your browser.

5. Your choices

5.1 Disabling cookies in your browser

Every modern browser lets you block or delete cookies. The exact steps differ by browser; here are the official instructions:

Please note: if you block our session cookie, you will not be able to sign in or use any feature that requires an account. The Service relies on the session cookie to remember who you are. If you block Stripe's cookies, you will not be able to complete a checkout.

5.2 Signing out

Signing out from your account page clears the session cookie immediately. You can also delete cookies for ai2.91-99-176-101.nip.io from your browser settings at any time.

6. Changes to this Cookie Policy

We may update this Cookie Policy from time to time to reflect changes to the cookies we set. Material changes will be announced through the email on your account, where applicable, and the "Last updated" date below will always reflect the most recent version.

7. Contact

If you have questions about this Cookie Policy, please write to legal@ai2.91-99-176-101.nip.io.

Last updated: 2026-05-09