Cookie Policy

1. What Are Cookies

Cookies are small text files that are stored on your device (computer, tablet, or mobile) when you visit our website. They help us provide you with a better experience by remembering your preferences and understanding how you use our service.

CompanionFrame API uses cookies and similar tracking technologies to operate our B2B platform, provide essential functionality, and improve our service for business customers.

2. How We Use Cookies

Essential Functionality

• Account authentication: Keep you logged into your business dashboard
• Security protection: Prevent unauthorized access and protect against attacks
• API key management: Securely manage your API keys and permissions
• Session management: Maintain your preferences and settings during your visit

Service Improvement

• Usage analytics: Understand how our API documentation and dashboard are used
• Performance monitoring: Identify and fix technical issues
• Feature development: Learn which features are most valuable to our customers
• Error tracking: Detect and resolve bugs in our platform

3. Types of Cookies We Use

4. Essential Cookies (Always Active)

These cookies are necessary for our website to function properly. They cannot be switched off in our systems as they are essential for providing our B2B API service.

Authentication Cookies

• Purpose: Keep business accounts logged in and maintain secure sessions
• Information stored: Encrypted session tokens, login status
• Duration: 30 days or until logout
• Legal basis: Necessary for contract performance

Security Cookies

• Purpose: Protect against Cross-Site Request Forgery (CSRF) and other security threats
• Information stored: Security tokens, request verification data
• Duration: Session only
• Legal basis: Necessary for legitimate security interests

Functional Cookies

• Purpose: Enable core dashboard functionality and API key management
• Information stored: User preferences, dashboard settings, API key references
• Duration: 1 year
• Legal basis: Necessary for contract performance

5. Optional Cookies (Require Consent)

These cookies help us improve our service but are not essential for basic functionality. You can choose whether to accept these cookies.

Analytics Cookies

• Purpose: Understand how business customers use our platform
• Provider: Google Analytics (configured for business data protection)
• Information collected: Page views, feature usage, user journeys (anonymized)
• Duration: 2 years
• Legal basis: Consent

Performance Cookies

• Purpose: Monitor website performance and identify technical issues
• Information collected: Page load times, error rates, browser compatibility
• Duration: 1 year
• Legal basis: Consent

6. Third-Party Cookies

Some cookies are set by third-party services we use to provide our API platform:

Payment Processing (Stripe)

• Purpose: Process subscription payments securely
• Cookies set by: Stripe (stripe.com)
• Information: Payment processing, fraud prevention
• Privacy policy: stripe.com/privacy

Email Services (Resend)

• Purpose: Track email delivery and engagement for transactional emails
• Cookies set by: Resend (resend.com)
• Information: Email delivery status, link clicks in service emails
• Privacy policy: resend.com/privacy

Analytics (Google Analytics)

• Purpose: Business website analytics (only with your consent)
• Cookies set by: Google (google.com)
• Information: Website usage patterns, traffic sources
• Privacy policy: policies.google.com/privacy

7. Managing Your Cookie Preferences

Cookie Consent Banner

When you first visit our website, you'll see a cookie consent banner allowing you to:

• Accept all cookies: Enable all functionality including analytics
• Essential cookies only: Use only necessary cookies for basic functionality
• Customize preferences: Choose which optional cookies to accept

Browser Cookie Controls

You can also manage cookies through your web browser settings:

Google Chrome

• Settings → Privacy and Security → Cookies and other site data
• Choose to block all cookies, block third-party cookies, or allow all cookies
• Manage exceptions for specific websites

Mozilla Firefox

• Settings → Privacy & Security → Cookies and Site Data
• Choose standard, strict, or custom privacy protection
• Manage stored data and set cookie exceptions

Safari

• Preferences → Privacy → Manage Website Data
• Choose to prevent cross-site tracking
• Block all cookies or allow specific websites

Microsoft Edge

• Settings → Cookies and site permissions → Cookies and site data
• Choose to allow, block, or delete cookies
• Manage site-specific permissions

8. Mobile and App Cookies

If you access CompanionFrame API through mobile browsers or integrated applications:

• Mobile browsers: Follow the same cookie policies as desktop browsers
• Mobile app integrations: May use device identifiers instead of cookies
• API integrations: Do not use cookies directly but may store authentication tokens
• Control options: Manage through browser settings or app-specific privacy controls

9. Data Retention and Deletion

Cookie Retention Periods

• Session cookies: Deleted when you close your browser
• Authentication cookies: Expire after 30 days or when you log out
• Preference cookies: Stored for 1 year, renewable with active use
• Analytics cookies: Expire after 2 years maximum

Manual Cookie Deletion

• Browser clearing: Use your browser's "Clear browsing data" function
• Selective deletion: Remove specific cookies through browser developer tools
• Account deletion: Deleting your business account removes associated authentication cookies
• Automatic cleanup: Expired cookies are automatically removed by browsers

10. GDPR and UK Privacy Rights

Under GDPR and UK data protection law, you have specific rights regarding cookies:

Your Cookie Rights

• Right to information: This cookie policy explains how we use cookies
• Right to consent: We ask for consent before setting non-essential cookies
• Right to withdraw consent: You can change your cookie preferences at any time
• Right to object: You can object to analytics and performance cookies
• Right to deletion: You can delete cookies through browser settings or account deletion

Consent Management

• Granular consent: Choose which types of optional cookies to accept
• Informed consent: Clear information about each cookie's purpose
• Withdrawable consent: Easy to change your mind at any time
• Consent logging: We record your consent choices for compliance

11. Business Customer Considerations

As a B2B service, we understand the importance of transparency with business customers:

Enterprise Compliance

• Audit trails: Cookie usage logs available for enterprise compliance reviews
• Data processing agreements: Cookie handling covered in enterprise DPAs
• Staff training: Your team members using our platform are subject to the same cookie policy
• Compliance support: We can provide documentation for your privacy assessments

Multi-User Accounts

• Individual preferences: Each team member can set their own cookie preferences
• Account-level settings: Some preferences apply to the entire business account
• Admin controls: Account administrators can view but not control individual cookie preferences

12. Updates to This Cookie Policy

• Policy updates: We may update this cookie policy to reflect changes in our practices or legal requirements
• Notification: Significant changes will be announced through your account dashboard and email
• Review period: Material changes include a reasonable review period before taking effect
• Continued use: Continued use of our platform after changes constitutes acceptance of the updated policy
• Version history: Previous versions available upon request for compliance purposes

13. Contact Us About Cookies