Cookies
Cookie Policy
Alfred uses essential cookies and local storage for authentication, sessions, security, consent, and preferences. Optional analytics, attribution, advertising, or remarketing technologies are not active unless deliberately enabled with the required consent or choices.
Last updated: May 15, 2026
Summary
Essential technologies keep the Service working. Non-essential analytics and marketing technologies are optional, off by default unless enabled and consented, and must not receive sensitive task content, transcripts, support message bodies, payment card data, phone numbers, or exact internal diagnostics.
Cookie and storage categories
| Category | Examples | Purpose | Status | Typical duration |
|---|---|---|---|---|
| Essential authentication and session | Session cookies, login state, secure account access, checkout continuity, CSRF or integrity state. | Operate the account, keep users signed in where appropriate, and protect authenticated flows. | Always active where needed. | Session to several months depending on sign-in settings. |
| Security and abuse prevention | Rate-limit signals, bot checks, challenge state, fraud indicators, request integrity markers. | Protect users, prevent abuse, secure forms, and reduce automated misuse. | Always active where needed. | Session to several months depending on security need. |
| Preferences | Cookie consent choices, theme preference, language/interface choices, dismissed notices. | Remember user choices and avoid repeatedly asking for the same preference. | Active when a preference is stored. | Until changed, cleared, or expired by the browser. |
| Analytics and measurement | Page views, CTA clicks, coarse browser/device information, conversion events, campaign source, consent state. | Understand public-site performance and product usage where legally permitted. | Disabled unless enabled and consented where required. | Defined when a provider is configured. |
| Advertising, attribution, and remarketing | Ad campaign attribution, conversion measurement, audience or remarketing technologies. | Measure or improve marketing where legally permitted. | Not active now; requires configuration and required consent/choice before use. | Defined if introduced later. |
1. What Cookies and Local Storage Are
Cookies, local storage, session storage, and similar technologies are small pieces of data stored on or read from a browser or device. They can keep a user signed in, remember choices, protect forms, measure site usage, or support optional marketing technologies.
2. Essential Cookies
Essential technologies are required for authentication, session continuity, security, checkout, account access, support forms, consent storage, and basic site operation. Blocking these technologies may prevent the Service from functioning correctly.
3. Authentication and Session Cookies
Authentication and session technologies allow the Service to recognise a signed-in user, maintain secure account state, complete checkout-related flows, and return the User from the public website to the app. The marketing site cannot read secure app cookies across domains, but links such as "Open app" or "Sign in" can return the User to the app where the app session remains valid if the browser still has a valid app session.
4. Security and Bot-Protection Cookies
Security technologies may help rate-limit forms, detect automated abuse, protect support ticket submission, prevent cross-site request issues, and maintain operational integrity. These technologies are used only to operate and protect the Service.
5. Preference Cookies
Preference technologies may remember cookie choices, theme preference, language or interface choices, and dismissed notices. These choices improve usability and reduce repeated prompts.
6. Analytics Cookies
Optional analytics technologies are disabled unless intentionally enabled and accepted where consent is required. If enabled later, analytics should collect minimal public-site events and must not capture transcripts, arbitrary task text, support message bodies, phone numbers, payment card data, or internal provider diagnostics.
7. Advertising, Attribution, and Remarketing
Advertising, attribution, conversion tracking, and remarketing technologies are not active now. The Company may introduce them later where legally permitted and subject to the required consent or choice model. No optional advertising category should be pre-ticked.
8. Consent Choices
Where a banner or preference centre is shown, Reject all, Accept all, and Manage options should be available in a comparable manner. Optional categories should not be pre-selected. The User can change cookie preferences from the footer or cookie preferences control where available.
9. Browser Controls
The User can block, delete, or limit cookies using browser controls. Doing so may affect sign-in, checkout, support forms, preferences, and security features. Browser controls operate separately from Service-level consent preferences.
10. Do Not Track and Global Privacy Control
The Service currently relies on its own consent and preference controls for optional technologies. Browser Do Not Track or Global Privacy Control signals may not automatically alter behavior unless required by law or implemented later. If support is implemented, this Policy should be updated.
11. App and Marketing Distinction
The public marketing site and authenticated app may use different essential session technologies because they operate on different hostnames. The Company must not attempt to share secure app session cookies across domains in an unsafe way.
12. Updates to Cookie Technologies
If analytics, advertising, attribution, remarketing, or additional preference technologies are added, the Company should update this Cookie Policy, consent controls, privacy disclosures, and app-store disclosures before enabling them where required.
13. Contact
Questions about cookies or consent choices may be sent to support@webmates.ch.