Last updated: July 23, 2025

This Cookies & Tracking Technologies Policy ("Policy") explains how SenSec LLC, a Wyoming limited liability company ("SenSec," "we," "us," "our"), uses cookies, SDKs, pixels, local storage, and similar technologies (collectively, "Cookies") on sensec.app and our SaaS platform (the "Service"), and how you can control them. This Policy is part of our Privacy Policy and should be read alongside it.

1. Who We Are

SenSec LLC
30 N Gould St Ste N
Sheridan, WY 82801, USA
Email: privacy@sensec.app

If you are in the EU/EEA or UK, you may also contact our representative identified in the Privacy Policy once appointed.

2. What Are Cookies & Similar Technologies?

• Cookies are small text files placed on your device to store information.

• Local storage / session storage are browser-based mechanisms to store data.

• Pixels / web beacons / tags are small code snippets that load when you visit a page or open an email.

• SDKs (software development kits) are code libraries used in mobile apps.

We use the term "Cookies" broadly to cover all of these technologies.

3. Why We Use Cookies

We use Cookies to:

1. Make the Service work (authentication, security, load balancing).

2. Remember your settings (language, preferences).

3. Measure performance (analytics, error tracking).

4. Improve the product (A/B testing, feature adoption metrics).

5. Support marketing/advertising (with consent where required).

We do not sell personal information and only "share" for cross‑context advertising with your opt‑in consent (see Privacy Policy, Section 12).

4. Categories of Cookies We Use

4.1 Strictly Necessary (Essential)

Purpose: Core functionality—login, security, session management, load balancing, consent storage.
Legal basis: Legitimate interests / contract necessity (no consent banner option to disable).
Duration: Session or short‑term persistent (generally ≤ 12 months).

4.2 Functional / Preference

Purpose: Remember language, UI preferences, saved filters.
Legal basis: Consent where required (EU/UK).
Duration: Usually up to 12 months.

4.3 Performance & Analytics

Purpose: Understand how users navigate the Service, diagnose errors, optimize features (e.g., Google Analytics, product analytics).
Legal basis: Consent (EU/UK); legitimate interest where allowed.
Duration: Typically 6–26 months.

4.4 Security & Service Reliability

Purpose: Detect fraud/abuse, rate-limit API calls, monitor uptime, maintain audit logs.
Legal basis: Legitimate interests / legal obligation.
Duration: Session to 12 months (logs may be retained longer—see Privacy Policy).

4.5 Advertising / Retargeting (Optional)

Purpose: Track engagement with our marketing campaigns, measure campaign effectiveness, show relevant ads off‑site.
Legal basis: Consent (opt‑in) where required.
Duration: Varies (generally ≤ 12 months).
Note: We use these sparingly and only for our B2B marketing.

5. Specific Cookies & Tools

Below is an illustrative (non‑exhaustive) list. The exact set may change over time; the live version in our consent banner/CMP will always be authoritative.

Note: Some platform features (e.g., guard GPS tracking) use device APIs, not cookies, but still rely on tokens/calls that may set service reliability/security cookies.

6. Your Choices & Controls

6.1 Consent Banner / CMP

On your first visit (and periodically thereafter), we present a banner or preference center that lets you:

• Accept all non-essential Cookies

• Reject all non-essential Cookies

• Customize categories and individual vendors

Your choices are stored in a consent cookie. You can revisit preferences via the “Cookie Settings” link in the footer.

6.2 Browser / Device Settings

Most browsers let you block or delete Cookies. Instructions:

• Chrome: Settings → Privacy & Security → Cookies and other site data

• Firefox: Preferences → Privacy & Security → Cookies and Site Data

• Safari: Preferences → Privacy → Cookies and website data

• Edge: Settings → Cookies and site permissions

Blocking essential Cookies may impact core functionality. Mobile apps may allow you to reset advertising IDs or disable certain SDK tracking in OS settings.

6.3 Global Privacy Control (GPC) / Do Not Track (DNT)

We honor legally binding signal standards where applicable (e.g., GPC for CPRA "do not sell/share"). DNT is not standardized; we rely on the consent tools above.

7. Data Retention via Cookies

• Session cookies: deleted when you close the browser/app session.

• Persistent cookies: live until their stated expiry (max 12 months unless otherwise permitted/required).

• Analytics data: generally retained up to 26 months (see Privacy Policy Section 7).
  Backups and logs may store cookie-derived data longer for security/legal reasons.

8. International Transfers

Some Cookie providers are located outside your country (e.g., in the U.S.). When required, we use appropriate safeguards (SCCs, UK Addendum, encryption, access controls) as explained in the Privacy Policy.

9. Legal Bases Recap (EU/UK GDPR)

• Strictly necessary: Art. 6(1)(f) legitimate interest / Art. 6(1)(b) contract necessity

• Analytics, functional, advertising: Art. 6(1)(a) consent (opt‑in)

• Security / fraud prevention: Art. 6(1)(f) legitimate interest; sometimes Art. 6(1)(c) legal obligation

For CPRA and similar U.S. laws: we use Cookies for "service provider" purposes; you can opt out of any "sharing" for advertising by using our cookie banner.

10. Updates to This Policy

We may update this Policy to reflect changes in technology, law, or our practices. We will post the revised version with the "Last updated" date at the top. For material changes, we will provide additional notice (e.g., banner or email). Continued use after the effective date constitutes acceptance.

11. Contact Us

Questions or requests regarding Cookies:

SenSec LLC
30 N Gould St Ste N
Sheridan, WY 82801, USA
Email: privacy@sensec.app