Legal

Cookie Policy

Last updated July 13, 2026

Draft — needs review. This is a starting template for Yoata and has not been reviewed by a lawyer. Have it reviewed and adapted to your business, and replace every [bracketed] placeholder, before you rely on it.

This policy explains how Yoata uses cookies and similar technologies. It forms part of our Privacy Policy.

1. What we use today

We currently use only strictly-necessary cookies — the ones required to sign you in and keep the site secure. We do not use analytics, advertising, or tracking cookies.

CookiePurposeDuration
Session token (authentication)Keeps you signed in to your accountSession / up to 30 days
CSRF tokenProtects sign-in and forms against cross-site request forgerySession

[Keep this table accurate if cookie names or lifetimes change.]

2. Do you need to consent?

Under the EU ePrivacy rules and GDPR, cookies that are strictly necessaryto provide a service you requested (such as authentication) do not require prior consent. Because we currently use only these, we do not show a cookie-consent banner, and under the CCPA there is no “sale/sharing” of personal information via cookies to opt out of.

3. If we add analytics or marketing cookies later

Non-essential cookies (for example analytics or advertising) do require your prior, informed opt-in consent under ePrivacy/GDPR. If we introduce them, we will add a consent banner that lets you accept or reject them before they are set, and we will update this policy.

4. Managing cookies

You can delete or block cookies through your browser settings. Blocking the strictly-necessary cookies above will prevent you from signing in and using your account.

5. Contact

Questions about cookies: contact@yoata.ai.