Cookie Policy

1. INTRODUCTION

1.1 About This Cookie Policy

This Cookie Policy explains how Ghostlytics Payments Private Limited ("MegaLLM," "we," "us," or "our") uses cookies and similar tracking technologies on our website (megallm.io) and service (ai.megallm.io).

1.2 What Are Cookies

Cookies are small text files that are placed on your device (computer, smartphone, tablet) when you visit a website. Cookies help websites recognize your device and remember information about your visit, such as your preferences and login status.

1.3 Why We Use Cookies

We use cookies to:

• Provide essential functionality (authentication, security)
• Remember your preferences and settings
• Analyze how you use our Service to improve it
• Measure the performance of our Service
• Keep our Service secure

1.4 Your Cookie Choices

You have control over cookies. You can:

• Accept or reject non-essential cookies through our cookie consent banner
• Change your cookie preferences at any time
• Delete cookies through your browser settings
• Block cookies entirely (though this may affect Service functionality)

2. TYPES OF COOKIES WE USE

2.1 Essential Cookies (Required)

These cookies are necessary for the Service to function properly. You cannot opt-out of these cookies without affecting your ability to use the Service.

Why These Are Essential:

• Authentication: Keep you logged in as you navigate the Service
• Security: Protect your account from unauthorized access and attacks
• Load Balancing: Ensure fast and reliable service delivery
• Cookie Consent: Remember your cookie choices

2.2 Performance Cookies (Optional)

These cookies help us understand how you use our Service so we can improve it. They collect anonymized data about your usage patterns.

What We Learn:

• Which features are most popular
• How long users spend on different pages
• Common user flows and navigation patterns
• Error rates and technical issues
• Geographic distribution of users (country level only)

Data Privacy:

• IP addresses are anonymized
• Data is aggregated and cannot identify you personally
• You can opt-out at any time

2.3 Functional Cookies (Optional)

These cookies enable enhanced functionality and personalization.

Benefits:

• Personalized experience that remembers your preferences
• Saves time by not having to reset preferences each visit
• Consistent experience across devices (if logged in)

2.4 Advertising Cookies (Not Currently Used)

We do NOT currently use advertising cookies. If we ever introduce advertising or retargeting:

• We will update this Cookie Policy
• We will obtain your explicit consent
• You will be able to opt-out easily

3. HOW WE USE COOKIES

3.1 Authentication and Security

Purpose: Keep you securely logged in and protect your account

Cookies Used:

• Session cookies to maintain login state
• Authentication tokens for API access
• CSRF tokens to prevent attacks

How It Works:

1. When you log in, we create a secure session cookie
2. The cookie is sent with each request to verify your identity
3. The cookie expires when you log out or after a period of inactivity
4. API requests use authentication tokens instead of session cookies

3.2 Preferences and Settings

Purpose: Remember your choices and provide a personalized experience

Cookies Used:

• Language preference
• Theme/color scheme
• Dashboard layout
• Timezone and currency

How It Works:

• When you change a setting, we store it in a cookie
• Next time you visit, we read the cookie and apply your preferences
• Preferences persist across browsing sessions
• You can clear preferences by deleting cookies

3.3 Analytics and Performance Monitoring

Purpose: Understand how the Service is used and identify areas for improvement

Cookies Used:

• Google Analytics cookies (if you consent)
• Internal analytics cookies

What We Track:

• Page views and navigation paths
• Time spent on pages
• Features used and button clicks
• Error rates and technical issues
• Geographic location (country/region level)
• Device type and browser

What We DON'T Track:

• Personally identifiable information (PII)
• Your actual API requests or data
• Precise geolocation
• Cross-site activity (we don't follow you around the web)

Data Protection:

• IP anonymization enabled
• Data aggregated and anonymized
• Opt-out options available

3.4 Load Balancing and Performance

Purpose: Ensure fast and reliable service delivery

Cookies Used:

• Load balancer cookies
• CDN cookies

How It Works:

• Load balancer cookies direct your requests to the same server for efficiency
• CDN cookies optimize content delivery based on your location
• These cookies don't contain personal information

4. THIRD-PARTY COOKIES

4.1 What Are Third-Party Cookies

Third-party cookies are set by domains other than the one you're visiting. For example, if you visit megallm.io and a cookie is set by google.com, that's a third-party cookie.

4.2 Third Parties We Work With

4.3 We Do NOT Use

• Social media tracking pixels (Facebook Pixel, LinkedIn Insight Tag, etc.)
• Advertising networks or retargeting cookies
• Cross-site tracking cookies
• Data brokers or analytics resellers

4.4 Controlling Third-Party Cookies

You can control third-party cookies through:

• Our cookie consent banner (accept/reject by category)
• Your browser settings (block all third-party cookies)
• Opt-out links provided by third parties

5. MANAGING YOUR COOKIE PREFERENCES

5.1 Cookie Consent Banner

When you first visit our website, you'll see a cookie consent banner with options to:

• Accept All: Allow all cookies (essential, performance, functional)
• Reject Non-Essential: Allow only essential cookies
• Customize: Choose which categories of cookies to allow

Your choice is saved for 12 months. You can change your preferences at any time.

5.2 Changing Your Preferences

To update your cookie preferences after your initial choice:

1. Click the "Cookie Settings" link in the website footer
2. Or click the cookie icon (if visible in bottom corner)
3. Update your preferences
4. Click "Save Preferences"

5.3 Browser Settings

All major browsers allow you to manage cookies through their settings:

5.4 Mobile Browsers

5.5 Opting Out of Specific Services

Google Analytics:

• Install the Google Analytics Opt-out Browser Add-on: https://tools.google.com/dlpage/gaoptout
• Or adjust your cookie preferences in our cookie banner

5.6 Do Not Track (DNT)

Do Not Track is a browser setting that requests websites not to track you. Currently:

• There is no universal industry standard for DNT
• We do not respond to DNT signals
• You can control tracking through our cookie consent manager and browser settings

5.7 Impact of Blocking Cookies

6. LOCAL STORAGE AND OTHER TECHNOLOGIES

6.1 Local Storage

In addition to cookies, we use HTML5 local storage to:

• Store dashboard preferences and settings
• Cache data for faster loading
• Maintain application state

Differences from Cookies:

• Local storage data doesn't automatically expire
• Local storage data isn't sent with every HTTP request
• Local storage can store more data than cookies

Managing Local Storage:

• Clear through browser developer tools or settings
• Usually located in same place as cookie settings

6.2 Session Storage

We use session storage for:

• Temporary data during your session
• Form data that shouldn't persist
• Temporary UI states

Session storage is automatically cleared when you close your browser tab.

6.3 IndexedDB

For some advanced features, we may use IndexedDB to:

• Cache API responses for offline access (future feature)
• Store larger datasets for dashboard analytics
• Enable faster data retrieval

You can clear IndexedDB through your browser's developer tools.

6.4 Web Beacons / Pixels

We do NOT currently use web beacons or tracking pixels. If we ever do:

• We will update this Cookie Policy
• We will obtain your consent
• You will be able to opt-out

7. COOKIE LIFESPAN

7.1 Session Cookies

Duration: Deleted when you close your browser

Purpose: Temporary data that's only needed during your session

Examples:

• Login session
• Shopping cart (future feature)
• Form data

7.2 Persistent Cookies

Duration: Remain on your device for a set period or until deleted

Our Persistent Cookies:

• Essential Cookies: Up to 30 days
• Functional Cookies: 6-12 months
• Performance Cookies: Up to 2 years (Google Analytics)

7.3 How to Check Cookie Expiration

In most browsers:

1. Go to Settings > Privacy > Cookies
2. Find "megallm.io" cookies
3. View details including expiration date

8. UPDATES TO THIS COOKIE POLICY

8.1 Changes

We may update this Cookie Policy to reflect:

• Changes in our cookie practices
• New cookies or technologies
• Changes in applicable laws
• User feedback

8.2 Notification

For material changes:

• We will update the "Last Updated" date at the top of this policy
• We will notify you via email (for significant changes)
• We will post a notice on our website

8.3 Continued Use

Your continued use of the Service after changes constitute acceptance of the updated Cookie Policy.

8.4 Reviewing Updates

We encourage you to review this Cookie Policy periodically to stay informed about how we use cookies.

9. LEGAL BASIS FOR USING COOKIES

9.1 GDPR (European Users)

Under the General Data Protection Regulation (GDPR):

9.2 ePrivacy Directive (EU Cookie Law)

We comply with the ePrivacy Directive:

• Obtain consent before setting non-essential cookies
• Provide clear information about cookies
• Allow users to withdraw consent
• Respect Do Not Track settings where applicable

9.3 CCPA (California)

Under California Consumer Privacy Act (CCPA):

• Cookies may be considered "personal information"
• You have the right to opt-out of sale (we don't sell data)
• You have the right to know what information is collected
• You have the right to delete cookie data

9.4 CalOPPA (California Online Privacy Protection Act)

We comply with CalOPPA by:

• Posting this Cookie Policy
• Making it accessible from our homepage
• Explaining what types of information is collected

10. COOKIES AND CHILDREN'S PRIVACY

10.1 Age Restriction

Our Service is not directed to children under 13 (or 16 in the EEA).

10.2 No Intentional Collection

We do not knowingly:

• Set cookies on devices of children
• Collect personal information from children through cookies
• Track children's online activity

10.3 Parental Controls

If you believe a child has used our Service:

• Contact us immediately at privacy@megallm.io
• We will delete all associated cookies and data
• We will terminate the associated account

11. SECURITY OF COOKIE DATA

11.1 Cookie Security

We protect cookie data through:

• Secure Flag: Cookies transmitted only over HTTPS
• HttpOnly Flag: JavaScript cannot access sensitive cookies
• SameSite Attribute: Prevents cross-site request forgery
• Encryption: Sensitive cookie data is encrypted

11.2 No Sensitive Data in Cookies

We NEVER store in cookies:

• Passwords (stored in hashed form in our database)
• Full credit card numbers
• Social Security numbers or government IDs
• Health or financial information

11.3 Cookie Theft Prevention

To protect against cookie theft:

• All cookies are transmitted over encrypted connections (HTTPS only)
• Session cookies expire after inactivity
• We monitor for suspicious cookie usage
• We invalidate cookies after password changes

12. INTERNATIONAL DATA TRANSFERS

12.1 Global Service

Our Service is accessible globally. Cookie data may be processed in:

• United States
• European Union
• Other countries where our servers are located

12.2 Safeguards

For international cookie data transfers:

• We use Standard Contractual Clauses (SCCs) where required
• We implement appropriate technical and organizational measures
• We comply with applicable data protection laws

13. YOUR RIGHTS

13.1 Rights Regarding Cookies

You have the right to:

• Know what cookies we use and why
• Accept or reject non-essential cookies
• Withdraw consent at any time
• Delete cookies from your device
• Request deletion of data collected through cookies
• Object to processing of cookie data

13.2 Exercising Your Rights

To exercise your rights:

• Cookie Preferences: Use our cookie consent manager
• Data Deletion: Email privacy@megallm.io
• Questions: Email privacy@megallm.io

13.3 Response Time

We will respond to your requests within:

• Cookie preference changes: Immediately
• Data deletion requests: 30 days
• General inquiries: 5 business days

14. CONTACT US

15. ADDITIONAL RESOURCES

15.1 Learn More About Cookies

• All About Cookies: https://www.allaboutcookies.org
• EU Cookie Law: https://ec.europa.eu/info/cookies_en
• ICO (UK) Guidance: https://ico.org.uk/for-organisations/guide-to-pecr/cookies-and-similar-technologies

15.2 Browser Privacy Guides

• Chrome: https://support.google.com/chrome/answer/95647
• Firefox: https://support.mozilla.org/en-US/kb/cookies-information-websites-store-on-your-computer
• Safari: https://support.apple.com/guide/safari/manage-cookies-sfri11471/mac
• Edge: https://support.microsoft.com/en-us/microsoft-edge/delete-cookies-in-microsoft-edge-63947406-40ac-c3b8-57b9-2a946a29ae09

15.3 Opt-Out Tools

• Google Analytics Opt-out: https://tools.google.com/dlpage/gaoptout
• Network Advertising Initiative: https://optout.networkadvertising.org
• Digital Advertising Alliance: https://optout.aboutads.info

COOKIE SUMMARY TABLE