Cookie Policy

What Are Cookies?

Cookies are small text files that a website places on your device when you visit. They allow the site to remember information about your visit — such as whether you are logged in, your preferences, or a temporary identifier — so the service can function correctly and provide a better experience on return visits.

Not all persistent storage is technically a cookie. Some data is stored in your browser's localStorage or sessionStorage rather than in a traditional cookie jar. This policy covers both cookie-based and localStorage/sessionStorage-based storage that we use, so you have a complete picture.

How We Use Cookies

The table below lists every cookie and client-side storage item set by go.ramola.app, its purpose, its type, and how long it persists.

Cookie / Key Name	Purpose	Type	Duration
auth_token	Stores your authentication JWT so you remain logged in across page loads. Kept in localStorage/sessionStorage rather than a cookie to prevent CSRF exposure.	Essential	7 days
session	Server-side session identifier backed by Redis. Ties your HTTP requests to your server-side session state.	Essential	Session (deleted when browser closes)
deep_link_fp	A hashed device fingerprint (derived from IP address and User-Agent string, never stored in plaintext) used to complete deferred deep linking — matching a click on a short link to an app-open after an app install. Stored server-side; an opaque reference token may be set on the device.	Functional	24 hours
preferences	Stores your UI preferences such as dashboard layout, theme selection, and display settings so they persist between sessions.	Functional	30 days

Types of Cookies We Use

Essential Cookies

These cookies are strictly necessary for the service to operate. Without them you cannot log in, maintain a session, or use core platform features. They cannot be disabled without breaking the service. We do not require your consent to set essential cookies because there is no meaningful way to provide the service without them.

Functional Cookies

Functional cookies enhance your experience but are not required for basic operation. The deep_link_fp fingerprint enables deferred deep linking — a feature that allows a link click to correctly route a new app install to the intended in-app destination. The preferences cookie remembers your dashboard settings. You may disable these through your browser settings; doing so will not prevent you from using the platform but may degrade certain features.

Analytics Cookies

We collect usage data to understand how the platform is used and to improve it. We use first-party analytics only — we do not load Google Analytics, Meta Pixel, or any other third-party analytics script. Usage events are recorded server-side and attributed to your account or an anonymized session identifier. No third-party analytics cookies are set on your device.

Third-Party Cookies

We do not load third-party advertising or tracking scripts. The only third-party service that may set cookies on your device is Stripe, our payment processor. Stripe may set cookies during checkout and payment flows to detect fraud, remember payment state, and comply with financial regulations. These cookies are governed by Stripe's Privacy Policy. Stripe cookies are only active during payment interactions and are not used to track you across the broader web.

Click Tracking on Short Links

The IP address used to derive geolocation for click analytics is not stored in plaintext. It is used to look up a city/region/country, and then discarded. The resulting geographic data is stored at the city level only.

How to Manage Cookies

You can control cookies through your browser settings. Note that disabling essential cookies will prevent you from logging in to go.ramola.app.

Google Chrome

Go to Settings → Privacy and security → Cookies and other site data. You can block all cookies, block third-party cookies only, or manage exceptions per site.

Mozilla Firefox

Go to Settings → Privacy & Security → Enhanced Tracking Protection. Choose Standard, Strict, or Custom. To clear existing cookies, scroll to "Cookies and Site Data" and click "Clear Data."

Apple Safari

Go to Safari → Settings → Privacy. Enable "Prevent cross-site tracking" to block third-party cookies. To clear all cookies, go to Safari → Settings → Privacy → Manage Website Data → Remove All.

Microsoft Edge

Go to Settings → Cookies and site permissions → Cookies and site data. You can block third-party cookies, see all stored cookies, and add per-site exceptions.

California Residents (CCPA)

If you are a California resident, you have rights regarding personal information under the California Consumer Privacy Act (CCPA). Cookies and storage items that collect or derive personal data — including the deep_link_fp device fingerprint — are treated as personal information under CCPA. Full details of what we collect, your rights to know, delete, and opt out, and how to exercise those rights are described in our Privacy Policy.

The hashed device fingerprint used for deferred deep linking is classified as personal information under California law. It is retained for a maximum of 24 hours and then permanently deleted. We do not sell this data to third parties.

Do Not Track

We respect browser Do Not Track (DNT) signals. When a DNT signal is detected:

• We do not set non-essential cookies (preferences, deep_link_fp) on your device.
• We do not attempt to fingerprint your device for deferred deep linking.
• Core redirect functionality (following a short link to its destination) continues to work normally.
• Server-side click logging for the link owner's analytics still occurs, as this is a contractual feature of the platform for link creators, not a tracking mechanism applied to you as a visitor.

Changes to This Policy

If we add new cookies or change how existing ones work, we will update this page and revise the "Last updated" date. For material changes we will notify logged-in users via an in-app banner.

Contact