Cookie Policy for Chartbuddy

Last updated: September 2, 2025

1. Introduction

This Cookie Policy explains how Chartbuddy ("we," "us," or "our") uses cookies and similar technologies when you visit our website at https://chartbuddy.io ("the Website"). This policy should be read alongside our Privacy Policy.

2. What Are Cookies

Cookies are small text files that are placed on your device (computer, smartphone, or tablet) when you visit a website. They are widely used to make websites work more efficiently and to provide information to website owners about how users interact with their sites.

3. How We Use Cookies

We use cookies to:

  • Enable essential website functionality (authentication, security, session management)
  • Analyze website usage to improve our services and user experience
  • Provide customer support through our chat widget
  • Remember your cookie preferences to avoid repeatedly showing consent banners

4. Types of Cookies We Use

4.1. Essential Cookies (Always Active)

These cookies are necessary for the website to function and cannot be switched off in our systems. They are usually only set in response to actions made by you which amount to a request for services.

Session Management Cookies:

  • chartbuddy_session - Maintains your login session (Duration: Session, Provider: Chartbuddy)
  • XSRF-TOKEN - Protects against cross-site request forgery attacks (Duration: Session, Provider: Chartbuddy)

Consent Storage:

  • Browser localStorage - Your cookie preferences are stored locally in your browser (not as a cookie) for enhanced privacy. This data never leaves your device. (Duration: Persistent until you clear browser data, Provider: Your Browser)

4.2. Google Authentication Cookies (Set Upon Login)

When you choose to log in and use our Google Slides integration, Google sets authentication cookies that are necessary for this service to function. By logging in, you accept our Privacy Policy which includes consent for these cookies.

Google OAuth & Session Cookies:

  • __Secure-3PSIDCC - Google secure session cookie (Duration: 1 year, Provider: Google)
  • AEC - Google advertising and measurement cookie (Duration: 6 months, Provider: Google)
  • APISID - Google API session identifier (Duration: 2 years, Provider: Google)
  • HSID - Google session cookie (Duration: 2 years, Provider: Google)
  • NID - Google preferences and information cookie (Duration: 6 months, Provider: Google)
  • SAPISID - Google secure API session identifier (Duration: 2 years, Provider: Google)
  • SEARCH_SAMESITE - Google SameSite enforcement cookie (Duration: 6 months, Provider: Google)
  • SID - Google session identifier (Duration: 2 years, Provider: Google)
  • SIDCC - Google security cookie (Duration: 1 year, Provider: Google)
  • SSID - Google secure session identifier (Duration: 2 years, Provider: Google)

Legal Basis: These cookies are set based on your explicit consent when accepting our Privacy Policy during login, combined with contract performance for providing Google Slides integration services.

Authentication Cookies (ChartBuddy):

  • remember_web_* - Remembers your login when "Remember Me" is selected (Duration: 5 years, Provider: Chartbuddy)

4.3. Analytics Cookies (Requires Consent)

These cookies help us understand how visitors interact with our website by collecting and reporting information anonymously. These cookies are only set if you explicitly consent via our cookie banner.

Website Analytics:

  • ph_phc_* - PostHog analytics - tracks page views, user interactions, and feature usage to improve our service (Duration: 1 year, Provider: PostHog)

Data Processing: Analytics data is processed in the European Union and does not include personally identifiable information.

4.4. Functional Cookies (Requires Consent)

These cookies enable enhanced functionality and personalization, such as customer support features.

Customer Support:

  • cw_conversation - Chatwoot support chat - maintains conversation state (Duration: Session, Provider: Chatwoot)
  • cw_user - Chatwoot support chat - remembers user preferences (Duration: 30 days, Provider: Chatwoot)

5. Third-Party Cookies

We use the following third-party services that may set their own cookies:

5.1. Google (Authentication & Services)

  • Purpose: OAuth authentication and Google Slides API integration
  • Data Location: Global (with EU data protection safeguards)
  • Privacy Policy: https://policies.google.com/privacy
  • Consent: Required via Privacy Policy acceptance during login

5.2. PostHog (Analytics)

  • Purpose: Website analytics and user behavior tracking
  • Data Location: European Union
  • Privacy Policy: https://posthog.com/privacy
  • Opt-out: Available through our cookie consent banner

5.3. Chatwoot (Customer Support)

  • Purpose: Live chat functionality and customer support
  • Privacy Policy: https://www.chatwoot.com/privacy-policy
  • Opt-out: Available through our cookie consent banner

6. Managing Your Cookie Preferences

6.1. Consent Hierarchy

We use a two-tier consent system to ensure transparency and user control:

  1. Cookie Banner Consent (First Visit): Controls analytics and functional cookies for browsing
  2. Privacy Policy Consent (Login): Comprehensive consent including Google authentication cookies

When you log in, your acceptance of our Privacy Policy supersedes and expands upon your cookie banner consent, enabling the Google integration necessary for our core service.

6.2. Cookie Consent Banner

When you first visit our website, you'll see a cookie consent banner allowing you to:

  • Accept all cookies - enables analytics and functional cookies for browsing
  • Manage preferences - choose which types of cookies to allow

Note: Google authentication cookies are only set when you choose to log in and accept our Privacy Policy.

6.3. Browser Settings

You can control cookies through your browser settings:

  • Chrome: Settings > Privacy and security > Cookies and other site data
  • Firefox: Settings > Privacy & Security > Cookies and Site Data
  • Safari: Preferences > Privacy > Manage Website Data
  • Edge: Settings > Cookies and site permissions > Cookies and site data

6.4. Updating Preferences

You can change your cookie preferences at any time by:

  • Clearing browser data: Clear your browser's localStorage/site data and refresh the page to see the consent banner again
  • Browser developer tools: Open browser console and run localStorage.removeItem('cookie-consent') then refresh
  • Contacting us: Email legal@chartbuddy.net to request assistance with preference changes
  • Browser settings: Use your browser's cookie settings to block specific cookies

7. Impact of Disabling Cookies

Essential Cookies:

  • Website may not function properly; login and security features will not work

Google Authentication Cookies:

  • Google Slides integration will not work; you cannot log in or use our core features

Analytics Cookies:

  • No impact on functionality; we cannot improve our service based on usage data

Functional Cookies:

  • Customer support chat may not work properly; some personalization features disabled

8. Data Retention

  • Essential cookies: Deleted when you close your browser or log out
  • Analytics cookies: Data retained for up to 24 months for trend analysis
  • Functional cookies: Retained for the duration of your session or as specified above

9. International Data Transfers

Our analytics provider (PostHog) processes data within the European Union. For other providers:

  • Chatwoot: Data may be processed outside the EU with appropriate safeguards
  • Google Analytics: Data processed globally with Privacy Shield/Standard Contractual Clauses

10. Children's Privacy

Our website is not intended for children under 16. We do not knowingly collect personal information from children under 16 through cookies.

11. Changes to This Cookie Policy

We may update this Cookie Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. We will notify you of any material changes by updating the "Last updated" date at the top of this policy.

12. Contact Information

If you have any questions about this Cookie Policy or our use of cookies, please contact us:

  • Email: legal@chartbuddy.net
  • Data Protection Officer: tim@chartbuddy.net

13. Legal Basis

Our use of cookies is based on:

  • Essential cookies: Legitimate interest in providing website functionality
  • Analytics cookies: Your explicit consent obtained through our cookie banner
  • Functional cookies: Your explicit consent obtained through our cookie banner

14. Your Rights

Under GDPR, you have the right to:

  • Withdraw consent for non-essential cookies at any time
  • Access information about cookies we use
  • Request deletion of cookie data (subject to essential functionality requirements)
  • Lodge a complaint with your local data protection authority

For more information about your privacy rights, please see our Privacy Policy.