Cookie Policy

Last updated: 2025-09-24

This Cookie Policy explains how Mycelo ("we", "us") uses cookies and similar technologies such as local storage, session storage, pixels and scripts (collectively, "Cookies") when you visit our websites, apps or use the Service. It should be read with our Privacy Policy.

1. What Are Cookies?

Cookies are small text files placed on your device or browser to store information. Some are strictly necessary for the site to function. Others support performance, analytics, personalization or marketing.

2. Types of Cookies We Use

• Strictly Necessary: Required for core functionality (authentication, security, load balancing). These cannot be switched off in our systems.
• Preferences / Functional: Remember theme, UI layout choices, recently accessed boards or language settings.
• Performance & Analytics: Help us understand usage patterns (e.g., page load times, feature adoption) so we can improve reliability. Where possible we favour privacy‑respecting analytics and may self‑host.
• AI / Feature Enablement: Store ephemeral tokens or context flags enabling AI generation sessions or real‑time collaboration state.
• Marketing: (Optional) Track referring campaigns or trials to measure product‑led growth effectiveness. We minimise third‑party marketing scripts and do not sell personal data.

3. Specific Technologies

• Local Storage: May cache UI preferences, recently opened items and lightweight session hints to reduce latency.
• Session Storage: Keeps transient data required for a single tab collaboration handshake.
• WebSockets: Used for real‑time updates; may exchange temporary identifiers not stored persistently.
• Analytics: We may use a first‑party or privacy‑respecting analytics tool (e.g. PostHog self‑hosted or Plausible). IPs are truncated or anonymised where feasible.

4. Third‑Party Providers

Some limited third‑party services may set their own cookies when integrated (e.g., authentication provider, payment processor, cloud storage CDN, AI inference API). We aim to list material third‑party cookies in a supplemental table below as the product evolves.

5. Cookie Duration

Cookies may be session (expire when you close the browser) or persistent (remain until a defined expiry or deletion). We set retention aligned with purpose and legal requirements, generally ranging from a few minutes (security tokens) to 12 months (preferences).

6. Your Choices & Control

• Browser settings can block or delete cookies. Blocking strictly necessary cookies may break core functionality.
• We will provide (or already provide) an in‑app preferences panel for non‑essential categories (e.g. analytics, marketing).
• You may use private browsing modes to limit persistence.
• For analytics opt‑out (if applicable) see provider‑specific documentation; we attempt to configure analytics to respect Do Not Track where technically viable.

7. Legal Basis (EEA/UK)

We rely on (a) legitimate interests for necessary analytics and product improvement measures that have minimal privacy impact, (b) performance of a contract for strictly necessary operational cookies, and (c) consent for marketing or non‑essential analytics where required.

8. Changes to This Policy

We may update this Cookie Policy to reflect new technologies or regulatory guidance. Material changes will be posted with an updated date. Continued use after changes indicates acceptance.

9. Contact

Questions? Email privacy@mycelo.app.

You control your data experience. We aim to minimise tracking while delivering a high‑performance collaborative product.