Cookie Policy

1. Introduction

This Cookie Policy explains how Sci-Pilot ("we", "us", or "our") uses cookies, web storage, and similar technologies when you visit and use our web application at https://scipilot.app ("Service"). This policy should be read alongside our Privacy Policy, which provides more detail on how we handle your personal data.

By continuing to use the Service, you consent to the use of cookies and similar technologies as described in this Cookie Policy. If you do not agree with our use of these technologies, you should disable cookies in your browser settings or cease using the Service.

2. What Are Cookies and Similar Technologies?

Cookies are small text files that are placed on your device (computer, tablet, or mobile phone) when you visit a website. They are widely used to make websites work more efficiently, to provide a better user experience, and to give website owners information about how their site is being used.

localStorage is a web browser feature that allows websites to store data persistently on your device. Unlike cookies, localStorage data does not expire and is not sent to the server with every request. Sci-Pilot relies heavily on localStorage for core functionality, as detailed below.

sessionStorage is similar to localStorage but is limited to the duration of the page session. Data stored in sessionStorage is cleared when the browser tab or window is closed.

IndexedDB is a browser-based database system that allows for more complex data storage on your device. It may be used for larger or more structured data sets.

3. Categories of Technologies We Use

3.1 Strictly Necessary Cookies and Storage

These are essential for the operation of the Service. Without them, the Service cannot function properly. They are set in response to your actions such as logging in, and they cannot be turned off.

3.2 Functional Storage (localStorage)

Sci-Pilot uses localStorage extensively for core application functionality. This data is stored on your device and is not transmitted to our servers unless explicitly required for service features (such as AI processing). Functional storage allows the Service to remember your preferences and data between sessions.

Clearing localStorage will result in the loss of all locally stored project data, preferences, and application state. You will be logged out and will need to reconfigure the application.

3.3 Analytics Cookies

We use Google Analytics to collect anonymized information about how visitors use the Service. Analytics cookies help us understand usage patterns, identify issues, and improve the Service. These cookies are not strictly necessary but help us provide a better experience.

We have configured Google Analytics with IP anonymization enabled. This means that Google truncates the IP address before storage and processing, which reduces the identifiability of the data. For more information about Google Analytics cookies, please refer to Google's Privacy Policy.

3.4 Authentication Cookies (Google OAuth)

When you sign in using Google OAuth, Google may set the following cookies on our domain to maintain your authentication session:

4. How We Use Cookies and Storage

We use cookies and similar technologies for the following purposes:

• Authentication and Security: To verify your identity, maintain your logged-in session, and protect against unauthorized access and security threats such as CSRF attacks.
• Core Functionality: To store your projects, tasks, financial records, calendar events, team data, AI conversations, and other application data that makes the Service functional and useful.
• Preferences:To remember your settings such as theme (dark/light), language, sidebar state, and other customizations so you don't have to reconfigure them each time you visit.
• Analytics and Improvement: To collect anonymized usage data through Google Analytics to understand how users interact with the Service, identify bugs, and improve functionality.
• Performance: To optimize the delivery and performance of the Service, including caching and content delivery network (CDN) functionality through Cloudflare and similar services.

5. Third-Party Cookies

The Service may involve third-party cookies from the following providers:

• Google Analytics: Sets analytics cookies (_ga, _ga_*, _gid) to collect anonymized data about website usage. Google Analytics data is used to understand usage patterns and improve the Service. Google may also use this data for its own purposes. For more information, see Google's Cookie Policy.
• Google (OAuth): When you use Google Sign-In, Google may set cookies to maintain your authentication state. These cookies are subject to Google's Privacy Policy.
• Cloudflare: We use Cloudflare for content delivery, security, and performance optimization. Cloudflare may set cookies such as __cfduid for security and bot detection purposes. See Cloudflare's Privacy Policy.
• Fireworks AI: Our AI assistant, Vision AI, communicates with Fireworks AI servers for processing. These communications use HTTPS connections that may involve cookies set by the Fireworks AI infrastructure. See Fireworks AI's Privacy Policy.

We do not control and are not responsible for the cookies set by third parties. We encourage you to review the privacy and cookie policies of these third parties.

6. Managing Your Cookie Preferences

6.1 Browser Settings

Most browsers allow you to control cookies through their settings. You can typically find these settings in the "Options", "Preferences", or "Settings" menu of your browser. You can:

• View and delete existing cookies;
• Block cookies from specific sites or all sites;
• Block third-party cookies;
• Clear all cookies when you close your browser;
• Set preferences for specific websites.

Please note that disabling cookies, particularly strictly necessary cookies, may significantly impact the functionality of the Service. Since Sci-Pilot relies on localStorage for core data storage, clearing your browser data will erase all your project data, preferences, and application state.

6.2 Google Analytics Opt-Out

You can opt out of Google Analytics tracking by:

• Installing the Google Analytics Opt-out Browser Add-on;
• Blocking Google Analytics cookies through your browser settings;
• Using browser extensions that block analytics scripts.

6.3 Clearing Local Storage

You can clear localStorage data for Sci-Pilot through your browser's developer tools:

• Chrome/Edge: Open Developer Tools (F12) → Application tab → Local Storage → right-click on scipilot.app → Clear
• Firefox: Open Developer Tools (F12) → Storage tab → Local Storage → right-click on scipilot.app → Delete All
• Safari: Open Web Inspector (Cmd+Option+I) → Storage tab → Local Storage → select and delete entries

Warning: Clearing localStorage will permanently delete all locally stored data, including projects, tasks, financial records, AI conversations, and preferences. This action cannot be undone. We recommend exporting important data before clearing localStorage.

7. Data Stored Locally

Sci-Pilot is designed to store most user data in the browser's localStorage. This design choice provides several benefits, including faster performance, offline capability, and enhanced privacy since your data is not transmitted to our servers by default. However, it also means:

• Your data is specific to the browser and device you are using. If you switch browsers or devices, your data will not automatically transfer.
• Clearing your browser data or using private/incognito mode will result in the loss of locally stored data.
• Browser storage has size limitations (typically 5-10 MB). While this is sufficient for most users, extremely large datasets may encounter storage limits.
• Data stored in localStorage is not encrypted by default. If you share your device or browser profile, others with access may be able to view this data.

8. Do Not Track

Some browsers offer a "Do Not Track" (DNT) feature that signals to websites that you do not want to be tracked. Because there is not yet a common understanding of how to interpret DNT signals, our Service currently does not respond to DNT signals. We continue to review emerging standards and may implement DNT support in the future.

However, you can opt out of Google Analytics tracking as described in Section 6.2 above, and you can manage your cookie preferences through your browser settings as described in Section 6.1.

9. GDPR and ePrivacy Compliance

In compliance with the General Data Protection Regulation (GDPR) and the ePrivacy Directive (Directive 2009/136/EC), we:

• Only set strictly necessary cookies without prior consent, as these are essential for the Service to function;
• Seek your consent for analytics cookies and similar technologies that are not strictly necessary;
• Provide clear information about what cookies and storage technologies we use and why;
• Allow you to withdraw consent at any time by adjusting your browser settings or using the opt-out tools described above;
• Ensure that any data collected through cookies and similar technologies is processed in accordance with our Privacy Policy and applicable data protection laws.

10. Changes to This Cookie Policy

We may update this Cookie Policy from time to time to reflect changes in our use of cookies and related technologies, or changes in applicable laws and regulations. We will notify you of any material changes by posting the new Cookie Policy on this page and updating the "Last updated" date.

We encourage you to review this Cookie Policy periodically to stay informed about our use of cookies and related technologies and your choices regarding them.

11. Contact Information

If you have any questions about this Cookie Policy, our use of cookies, or your data protection rights, please contact us at:

For GDPR-related complaints, you may also contact the CNIL (Commission Nationale de l'Informatique et des Libertés) at https://www.cnil.fr.