Cookie Policy
This Cookie Policy explains how ETAPX and its products — Whistlr Network, GLSRM, Ocsidian, Business+, and all ETAPX web properties — use cookies and similar tracking technologies. It covers what we store on your device, why we use these technologies, the choices you have, and how to manage your preferences.
Last Updated: January 3, 2026
Effective Date: January 3, 2026
Contact: privacy@etapx.us
Effective Date: January 3, 2026
Contact: privacy@etapx.us
What Are Cookies?
Cookies are small text files stored on your device when you visit a website. They are widely used to make websites work efficiently, remember your preferences, and provide analytics. We also use similar technologies — including local storage, session storage, pixels, beacons, and software development kits (SDKs) — that function in a comparable way. In this policy, we refer to all of these collectively as "cookies."
Categories of Cookies We Use:
- Strictly Necessary Cookies: Required for core functionality such as authentication, session management, security, fraud prevention, load balancing, and remembering items in your account. These cannot be turned off without breaking the service.
- Functional Cookies: Remember your preferences (language, region, theme, accessibility settings) so the experience persists across visits. Disabling these will not break the platform but will reset preferences on each visit.
- Analytics & Performance Cookies: Help us understand how users navigate ETAPX properties — which pages are most useful, where load issues occur, which features are adopted, and which paths cause friction. Used in aggregate to improve the product.
- Advertising & Measurement Cookies: Set by us or our advertising partners to measure ad performance, attribute conversions, and limit how often you see the same ad. Where required, these are only set after you opt in.
- Social & Embedded Content Cookies: When you interact with embedded videos, social plugins, or share buttons, the corresponding third-party platform may set its own cookies governed by that platform's policy.
Examples of Cookies We Set:
- Session & auth tokens — keep you signed in across pages and tabs; expire on sign-out or after an inactivity period.
- CSRF and security tokens — protect form submissions and API requests from cross-site forgery.
- Preference store — language, timezone, dark/light mode, reduced motion, and feature opt-ins.
- Status page cache — last-known infrastructure status and recent incidents for fast load on revisit.
- Analytics identifier — anonymous, rotated, used only to deduplicate page views and feature usage.
Third-Party Cookies:
- Mapbox — when you view the System Status globe, Mapbox may set cookies to render tiles efficiently.
- Supabase — backend session and auth cookies required for live status data and authenticated features.
- Cloudflare — security cookies (e.g. bot detection, edge routing) set by our DDoS and CDN provider.
- Vercel Analytics & Speed Insights — anonymous performance measurement; respects Do Not Track signals.
- Embedded media providers — Vimeo and similar services set their own cookies when their players are loaded.
How Long Cookies Last
Cookies are either session cookies (deleted when you close your browser) or persistent cookies (remain until they expire or you delete them). Persistent cookies on ETAPX properties typically last between 30 days and 13 months depending on purpose, with strictly necessary cookies expiring earliest and preference cookies persisting longest. We do not set any cookie with an expiry longer than 24 months.
Your Choices and Controls:
- Cookie banner: On first visit, you'll see a consent banner where required by law (EU/EEA, UK, California). You can change your choices at any time from the footer link.
- Browser settings: All major browsers let you block cookies, delete existing cookies, or be notified before a cookie is set. Note: blocking strictly necessary cookies will sign you out and break authenticated features.
- Do Not Track: We honor browser-level Do Not Track signals for analytics and advertising cookies; strictly necessary cookies are unaffected.
- Global Privacy Control (GPC): Where supported by law (e.g. California CCPA/CPRA), we treat a GPC signal as a valid opt-out of the sale or sharing of personal information.
- Mobile device controls: iOS and Android offer system-level controls for ad tracking ("Limit Ad Tracking" / "Opt out of Ads Personalization") that override app-level preferences.
Cross-Border Transfers
Cookies set on ETAPX properties may transfer data to servers located outside your country, including the United States. Where required by GDPR, UK GDPR, or comparable laws, we rely on Standard Contractual Clauses and supplementary safeguards for any cross-border transfer.
Changes to This Policy:
- We may update this Cookie Policy as our products evolve, as new tracking technologies emerge, or as legal requirements change.
- Material changes will be announced in-app and via email to account holders at least 30 days before they take effect.
- The "Last Updated" date at the top reflects the most recent revision.
Questions or Requests
For questions about this Cookie Policy, to exercise your rights under GDPR, CCPA, or comparable laws, or to request a copy of the cookies set during your session, contact our privacy team at privacy@etapx.us. For broader privacy questions, see our Privacy Policy.