Cookie Policy
1. What Are Cookies
Cookies are small text files that websites store on your device. They help sites remember who you are, keep you logged in, and understand how people use the product. Nothing sinister -- just plumbing that makes the web work.
This policy explains exactly which cookies Dyva, Inc. ("Dyva," "we," "us") uses, what each one does, and how you can control them. We keep it simple because you should not need a law degree to understand what is happening on your device.
2. Types of Cookies We Use
Here is the full inventory of cookies on Dyva:
| Category | Cookie | Purpose | Duration |
|---|---|---|---|
| Strictly Necessary | dyva_token | Authentication JWT. Keeps you signed in across sessions. | 30 days |
| Strictly Necessary | __stripe_mid | Stripe fraud prevention identifier. Set during payment flows. | 1 year |
| Functional | theme | Stores your light/dark mode preference. | 1 year |
| Functional | dyva_locale | Stores your language preference. | 1 year |
| Functional | guest_session | Temporary session identifier for unauthenticated users on share/embed pages. Contains no personal data. | Session |
| Analytics | _dyva_analytics | First-party analytics cookie. Stores a hashed, non-identifiable session identifier for aggregate usage statistics. No personal data is stored. | 90 days |
3. Strictly Necessary Cookies
These are the cookies Dyva literally cannot function without. They handle authentication (keeping you logged in), session management, CSRF protection, and payment processing through Stripe. Without them, you cannot sign in, make purchases, or use core platform features.
Because they are essential to how the Service works, you cannot opt out of strictly necessary cookies. Blocking them in your browser will break core functionality.
4. Functional Cookies
Functional cookies remember your choices so you do not have to make them every visit. Theme preference (light/dark mode), language settings, layout options, and similar personalization. They make your experience smoother but are not strictly required for the platform to work.
These cookies stay on your device and are not shared with third parties. If you disable them, your preferences will not persist between sessions -- you will be starting fresh each time.
5. Analytics Cookies
We use first-party analytics to understand how people use Dyva -- which features get used, where people get stuck, what performs well. This data drives product decisions and helps us fix problems faster.
Our analytics system is privacy-preserving by design: IP addresses are hashed (SHA-256) before storage, data stays on our infrastructure, and we do not build cross-site profiles. The data is used exclusively to improve Dyva.
We do not use Google Analytics, Facebook Pixel, or any other third-party tracking service. Your activity on Dyva stays on Dyva.
6. Third-Party Cookies
The only third-party cookies on Dyva come from Stripe, our payment processor. Stripe uses cookies for payment processing, fraud prevention, and compliance with financial regulations. Their cookie practices are governed by Stripe's Privacy Policy.
That is it. No ad networks, no social media trackers, no retargeting pixels, no data brokers. We do not allow any third-party cookies for advertising or cross-site tracking purposes. We have zero interest in selling your attention to the highest bidder.
7. Local Storage and Similar Technologies
Beyond cookies, we use browser local storage and session storage for your authentication token, UI state, and preferences. Local storage works similarly to cookies but can hold more data and does not get sent with every HTTP request.
We also use IndexedDB for caching conversation data locally to improve performance. All the same principles from this policy apply to our use of local storage and similar browser technologies -- we use them for functionality, not tracking.
8. Managing Your Cookie Preferences
You control the cookies on your device. Every major browser lets you:
- View and delete individual cookies
- Block all cookies or only third-party cookies
- Automatically clear cookies when you close the browser
- Set per-site cookie preferences
Fair warning: blocking strictly necessary cookies will prevent you from logging in and using core features. Blocking functional cookies means your preferences reset every visit. Check your browser's help documentation for specific instructions on managing cookie settings.
9. Do Not Track Signals
We honor Do Not Track (DNT) signals from your browser. When we detect a DNT signal, we disable all non-essential analytics cookies for that session. Since we do not engage in cross-site tracking to begin with, DNT mostly affects our first-party analytics collection.
10. Changes to This Policy
We may update this Cookie Policy when our practices change or when the law requires it. The effective date at the top of this page reflects the last revision. If we make material changes -- like adding a new category of cookies or a new third-party provider -- we will notify you through the Service.
11. Contact
Questions about cookies or how we use them? Reach us at privacy@dyva.ai.
Helpful?