Legal
Cookie Policy
Last updated: June 19, 2026
This document is provided for transparency and operational use. It is not legal advice. Have a qualified attorney review before relying on it for regulated industries, EU/UK hospitality groups, healthcare, financial services, or international markets.
This Cookie Policy explains how Primagery AI (“Primagery,” “we,” “us”) uses cookies, local storage, session storage, service workers, and similar technologies on www.primagery.com and app.primagery.com.
It should be read with our Privacy Policy and Terms of Service.
1. What technologies we use
- Cookies: small text files stored by your browser, sent with requests to recognize sessions and preferences
- Local / session storage: browser APIs storing key-value data for app state
- Service workers: scripts that cache assets and enable PWA offline behavior
- IndexedDB (if used): structured client-side storage for larger cached data
- Pixels / beacons (minimal): we do not use third-party advertising pixels on authenticated workspaces by default
2. Why we use them
| Category | Purpose | Legal basis (EEA/UK) |
|---|---|---|
| Strictly necessary | Authentication, security, load balancing, CSRF protection, session continuity | Legitimate interests / essential for service |
| Functional | Locale, UI preferences, PWA install prompts dismissed state | Legitimate interests or consent where required |
| Analytics (if enabled) | Aggregate usage measurement, performance monitoring | Consent where required by ePrivacy/GDPR |
3. Cookie and storage inventory
Exact names may change with platform updates. This table reflects our current architecture as of the last updated date.
| Name / key | Type | Provider | Purpose | Duration |
|---|---|---|---|---|
| NextAuth session cookies | HTTP cookie | Primagery (NextAuth) | Maintain signed-in session for Command Center or Portal | Session to 30 days (configurable) |
| __Secure-* / authjs.* tokens | HTTP cookie | Primagery | Encrypted session token, CSRF | Session / rolling |
| portal-locale / preferences | Cookie or localStorage | Primagery | Remember language or display preferences | Up to 12 months |
| pwa-install-dismissed | localStorage | Primagery | Remember that user dismissed install banner | Until cleared |
| Service worker cache (sw.js) | Cache API | Primagery | Cache static assets, icons, shell for PWA performance | Until cache version bump or manual clear |
| Vercel / hosting cookies | HTTP cookie | Vercel | Routing, DDoS protection, deployment affinity | Varies |
4. Progressive Web App (PWA) specifics
- Installing the app does not grant Primagery additional device permissions beyond what the browser exposes (notifications only if you approve).
- Cached files may include HTML shells, JavaScript bundles, CSS, icons, and manifest files — not your uploaded documents unless explicitly cached by the browser for a viewed file.
- Separate web app manifests exist for Command Center and Client Portal so installs open the correct login route.
- To remove cached data: uninstall the PWA, or in browser settings → clear site data for app.primagery.com / www.primagery.com.
5. Third-party cookies
We minimize third-party cookies. Payment pages (e.g., Stripe Checkout) may set cookies when you are redirected to their domain — governed by Stripe's policy. Embedded content (if any) may set its own cookies. We do not sell data collected via cookies.
6. Your choices
6.1 Browser controls
Most browsers let you block or delete cookies. Blocking strictly necessary cookies will prevent sign-in. Consult your browser help documentation (Chrome, Safari, Firefox, Edge).
6.2 Mobile devices
iOS and Android settings control tracking, cross-site tracking prevention, and installed web apps independently.
6.3 EU / UK consent
Where non-essential cookies or similar technologies require consent, we will present a consent mechanism before setting them. Necessary cookies for authentication may be placed without consent where permitted.
6.4 Do Not Track
Industry standards for DNT signals are inconsistent; we do not guarantee a uniform response.
7. California and other U.S. disclosures
We do not sell or share personal information for cross-context behavioral advertising via cookies. For other privacy rights, see our Privacy Policy Section 12.
8. Updates
We may update this Cookie Policy when we add features or subprocessors. Check the last updated date at the top of this page.
9. Contact
Questions: info@primagery.com