Cookie and Analytics Policy

Last updated: February 28, 2026

Transparency Notice: This policy explains what cookies we use, how we store data locally on your device, what analytics we collect, and how to control these settings. We do not use tracking or advertising cookies.

1. What Are Cookies and Local Storage?

Cookies are small text files stored on your device by websites. Local storage is a browser feature that stores data locally without time-based expiration. DebtTrack uses these technologies for essential app function, not for tracking.

  • Cookies: Stored with expiration dates; primarily used for session management
  • Local Storage: Persists until manually cleared; used for preferences and app state
  • Analytics Data: Aggregated, non-personal usage information collected to improve reliability

2. Cookie Categories and Specific Cookies Used

We use the following categories of cookies:

Essential Cookies (Always Active)

These are necessary for the app to function. You cannot opt out of essential cookies:

  • Session Token (httpOnly, Secure flag): Encrypted, time-limited token that keeps you logged in. Expires after 30 minutes of inactivity.
  • CSRF Protection Token: Prevents Cross-Site Request Forgery attacks. Sent with state-changing requests.
  • Authentication Cookie: Confirms your login status. Refreshed on each app interaction.

Functional Cookies (User Preference-Based)

These store your preferences and enhance functionality:

  • Theme Preference: Stores your light/dark mode setting so it persists across sessions
  • Language Preference: Remembers your selected language (if available)
  • Device ID: A unique identifier generated locally, stored in localStorage, and sent with analytics events
  • UI State: Stores expanded/collapsed states of menus and sections

3. Browser Local Storage Data

In addition to cookies, we store the following data in your browser's localStorage:

  • debttrack_device_id: A unique identifier generated on first visit, used for analytics tracking
  • debttrack_theme: Your selected theme (light or dark)
  • debttrack_session_id: Local backup of your session token foroffline access
  • debttrack_preferences: Stored user preferences (timezone, default currency if selected)
  • debttrack_offline_queue: Pending transactions queued while offline, synced when reconnected

None of this data is shared with third parties. It is stored only on your device.

4. Analytics Data Collection

We collect limited analytics to understand how users interact with DebtTrack and to improve reliability:

  • Device ID: A non-reversible identifier that persists locally and sent with each page visit but is not linked to your account
  • Country/Region: Derived from IP geolocation, not pinpointed location
  • IP Hash: A short, non-reversible cryptographic hash of your IP address for privacy-preserving traffic analysis
  • Visited Page/Path: Which features you used (e.g., "/dashboard", "/features")
  • Timestamp: When you visited
  • Referrer: Where you came from (previous page or external site)
  • User Agent: Browser type and operating system (non-identifying)
  • Event Data: Feature interactions like "opened contact details", "created transaction", "clicked settings"

This data is never used for advertising, targeted marketing, or behavioral profiling. It is aggregated and used only to identify trends, fix bugs, and improve features.

5. What We Never Collect

  • Tracking pixels or web beacons for cross-site tracking
  • Third-party retargeting or advertising cookies
  • Keystroke logging or user session recordings
  • Information about browsing activities outside of DebtTrack
  • Fingerprinting data (combination of browser characteristics for tracking)
  • Location data beyond country-level geolocation

6. How We Use Analytics Data

Analytics data helps us:

  • Identify which features are most and least used
  • Detect performance issues and bugs in specific countries or device types
  • Understand user flows and optimize the user experience
  • Make informed decisions about future feature development
  • Monitor service reliability and uptime

7. Cookie Retention and Lifecycle

  • Session Cookies: Automatically deleted when you close your browser or log out
  • Persistent Cookies/LocalStorage: Remain until you clear them manually or delete your browser cache
  • Analytics Data: Stored for up to 90 days for trend analysis, then automatically deleted
  • Device ID: Persists in localStorage indefinitely but can be cleared from browser settings

8. How to Control Cookies and Local Storage

You have full control over cookies and localStorage on your device:

  • Browser Settings: Most browsers allow you to block or delete cookies. Go to settings > Privacy/Security > Cookies. Warning: Disabling essential cookies may affect app functionality.
  • Clear Local Storage: In browser DevTools or settings, you can clear localStorage for debttrack.onrender.com
  • Third-Party Cookie Control: If your browser supports it, you can disable third-party cookies (we don't use them anyway)
  • Do Not Track (DNT): If your browser sends a DNT signal, we respect it and do not collect analytics
  • Incognito/Private Mode: Using private browsing prevents cookies from being saved

9. Analytics Opt-Out

You can opt out of analytics collection:

  • Disabling cookies/local storage in your browser
  • Enabling "Do Not Track" in your browser settings
  • Using private/incognito browsing mode
  • Request analytics deletion by emailing debttrackpro@gmail.com

Note: Opting out may limit our ability to provide a fully personalized experience, but the app will still function normally.

10. Third-Party Analytics Services

We may use third-party analytics services (such as Convex Analytics) to understand aggregate usage patterns. These services:

  • Process only aggregated, non-personal data
  • Cannot identify individual users
  • Are bound by privacy agreements to the same standards as DebtTrack
  • Do not use data for their own marketing or purposes

11. California Consumer Privacy Act (CCPA) / Privacy Rights

If you reside in California or other jurisdictions with privacy laws, you have the right to:

  • Know what data we collect about you
  • Request deletion of that data
  • Opt out of analytics collection
  • Receive data in a portable format

To exercise these rights, contact debttrackpro@gmail.com

12. Changes to This Cookie Policy

We may update this policy to reflect changes in technology, legal requirements, or our practices. We will notify you of material changes by updating the date above.

13. Contact Us

For questions about cookies, analytics, or your privacy rights, please contact:

Email: debttrackpro@gmail.com
Website: https://debttrack.onrender.com