INFLOWAVE COOKIE & TRACKING POLICY

Last Updated: March 2026

This Cookie & Tracking Policy ("Policy") explains how AIAGS Ltd d/b/a Inflowave ("Inflowave", "we", "us", or "our") uses cookies, pixels, tags, device identifiers, and similar tracking technologies on https://inflowave.io and any subdomains, application pages, dashboard services, marketplace, or promotional landing pages (collectively, the "Services").

1. WHAT ARE COOKIES AND TRACKERS?

Cookies and similar technologies are small data files stored on your device or browser to:

  • Enable website functions
  • Improve user experience
  • Provide analytics and security
  • Deliver business-targeted advertising
  • Personalize features and settings

Tracking may also be performed using:

  • Pixels
  • Local storage
  • Session storage
  • Device identifiers
  • API logging
  • SDK tracking

2. TYPES OF COOKIES WE USE

We use the following categories of tracking technologies:

A. Strictly Necessary Cookies

Required for the operation of the Services, including authentication, security, payments, and access controls.

These cannot be disabled, as they support essential functionality.

Examples:

  • Login sessions
  • CSRF protection
  • Payment checkout tokens
  • Security rate limits

B. Functional Cookies

Enable features and preferences such as saved settings, language preferences, and login retention.

C. Performance & Analytics Cookies

Used to measure usage to improve performance and product optimization.

Tools may include:

  • Web analytics
  • Performance monitoring
  • Crash/error logging

D. Marketing & Advertising Cookies

Used for business-targeted ads only (not consumer tracking).

We may use Conversion API tools for:

  • Google Analytics / Ads
  • Meta (Facebook/Instagram) Business Retargeting

D2. Server-Side Conversion Tracking (No Cookies)

In addition to cookie-based marketing tools, we use server-side conversion tracking that operates independently of cookies and does not require cookie consent:

  • Meta Conversions API (CAPI) — When you register or complete a purchase, our server sends a hashed (SHA-256), non-reversible version of your email to Meta to measure ad effectiveness.
  • Google Analytics Measurement Protocol — Our server sends anonymized conversion events (e.g., "purchase completed") to Google Analytics.

This tracking:

  • Does not set any cookies on your device
  • Does not use browser fingerprinting or client-side scripts
  • Only fires for contractual events (registration, purchase, cancellation)
  • Sends only irreversibly hashed identifiers — Meta and Google cannot read your raw email or name
  • Legal basis: Contract performance (GDPR Art. 6(1)(b)) and Legitimate interest (GDPR Art. 6(1)(f))

Server-side tracking cannot be disabled via cookie settings because it does not use cookies. If you wish to opt out, contact support@inflowave.io.

E. Session Storage & Local Storage

Used to store:

  • User preferences
  • UI state (light/dark mode, last dashboard state, filters)
  • Temporary authentication metadata

3. THIRD-PARTY TRACKING

We may use third-party services including:

ProviderPurpose
StripePayment processing
CoinPaymentsCryptocurrency billing
Meta (Facebook/Instagram)Business ad retargeting
Google AnalyticsTraffic measurement
Microsoft ClaritySession behavior analysis on selected app pages
SendGridEmail delivery and event logging
Security & Performance ToolsLogging, load balancing, protection

Microsoft Clarity Notice

We may record UX interactions on some dashboard pages, excluding messaging content or sensitive fields.

Recordings are used strictly for product improvement, not advertising.

4. WHAT DATA DO COOKIES COLLECT?

Depending on cookie type, tracking may collect:

  • Browser and device type
  • IP-based region/location
  • Time on pages and clicks
  • Feature usage metrics
  • Login timestamps
  • Crash/error logs
  • Referral sources
  • Ad campaign performance

We do NOT collect health, ethnicity, religion, or other sensitive personal data via cookies.

5. HOW TO MANAGE COOKIES

You may control or disable non-essential cookies via:

  • Browser settings
  • In-app cookie controls (where available)
  • Opt-out settings for marketing platforms

Browser Controls

You can disable cookies by adjusting browser preferences, but certain services may not function correctly if Strictly Necessary Cookies are blocked.

6. CONSENT FOR COOKIES (GDPR/UK PECR)

For users in the EU, UK, and EEA, we:

  • Request consent for non-essential cookies before activation
  • Provide options to accept or reject tracking
  • Allow withdrawal of consent at any time

Essential cookies do not require consent.

7. DO WE USE TRACKERS FOR AI TRAINING?

No. Cookie data, analytics, or recordings are not used to train AI models.

AI training requires separate explicit opt-in consent, via a different policy.

8. CHANGES TO THIS POLICY

We may update this Policy periodically.

The "Last Updated" date at the top indicates when changes were made.

Continued use of the Services indicates acceptance.

RELATED POLICIES

For more information, please review our related policies:

9. CONTACT INFORMATION

For questions regarding cookies and tracking:

AIAGS Ltd d/b/a Inflowave

71-75 Shelton Street

Covent Garden, London, WC2H 9JQ

United Kingdom

support@inflowave.io

+44 744 533 4361