Cookie Policy
Effective Date: 2025-Sep-24
Last Updated: 2025-Sep-24
Next Review: 2026-Sep-23
1. Introduction
This Cookie Policy explains how Treoir AI Ltd (“we,” “us,” “our,” or “Treoir AI”) uses cookies and similar tracking technologies on our website and AI-powered career coaching platform. This policy should be read alongside our Privacy Policy and Terms and Conditions.
What are cookies? Cookies are small text files that are stored on your device when you visit a website. They help websites remember information about your visit, making your next visit easier and the site more useful to you.
Cookies have a duration that varies between session (expire when you close your browser) to those that are persistent for a period of time. We choose to limit persistent cookies to no more than 1 year where possible. Persistent cookies can be manually deleted through your browser settings.
Service Availability: Our service is currently available only to users located in the United Kingdom. We use technical measures to restrict access from other jurisdictions.
2. Types of Cookies We Use
We categorise our cookies into four types, each serving different purposes and requiring different levels of consent under UK law.
2.1 Strictly Necessary Cookies (No Consent Required)
These cookies are essential for our website and service to function properly. They are necessary for the performance of our contract with you and for compliance with legal obligations. They cannot be disabled without significantly impacting your ability to use our platform.
| Cookie Name | Purpose | Duration | Provider |
|---|---|---|---|
treoir_csrf_token | Protects our services against abuse | 1 hour | Treoir AI |
cf_clearance | Security challenge completion verification | 30 minutes | Cloudflare |
__cfruid | Rate limiting support | Session | Cloudflare |
__cflb | Load balancing session affinity | Up to 24 hours | Cloudflare |
__session | Authentication session token | 60 seconds (auto-refreshed) | Clerk |
__session_<id> | Authentication session token | 60 seconds (auto-refreshed) | Clerk |
clerk_active_context | Authentication session token | Session | Clerk |
__client | Long-lived client identification for authentication | Up to 7 days | Clerk |
__client_uat | Long-lived client identification for authentication | Up to 7 days | Clerk |
__client_uat_<id> | Long-lived client identification for authentication | Up to 7 days | Clerk |
__cf_bm | Bot management and security | 30 minutes | Cloudflare |
_cfuvid | Unique visitor ID for rate limiting | Session | Cloudflare |
| Stripe payment cookies* | Fraud prevention and payment processing | Session | Stripe |
*Stripe sets various unnamed cookies essential for secure payment processing and fraud prevention when you interact with our payment features.
Note: We use local storage to keep track of your cookie consents. These are stored under the key treoir_cookie_consent.
2.2 Functional Cookies (Consent Required)
These cookies enhance your experience by remembering your choices and providing personalised features. While not essential, these cookies significantly improve your experience. You can opt out of these cookies at any time using the Manage Cookie Preferences link at the bottom of this page, but some personalisation features may not work properly.
| Cookie Name | Purpose | Duration | Provider |
|---|---|---|---|
treoir_coach | Remember your Coach preferences | 1 year | Treoir AI |
2.3 Performance and Analytics Cookies (Consent Required)
These cookies help us understand how visitors use our website and platform, allowing us to improve functionality and user experience. You can opt out of these cookies at any time using the Manage Cookie Preferences link at the bottom of this page.
| Cookie Name | Purpose | Duration | Provider |
|---|---|---|---|
ph_<project_key> | User behavior analytics and feature usage tracking | 365 days | PostHog |
| Google Analytics cookies | Website traffic analysis (if enabled) | Various | Google/Clerk |
| Statsig cookies | Feature experimentation and A/B testing | Various | Clerk/Statsig |
What we learn: Page views, time spent on platform, feature usage patterns, technical performance issues, user journey through coaching process.
Note: PostHog also uses local storage to maintain user IDs, session data, and feature flags. We have configured PostHog to respect your cookie preferences.
2.4 Marketing and Communication Cookies (Consent Required)
These cookies are used for email marketing effectiveness and communication tracking. You can opt out of these cookies at any time using the Manage Cookie Preferences link at the bottom of this page.
| Cookie Name | Purpose | Duration | Provider |
|---|---|---|---|
| Koala cookies | Marketing analytics and visitor insights | Various | Clerk/Koala |
3. Cookie Consent Management
3.1 How We Obtain Consent
On your first visit to our website, you will see our cookie banner. You will be able to consent to the different categories of cookies separately. However, essential cookies are automatically enabled as they are necessary for the site to function. You will also be able to make quick choices using “Accept All” or “Essential Only”. Your choices are saved and respected for future visits.
3.2 Managing Your Cookie Preferences
You can change your cookie preferences at any time by using the Manage Cookie Preferences link at the bottom of this page.
Our cookie banner will also be displayed if you clear your browser data and refresh our site.
You can also control cookies through your browser settings. Most browsers allow you to view, delete, and block cookies. Please note that blocking our essential cookies may prevent you from using our services.
3.3 Consent Refresh
If we do not change our cookies, our cookie consent banner will be redisplayed to you 12 months after your previous choice. This ensures you have the opportunity to reassess your previous choices.
If we add new types of cookies, we will redisplay our cookie consent banner on your next visit. It will automatically unset any choices you may have made so that you can give informed consent. No new cookies will be activated without this.
4. Third-Party Services
The cookie behaviours for our third-party providers can be found at:
- Clerk (Authentication): Cookie Documentation | Privacy Policy
- PostHog (Analytics): Privacy Policy | GDPR Compliance
- Stripe (Payments): Cookie Policy | Privacy Center
- Plunk (Email/CRM): Privacy Policy
- Cloudflare (Security/CDN): Cookie Documentation | Privacy Policy
5. Your Rights
Under UK GDPR and PECR regulations, you have the right to:
- Withdraw consent for non-essential cookies at any time
- Access information about the cookies we use
- Request deletion of data collected through cookies
- Object to the processing of your data through analytics cookies
To exercise these rights, please contact us at privacy@treoir.ai or use the cookie preference management tools provided on our website.
This Cookie Policy forms part of our overall Privacy Policy. By using our website and services, you agree to our use of cookies as described in this policy and subject to your consent choices.