Cookie Policy

Effective Date: February 27, 2026
Last Updated: February 27, 2026

This Cookie and Analytics Policy (the "Policy") is issued by Inspyrd Inc ("Inspyrd," "Company," "we," "us," or "our") and explains how cookies and similar technologies are used in connection with our website and related communications (collectively, the "Services").

This Policy is intended to be read together with our Privacy Policy and Security Policy. In the event of conflict between this Policy and mandatory applicable law, applicable law shall prevail.

1. Scope and Policy Commitment

Inspyrd applies a strict consent-first and data-minimization model.

We do not collect Personal Data from general website browsing by default.

We use only strictly necessary technologies required for secure operation of appointment booking and waitlist signup workflows.

We do not activate non-essential analytics cookies unless and until explicit opt-in consent is obtained where legally required.

For purposes of this Policy, "Personal Data" and equivalent legal terms (including "personal information") have the meanings assigned under applicable law.

2. Legal and Regulatory Alignment

This Policy is designed for global applicability and is intended to support compliance, where relevant, with:

EU GDPR and ePrivacy requirements;

UK GDPR and PECR requirements;

Swiss data protection requirements;

CCPA/CPRA and applicable U.S. state privacy laws;

Brazil LGPD;

Canada PIPEDA and applicable provincial requirements;

APPI, POPIA, and analogous regional laws where applicable.

Where jurisdiction-specific requirements impose additional consent, notice, or rights obligations, Inspyrd applies those requirements to affected users.

3. What Cookies and Similar Technologies Are

Cookies are small text files placed on your browser or device. Similar technologies may include local storage objects, software development kit identifiers, and server-assisted session mechanisms.

For this website, Inspyrd limits technology usage to what is necessary for service security and form submission continuity, unless additional consented functionality is explicitly enabled.

4. Categories of Technologies Used

4.1 Strictly Necessary Technologies (Active)

These technologies are essential to provide requested functions and to maintain security and session integrity. They may include:

Session continuity tokens required for form workflow reliability;

Security and anti-abuse controls used to protect appointment and waitlist forms;

Technical controls that maintain network and application security.

These technologies are used solely for necessary operational purposes and are not used for cross-site advertising profiles.

4.2 Functional, Analytics, and Advertising Technologies (Inactive by Default)

Inspyrd does not enable non-essential cookies by default. This includes:

Functional preference cookies not strictly required for core operation;

Analytics/performance cookies that track user behavior;

Advertising/targeting cookies or similar technologies.

If Inspyrd elects to activate any non-essential category in the future, legally required prior consent and disclosures will be implemented before deployment.

5. Analytics Policy

5.1 Current Analytics Position

At present, Inspyrd does not deploy non-essential personal-data analytics cookies for general website browsing.

5.2 Operational Measurement and Security Metrics

Inspyrd may process limited operational and security telemetry strictly necessary to:

Maintain service reliability;

Detect abuse or fraudulent activity;

Preserve the integrity of appointment booking and waitlist submission workflows.

Such telemetry is handled under legitimate operational and security interests (or equivalent lawful basis under local law), proportionate to risk, and not for targeted advertising.

5.3 Consent Requirement for Optional Analytics

Where optional analytics tools are introduced, Inspyrd will:

Present clear consent choices prior to activation where required by law;

Identify analytics purposes and data categories in applicable notices;

Provide user controls to refuse or withdraw consent;

Disable analytics processing upon valid withdrawal, subject to legal and technical constraints.

6. Data Collected Through Necessary Technologies

Where strictly necessary technologies are used, processing may involve limited technical metadata, such as:

Session identifiers;

Request timestamps;

Security event indicators;

Basic network and device signals required to secure and deliver forms.

This metadata is used only for the purposes stated in this Policy and is retained only as long as reasonably necessary under legal and operational requirements.

7. Purposes of Cookie/Telemetry Processing

Inspyrd processes cookie-related and technical telemetry information solely to:

Enable appointment booking and waitlist signup workflows;

Secure forms and website infrastructure;

Detect, prevent, and investigate abuse and unauthorized access;

Meet legal, regulatory, and evidentiary obligations.

Inspyrd does not use cookie-derived data for sale, sharing, or cross-context behavioral advertising.

8. Third-Party Providers and Service Dependencies

Inspyrd may rely on third-party service providers for infrastructure and operational delivery, including provider environments used for DNS/domain administration and website platform hosting. Where third-party tools process data in connection with necessary security or service operations, such processing is governed by contractual restrictions, provider terms, and applicable law. Inspyrd does not authorize third parties to deploy non-essential tracking for advertising on our behalf through the Services.

9. Cross-Border Data Transfers

Where technical metadata or consent records are transferred across borders, Inspyrd applies legally required safeguards, which may include approved contractual transfer mechanisms and supplementary technical/organizational protections appropriate to risk.

10. Retention of Cookie, Consent, and Telemetry Data

Inspyrd retains data related to necessary technologies only for periods reasonably required for security, operational continuity, legal compliance, and dispute defense.

Indicative retention logic may include:

Session data: retained for session duration or short operational windows;

Security logs: retained according to risk and legal obligations;

Consent records (where applicable): retained as necessary to demonstrate lawful consent and compliance.

Retention periods may vary by jurisdiction, legal holds, and regulatory requirements.

11. Consent Management and User Controls

Where consent is legally required for non-essential technologies, users may:

Grant or refuse consent before activation;

Modify consent preferences subsequently;

Withdraw prior consent at any time.

Users may also manage cookies via browser controls. Blocking strictly necessary technologies may impair the ability to submit appointment or waitlist forms.

12. Do Not Track and Similar Signals

Inspyrd honors legally required browser-based privacy preference signals where mandated and technically supported. In jurisdictions without standardized legal requirements, signal treatment may vary.

13. Your Privacy Rights

Depending on jurisdiction, users may have rights to request access, correction, deletion, restriction, portability, objection, and withdrawal of consent concerning Personal Data. To exercise applicable rights, contact us using the details in Section 17.

14. Sale, Sharing, and Targeted Advertising Statement

Inspyrd does not sell Personal Data. Inspyrd does not share Personal Data for cross-context behavioral advertising. Inspyrd does not deploy advertising cookies on the Services.

15. Policy Changes

Inspyrd may amend this Policy to reflect legal, technical, or operational changes. Material updates will be communicated through appropriate channels, and the "Last Updated" date will be revised accordingly.

16. Interpretation and Precedence

This Policy is drafted in English. If translated versions are provided, the English version controls unless mandatory law requires otherwise.

Where this Policy conflicts with binding contractual terms for enterprise engagements, contractual terms prevail to the extent of direct conflict.

17. Contact Information

For cookie, analytics, and privacy inquiries, including consent and rights requests, contact:

Inspyrd Inc
Attn: Privacy Office / Data Protection Team
Email: [email protected]
Security Contact: [email protected]
Mailing Address:

By using the Services, you acknowledge this Policy and the strictly necessary technology model described herein.