whomi.bio
~/legal$cat cookies.md

Cookie Policy

// last updated: May 27, 2026

1. What Are Cookies

Cookies are small text files stored in your browser when you visit a website. They let the site remember information about your visit — for example, that you are logged in, or your theme preference.

2. Cookies We Use

  • Strictly necessary — required for the Service to function (login, security, fraud prevention). Examples: whomi_session, csrf_token. Duration: session or 30 days. Cannot be disabled.
  • Preferences — remember your theme, language, dashboard layout. Examples: whomi_theme, whomi_lang. Duration: 1 year.
  • Analytics — aggregate usage stats to improve the Service (first-party only). Duration: 90 days.
  • Marketing — only set after explicit opt-in. Duration: up to 1 year.

3. Third-Party Cookies

We use a small number of third-party services that may set their own cookies:

  • Stripe (payment processing) — sets cookies on the checkout page for fraud prevention
  • GitHub (when you log in via GitHub OAuth) — sets cookies on github.com, not on our domain

We do not use Google Analytics or any cross-site advertising cookies on whomi.bio.

4. How to Manage Cookies

  • Browser settings — block or delete cookies. Blocking strictly-necessary cookies will break login.
  • Cookie banner — shown on your first visit, lets you accept or reject non-essential categories.
  • Withdraw consent — anytime via /dashboard → Account → Privacy.

For EU/EEA users, non-essential cookies are set only after you provide explicit consent.

5. Do Not Track

We honor "Do Not Track" (DNT) signals by disabling non-essential analytics for users whose browsers send DNT.

6. Contact

Questions about cookies: legal@whomi.bio.

© HACKASTRA INFOSEC L.L.C-FZ · UAE Free Zone · Operator of whomi.bio