Cookies Policy
Last updated: June 1, 2026
This page explains what cookies are, what we use them for on aktai.app, and how you can control them. It applies to the marketing site (aktai.app) and the web app (ra.aktai.app).
What is a cookie?
A cookie is a small text file that a website stores on your device when you visit it. Cookies let a site remember things between page loads, like whether you are signed in. Some are set by the site you are visiting (first-party). Some are set by other companies whose tools the site uses (third-party).
Similar technologies covered by this policy include local storage, session storage, and pixel tags.
The categories we use
Strictly necessary. Without these the site cannot work. We use them to keep you signed in, remember your CSRF token, and route traffic. You cannot turn these off in our cookie banner because the site would break.
Functional. These remember small preferences for your visit: the country we detected for you, banners or prompts you have closed, and which version of a page you were shown, so the site stays consistent as you browse.
Analytics. These tell us how the site is used in aggregate. Which pages get traffic, which CTAs get clicked, where users drop off. We use Google Analytics 4 for this. We do not use analytics cookies to identify you personally and we do not sell this data.
Marketing. We run Google Ads. When you allow marketing cookies, a Google Ads tag measures whether a visit that started from one of our ads led to a signup, and carries the click identifier (gclid) across from aktai.app to ra.aktai.app so the conversion can be attributed. These cookies are off until you accept them in the banner, and they stay off if your browser sends a Global Privacy Control signal. You can use the whole site with them declined.
The cookies and storage we use today
First-party cookies
aktai_access_token, strictly necessary, keeps you signed in to the web app at ra.aktai.app, HttpOnly, expires in about 1 houraktai_refresh_token, strictly necessary, renews your sign-in session, HttpOnly, scoped to the auth path, expires in about 1 day
Local and session storage (similar technology, not cookies)
aktai_cookie_consent, strictly necessary, stores your cookie choices in your browser's local storage so we do not ask again, kept for about 6 monthsaktai_location, functional, caches your detected country for the current browser session so we do not call the geolocation lookup repeatedly, cleared when you close the tabaktai_geo_suggest_dismissedandaktai_sticky_cta_dismissed, functional, remember that you closed the country-suggestion banner or the sticky call-to-action for the current session
Third-party
- Cloudflare, strictly necessary, DDoS protection, bot management and CDN routing (sets
__cf_bmand similar) - Google Tag Manager, strictly necessary loader, orchestrates the tags below. It sets no cookies of its own and obeys the consent defaults described below.
- Google Analytics 4, analytics, measures aggregate site usage (sets
_gaand_ga_<id>, kept up to about 2 years). Loaded only after you accept analytics cookies. - Google Ads, marketing, conversion measurement for our ads (sets
_gcl_au, kept up to about 90 days, and carries the gclid click identifier across our domains). Loaded only after you accept marketing cookies.
Analytics and marketing tags are governed by Google Consent Mode v2. Until you accept, analytics and advertising storage are set to denied by default, so these tags set no cookies on your device. We will update this list before adding any new third-party that sets cookies on your device.
How you can control cookies
You can change your choices at any time by clicking the cookie settings link in the website footer. You can also block or delete cookies in your browser settings. The Information Commissioner's Office (UK) keeps a plain-English guide at ico.org.uk.
Blocking strictly necessary cookies will sign you out and break the web app. Blocking functional storage means the site will re-detect your country each visit and may re-show banners you have closed. Blocking analytics and marketing cookies has no impact on the product, only on what we can measure about how the site and our ads perform.
Do Not Track
We honour the Global Privacy Control (GPC) signal where browsers send it. If your browser sends GPC, we treat it as an opt-out from both analytics and advertising cookies, in every region and regardless of any choice stored in the banner. A Do Not Track header has the same effect.
Changes to this policy
If we add new cookies or change how existing ones are used, we will update this page and refresh the consent prompt. The “Last updated” date at the top of the page reflects the most recent change.
Contact
Cookie questions can be sent to [email protected]. The data controller is AKTAI LTD, registered in England & Wales at 71-75 Shelton Street, Covent Garden, London WC2H 9JQ.