Cookie Policy.
How Fyldit uses cookies and similar storage. No advertising, no social pixels, no cross-site tracking — ever.
1. What are cookies?
Cookies are small text files placed on your device by a website. We also use similar technologies including localStorage and sessionStorage. In this policy we use the term "cookies" to cover all such technologies.
2. How we use cookies
We use cookies for three purposes only: to make Fyldit work, to keep your account secure, and to understand how the public website is used (only where you give consent). We use no advertising cookies, social-media tracking pixels, cross-site tracking or retargeting.
3. Cookies and storage we use
3.1 Strictly necessary — always active
Essential for Fyldit to function. Cannot be disabled.
| Name / Key | Type | Purpose | Duration |
|---|---|---|---|
| ddv_refresh_token | sessionStorage | Maintains your authenticated session. | Session only |
| ddv_master_key | sessionStorage / localStorage | Stores your encryption master key locally for encrypting and decrypting vault content. | Session (or persistent if you choose "Remember me") |
| ddv_user_info | localStorage | Stores basic user information (ID, email, display name, plan) for the app interface. | Until you log out |
3.2 Functional
| Name / Key | Type | Purpose | Duration |
|---|---|---|---|
| userId, userEmail, displayName, userPlan | localStorage | Stores user context for personalising the interface. | Until you log out |
3.3 Analytics and performance — consent required
Disabled by default in regions where law requires consent. Activated only if you give explicit consent.
| Name / Key | Provider | Purpose | Duration |
|---|---|---|---|
| Microsoft Clarity | Microsoft | Session recording, heatmaps and aggregated usage analytics. Clarity does not capture vault content because vault data is encrypted and rendered client-side. Restricted to public-facing pages only — never deployed on vault screens, document areas, Unlock on Death or Unlock on Incapacity workflows, Trusted Contact management, payment pages or any sensitive authenticated area of Fyldit. | Session / per Microsoft's retention |
4. Consent
Strictly necessary cookies and storage are always active — Fyldit cannot function without them. Analytics cookies (Microsoft Clarity) are loaded only with your consent in jurisdictions that require it, including the EU and UK.
You can withdraw consent at any time through your cookie settings in the app or by contacting privacy@fyldit.com.
5. What we do not use
- Advertising or marketing cookies
- Social-media tracking pixels
- Cross-site tracking or retargeting cookies
- Traditional HTTP authentication cookies — our tokens are stored in memory and sessionStorage
6. Analytics scope restriction
Where analytics tools are deployed, they are restricted to selected public website pages only. Analytics tools are not permitted on vault screens, document upload or preview areas, recovery workflows, Unlock on Death or Unlock on Incapacity workflows, Trusted Contact management, payment pages or any other sensitive or authenticated area of Fyldit.
7. Managing cookies in your browser
You can control cookies through your browser settings:
- Chrome: Settings → Privacy and Security → Cookies
- Firefox: Settings → Privacy & Security → Cookies and Site Data
- Safari: Preferences → Privacy → Manage Website Data
- Edge: Settings → Cookies and Site Permissions
Blocking strictly necessary storage or cookies in your browser may prevent you from using Fyldit.
8. Data shared with third parties
When analytics cookies are active, the following data may be shared with Microsoft Clarity: anonymised session recordings, page views, hashed user ID and basic device information. We do not share vault content, Life Pack contents, passwords, master keys or encryption credentials with any analytics provider.
9. Changes to this policy
We may update this Cookie Policy from time to time. Changes will be published with a new effective date. If we introduce new categories of cookies, we will update our consent mechanism accordingly.
10. Contact
Privacy and cookie queries: privacy@fyldit.com.
For how we handle personal data more broadly, see our Privacy Policy at fyldit.com/legal.