Cookie Policy
Last updated: April 5, 2026
1. Introduction
This Cookie Policy explains how Kinfoly ("we," "us," "our"), available at https://kinfoly.com, uses cookies and similar technologies. By continuing to use Kinfoly, you acknowledge this Cookie Policy.
2. What Are Cookies
Cookies are small text files that are stored on your device (computer, tablet, or mobile phone) when you visit a website. They are widely used to make websites work properly, improve user experience, and provide information to site operators.
3. Cookies We Use
Kinfoly uses only strictly necessary cookies that are essential for the Service to function. We do not use any advertising, analytics, or tracking cookies.
3.1 Session Cookie
| Name | kinfoly_session |
| Purpose | Authenticates your identity and maintains your login session |
| Type | Strictly necessary (first-party) |
| HttpOnly | Yes — cannot be accessed by JavaScript |
| Secure | Yes — transmitted only over HTTPS |
| SameSite | Lax — protects against cross-site request forgery |
| Duration | 8 hours (standard login) or 30 days (if "Remember Me" is selected) |
| Data stored | A randomly generated session identifier (no personal data is stored in the cookie itself) |
3.2 External Authentication Cookie
| Name | ExternalCookies |
| Purpose | Temporarily holds authentication data during Google OAuth sign-in flow |
| Type | Strictly necessary (first-party) |
| Duration | Exists only during the sign-in process and is deleted immediately after |
| Data stored | Temporary authentication claims from Google |
3.3 ASP.NET Session Cookie
| Name | .AspNetCore.Session |
| Purpose | Stores your active tree selection within the application |
| Type | Strictly necessary (first-party) |
| HttpOnly | Yes |
| IsEssential | Yes |
| Duration | Browser session (deleted when you close your browser) |
| Data stored | A session identifier linking to server-side session state |
4. Third-Party Cookies
Kinfoly does not set any third-party cookies. We do not use any third-party analytics, advertising, or social media tracking services.
If you sign in via Google OAuth, Google may set its own cookies on its authentication pages (google.com). These cookies are governed by Google's own Cookie Policy and are not under our control.
5. Cookies We Do NOT Use
For clarity, Kinfoly does not use: analytics cookies (e.g., Google Analytics), advertising or remarketing cookies, social media tracking pixels or cookies, performance or A/B testing cookies, or any non-essential cookies.
6. Managing Cookies
Since all cookies used by Kinfoly are strictly necessary for the Service to function, disabling them may prevent you from logging in or using the Service properly.
You can manage cookies through your browser settings. Most browsers allow you to block or delete cookies. Please note that if you block our session cookie, you will not be able to sign in to Kinfoly.
7. Changes to This Policy
We may update this Cookie Policy from time to time. Changes will be posted on this page with an updated "Last updated" date. Your continued use of the Service constitutes acceptance of any changes.
8. Contact
If you have questions about this Cookie Policy, you may contact us at: [email protected]