Cookie Policy

Effective date: October 1, 2025

Controller: Siriustech SRL ("Siriustech", "we", "us", "our")

Trade Register no.: J2025065962001

Registered office: Stejerisului 30H, 500122 Brașov, România

General privacy contact: office@gradum.io

Support: support@gradum.io

This Cookie Policy explains how we use cookies and similar technologies on our websites and within the Gradum SaaS platform (the Service). It should be read together with our Privacy Policy.

The Service is offered B2B only. Nevertheless, where consent is required by law (e.g., the EU/EEA/UK under the ePrivacy regime), we will obtain it before setting non‑essential cookies.

1) What are cookies and similar technologies?

Cookies are small text files stored on your device by your browser. They may be session (deleted when you close the browser) or persistent (stored until they expire or you delete them).
Similar technologies include local storage, session storage, pixels, tags, SDKs, and server‑side tracking that achieves comparable purposes.

2) How we use cookies

We group cookies and similar technologies into these categories:

Strictly necessary (essential): required to operate the Service (e.g., authentication, load balancing, security). These do not require consent. Legal basis: Art. 6(1)(b) GDPR (contract necessity) and legitimate interests (Art. 6(1)(f)).
Functional: remember choices (e.g., language, preferences) and improve your experience. Where required by law, set only with consent. Legal basis: consent (Art. 6(1)(a)).
Analytics: measure usage and performance to help us improve the Service (e.g., error rates, feature adoption). Where required by law, set only with consent. Legal basis: consent (Art. 6(1)(a)) or legitimate interests where local law permits and we implement appropriate safeguards (e.g., IP truncation).
Advertising/retargeting (if enabled): deliver and measure ads across sites. We do not use advertising cookies by default. If we enable them in the future, we will request consent and update this Policy.

Note: An up‑to‑date list of cookies and vendors is available in the in‑product Cookie Settings panel (the "Manage cookies" link in the footer). Third‑party cookies are controlled by the respective third parties; please review their privacy notices.

3) Specific technologies we may use

Below are typical examples. Exact names and lifetimes may vary by browser and platform and are listed in the Cookie Settings panel.

Category	Example names	Purpose	Typical lifetime
Strictly necessary	`gradum_session`, `__cf_bm` (if using Cloudflare), CSRF token	Authentication, session integrity, bot mitigation, security	Session to 1 year
Functional	`locale`, `ui_prefs`	Save language and UI choices	Up to 12 months
Analytics	`ga`, `ga_*` (if Google Analytics enabled), server‑side event IDs	Usage metrics, product analytics, error diagnosis	1–13 months
Payments	Stripe cookies (e.g., `__stripe_mid`, `__stripe_sid`)	Fraud prevention and secure payment processing	Up to 1 year

Payments. Card payments are processed by Stripe, which may set its own cookies for fraud prevention and to remember your device. Stripe acts as an independent controller for those cookies.

4) Your choices

Consent banner & preferences. On your first visit (and periodically thereafter), we present a consent banner. You can Accept all, Reject non‑essential, or Customize. You can change your choices any time via Manage cookies in the footer.
Browser settings. You can block or delete cookies in your browser. Blocking essential cookies may impair the Service.
Analytics opt‑out. If we use analytics vendors, we honor your choices in the Cookie Settings panel. Where available, we enable privacy features such as IP truncation and event sampling.
Global Privacy Control (GPC). Where legally required, we treat a valid GPC signal as an opt‑out from non‑essential cookies.

5) Legal bases

Essential cookies: contract necessity and our legitimate interests in providing a secure, reliable Service.
Non‑essential cookies: your consent. You may withdraw consent at any time in Manage cookies.

6) Retention and consent lifespan

Cookie lifetimes vary by purpose and vendor. We aim to keep non‑essential cookies for no longer than 13 months in the EEA/UK.
Your consent choice is remembered for up to 6–12 months (depending on jurisdiction), after which we will re‑prompt.

7) International transfers

Where cookie data involves transfers outside the EEA/UK/Switzerland, we rely on lawful transfer mechanisms (e.g., Standard Contractual Clauses) and implement appropriate safeguards.

8) Third‑party responsibility

We are not responsible for third‑party cookie practices once you leave our domain or interact with third‑party content. Please review the privacy/cookie notices of those providers.

9) Updates to this Policy

We may update this Policy from time to time to reflect changes in technology, law, or our practices. Material changes will be communicated via the Service or by email. The Effective date at the top shows when this Policy last changed.

10) Contact

Questions about cookies: office@gradum.io

Support: support@gradum.io

Loading…

1) What are cookies and similar technologies?

Cookies are small text files stored on your device by your browser. They may be session (deleted when you close the browser) or persistent (stored until they expire or you delete them).

Similar technologies include local storage, session storage, pixels, tags, SDKs, and server‑side tracking that achieves comparable purposes.

2) How we use cookies

We group cookies and similar technologies into these categories:

Strictly necessary (essential): required to operate the Service (e.g., authentication, load balancing, security). These do not require consent. Legal basis: Art. 6(1)(b) GDPR (contract necessity) and legitimate interests (Art. 6(1)(f)).

Functional: remember choices (e.g., language, preferences) and improve your experience. Where required by law, set only with consent. Legal basis: consent (Art. 6(1)(a)).

Analytics: measure usage and performance to help us improve the Service (e.g., error rates, feature adoption). Where required by law, set only with consent. Legal basis: consent (Art. 6(1)(a)) or legitimate interests where local law permits and we implement appropriate safeguards (e.g., IP truncation).

Advertising/retargeting (if enabled): deliver and measure ads across sites. We do not use advertising cookies by default. If we enable them in the future, we will request consent and update this Policy.

3) Specific technologies we may use

Below are typical examples. Exact names and lifetimes may vary by browser and platform and are listed in the Cookie Settings panel.

Category	Example names	Purpose	Typical lifetime
Strictly necessary	`gradum_session`, `__cf_bm` (if using Cloudflare), CSRF token	Authentication, session integrity, bot mitigation, security	Session to 1 year
Functional	`locale`, `ui_prefs`	Save language and UI choices	Up to 12 months
Analytics	`ga`, `ga_*` (if Google Analytics enabled), server‑side event IDs	Usage metrics, product analytics, error diagnosis	1–13 months
Payments	Stripe cookies (e.g., `__stripe_mid`, `__stripe_sid`)	Fraud prevention and secure payment processing	Up to 1 year

Payments. Card payments are processed by Stripe, which may set its own cookies for fraud prevention and to remember your device. Stripe acts as an independent controller for those cookies.

4) Your choices

Consent banner & preferences. On your first visit (and periodically thereafter), we present a consent banner. You can Accept all, Reject non‑essential, or Customize. You can change your choices any time via Manage cookies in the footer.

Browser settings. You can block or delete cookies in your browser. Blocking essential cookies may impair the Service.

Analytics opt‑out. If we use analytics vendors, we honor your choices in the Cookie Settings panel. Where available, we enable privacy features such as IP truncation and event sampling.

Global Privacy Control (GPC). Where legally required, we treat a valid GPC signal as an opt‑out from non‑essential cookies.