Cookie Policy

Cookie Policy

Effective Date: February 6, 2026
Last Updated: February 6, 2026

Contents

  1. 1. Introduction
  2. 2. What Are Cookies
  3. 3. Why We Use Cookies
  4. 4. Types of Cookies We Use
  5. 5. Essential Cookies
  6. 6. Third-Party Cookies
  7. 7. Cookies We Do NOT Use
  8. 8. Cookie Duration and Lifecycle
  9. 9. Managing Cookies
  10. 10. Cookie Consent
  11. 11. Updates to This Policy
  12. 12. Contact Us

1. Introduction

Welcome to ChengRouter's Cookie Policy. This policy explains how we use cookies and similar tracking technologies on our website and services ("Service").

By using our Service, you consent to our use of cookies as described in this Cookie Policy. This policy should be read in conjunction with our Privacy Policy and Terms of Service.

2. What Are Cookies

2.1 Definition

Cookies are small text files that are stored on your device (computer, tablet, smartphone) when you visit a website. They help websites recognize your device and remember information about your visit.

2.2 How Cookies Work

When you visit our Service:

  • Your browser sends a request to our server
  • Our server responds with the requested content and may send cookies
  • Your browser stores these cookies on your device
  • On subsequent visits, your browser sends the cookies back to our server
  • This allows us to recognize your device and provide a personalized experience

2.3 Types of Storage Technologies

In addition to cookies, we may use similar technologies:

  • Local Storage: HTML5 local storage for storing data locally in your browser
  • Session Storage: Temporary storage that persists only during a browser session
  • IndexedDB: Database storage in your browser for larger amounts of structured data

For simplicity, we refer to all these technologies collectively as "cookies" in this policy.

3. Why We Use Cookies

We use cookies for the following purposes:

3.1 Essential Service Functionality

  • Authentication: Recognize you when you log in and keep you logged in
  • Session Management: Manage your active sessions across devices
  • Security: Protect against cross-site request forgery (CSRF) and other attacks
  • Load Balancing: Ensure stable service delivery

3.2 Service Optimization

  • Preferences: Remember your settings (e.g., language preference, theme)
  • Performance: Improve loading times and reduce server load
  • Error Tracking: Identify and fix technical issues

3.3 Legal Compliance

  • Fraud Prevention: Detect and prevent fraudulent activities
  • Audit Logs: Maintain security and compliance records

4. Types of Cookies We Use

We categorize cookies based on their purpose and lifespan:

4.1 By Purpose

CategoryPurposeCan Be Disabled?
Essential CookiesRequired for the Service to function❌ No
Functional CookiesRemember your preferences✅ Yes (may impact experience)
Security CookiesProtect against attacks❌ No

4.2 By Lifespan

  • Session Cookies: Temporary cookies deleted when you close your browser
  • Persistent Cookies: Remain on your device for a specified period (see Section 8)

4.3 By Ownership

  • First-Party Cookies: Set directly by ChengRouter
  • Third-Party Cookies: Set by external services we use (e.g., Stripe for payments)

5. Essential Cookies

These cookies are strictly necessary for the Service to function and cannot be disabled without severely impacting your ability to use our Service.

5.1 Cookie Details

Cookie NamePurposeTypeDurationAttributes
session-idSession management and user authenticationFirst-party, Persistent7 daysHttpOnly, Secure, SameSite=Strict
csrf-tokenPrevent cross-site request forgery attacksFirst-party, SessionBrowser sessionSecure, SameSite=Strict
chengrouter-localeRemember your language preferenceFirst-party, Persistent1 yearSecure, SameSite=Lax

5.2 Cookie Attributes Explained

  • HttpOnly: Cookie cannot be accessed via JavaScript, protecting against XSS attacks
  • Secure: Cookie is only sent over HTTPS connections
  • SameSite=Strict: Cookie is only sent to our domain, not cross-site requests
  • SameSite=Lax: Cookie is sent on top-level navigation (e.g., clicking a link)

5.3 Authentication Flow

When you log in:

  1. Your credentials are verified against our database
  2. A unique session ID (UUID) is generated
  3. The session ID is stored in the session-id cookie
  4. A CSRF token is generated and stored in the csrf-token cookie
  5. On each request, your browser sends these cookies to verify your identity
  6. When you log out or the session expires, these cookies are deleted

6. Third-Party Cookies

We use limited third-party services that may set cookies. We have carefully selected partners who respect user privacy.

6.1 Payment Processing (Stripe)

ServicePurposeCookies SetPrivacy Policy
StripeProcess payments and detect fraudVarious (managed by Stripe)Stripe Privacy

Note: Stripe cookies are only set during the payment process when you are redirected to Stripe's secure payment page. These cookies are governed by Stripe's privacy policy.

6.2 Infrastructure (AWS)

Our Service is hosted on Amazon Web Services (AWS). AWS may set cookies for load balancing and service delivery purposes. These are essential for service functionality.

  • Purpose: Load balancing, session affinity, service optimization
  • Privacy Policy: AWS Privacy

7. Cookies We Do NOT Use

In commitment to your privacy, we explicitly do NOT use the following types of cookies:

7.1 Analytics and Tracking

  • Google Analytics: We do not track your behavior with Google Analytics
  • Facebook Pixel: We do not use Facebook tracking pixels
  • Third-Party Analytics: No behavioral analytics or user tracking
  • Heatmaps: No heatmap or session recording tools

7.2 Advertising and Marketing

  • Advertising Cookies: We do not serve targeted ads
  • Retargeting: We do not track you across websites for retargeting
  • Ad Networks: We do not participate in advertising networks

7.3 Social Media

  • Social Media Buttons: We do not embed social media widgets that track you
  • Social Login: We do not offer social media login (no Facebook/Google login tracking)

7.4 Fingerprinting

  • Device Fingerprinting: We do not create unique device fingerprints
  • Canvas Fingerprinting: We do not use canvas or WebGL fingerprinting
  • Browser Fingerprinting: We do not track browser configurations

8.1 Session Cookies

These cookies are automatically deleted when you close your browser:

  • csrf-token: Deleted when browser session ends

8.2 Persistent Cookies

These cookies remain on your device for a specified period:

CookieDurationReason
session-id7 daysKeep you logged in between sessions
chengrouter-locale1 yearRemember your language preference

8.3 Manual Deletion

You can delete cookies at any time through your browser settings. However, this will:

  • Log you out of your account
  • Reset your language preference to default
  • Require you to log in again on your next visit

9. Managing Cookies

9.1 Browser Settings

You can control cookies through your browser settings. Here's how:

Google Chrome:

  1. Open Chrome and click the menu (three dots) → Settings
  2. Click "Privacy and security" → "Cookies and other site data"
  3. Choose your preferred cookie settings

Mozilla Firefox:

  1. Open Firefox and click the menu (three lines) → Settings
  2. Click "Privacy & Security"
  3. Under "Cookies and Site Data", choose your preferences

Safari (macOS):

  1. Open Safari → Preferences
  2. Click "Privacy"
  3. Manage "Cookies and website data"

Microsoft Edge:

  1. Open Edge and click the menu (three dots) → Settings
  2. Click "Cookies and site permissions" → "Cookies and site data"
  3. Manage cookie settings

9.2 Private/Incognito Mode

Using your browser's private or incognito mode will:

  • Not save cookies after you close the browser
  • Not save browsing history
  • Still allow essential cookies during the session

9.3 Browser Extensions

You can use browser extensions to manage cookies, such as:

  • Cookie AutoDelete (automatically deletes cookies)
  • Privacy Badger (blocks tracking cookies)
  • uBlock Origin (blocks ads and trackers)

9.4 Impact of Disabling Cookies

Warning: If you block or delete essential cookies, you will not be able to:

  • ✗ Log in to your account
  • ✗ Access protected pages
  • ✗ Make payments or manage subscriptions
  • ✗ Use the Service's core features

10.1 Consent Mechanism

By continuing to use our Service, you consent to our use of essential cookies as described in this policy.

We only use cookies that are strictly necessary for the Service to function. We do not use optional cookies (e.g., analytics, advertising) that would require explicit consent.

10.2 Withdrawing Consent

You can withdraw your consent at any time by:

  • Deleting cookies through your browser settings
  • Stopping use of the Service
  • Closing your account (contact us at support@chengrouter.com)

10.3 Children's Privacy

Our Service is not directed to children under 16. We do not knowingly collect data from children, including through cookies.

11. Updates to This Policy

11.1 Changes

We may update this Cookie Policy from time to time to reflect changes in our practices or for legal, operational, or regulatory reasons.

11.2 Notification

We will notify you of material changes through:

  • Email to your registered email address
  • Prominent notice on our website
  • In-app notification upon login

11.3 Effective Date

Changes will take effect 30 days after notification, unless we specify otherwise. The "Last Updated" date at the top of this policy indicates when it was last revised.

12. Contact Us

If you have questions about this Cookie Policy or our use of cookies, please contact us:

Email: support@chengrouter.com
General Inquiries: hello@chengrouter.com
Subject Line: Cookie Policy Inquiry

For privacy-related questions, you may also contact our Data Protection Officer:

Email: dpo@chengrouter.com
Subject Line: Cookie Policy / Data Protection

Additional Resources

To learn more about cookies and online privacy, visit:

Last Updated: February 6, 2026
Version: 1.0

This Cookie Policy is part of our commitment to transparency and your privacy rights.