Cookie Policy
Last Updated: February 12, 2026
1. Introduction
This Cookie Policy explains how GoMonio ("we," "our," or "us") uses cookies and similar tracking technologies when you visit our financial management platform at gomonio.com ("the Service").
Cookies are small data files that are placed on your computer or mobile device when you visit a website. They are widely used by website owners to make their websites work, provide analytics insights, and deliver personalized experiences.
This policy should be read together with our Privacy Policy and Terms of Service.
2. Types of Cookies We Use
We use different types of cookies for various purposes. Below is detailed information about each category:
2.1 Essential Cookies
These cookies are strictly necessary for the operation of our Service. They enable core functionality such as security, network management, and accessibility.
| Cookie Name | Purpose | Duration |
|---|---|---|
| gomonio.session | Manages user authentication and session state | Session (expires when browser closes) |
Legal Basis: These cookies are necessary for the performance of our contract with you and to provide the Service you have requested.
2.2 Analytics Cookies
These cookies help us understand how visitors interact with our website by collecting and reporting information anonymously. This helps us improve our Service.
| Cookie Name | Purpose | Duration |
|---|---|---|
| _ga | Google Analytics - distinguishes unique users (legacy tracking) | 2 years |
| _ga_* | Google Analytics - contains campaign, session, and traffic source data (legacy tracking) | 2 years |
| _gid | Google Analytics - distinguishes users for 24 hours (legacy tracking) | 1 day |
Google Analytics (Legacy): We use Google Analytics on a limited basis for supplementary tracking. This requires your explicit consent and can be controlled via the cookie consent banner.
Legal Basis: Consent. You can withdraw your consent at any time by adjusting your cookie preferences via the banner or browser settings.
Note about Rybbit Analytics: Our primary analytics solution (Rybbit) is cookieless and privacy-first, so it does NOT require consent and is not listed here. See Section 3.1 below for details.
2.3 Marketing and Advertising Cookies
These cookies are used to deliver advertisements more relevant to you and your interests. They also help measure the effectiveness of advertising campaigns.
| Cookie Name | Purpose | Duration |
|---|---|---|
| _gcl_au | Google Ads - conversion tracking and remarketing | 90 days |
| fr | Facebook Pixel - ad delivery and targeting | 90 days |
| _fbp | Facebook Pixel - browser identification for advertising | 90 days |
| li_sugr | LinkedIn Insight Tag - browser identification | 90 days |
| UserMatchHistory | LinkedIn Insight Tag - ad targeting and analytics | 30 days |
Legal Basis: Consent. You can withdraw your consent at any time by adjusting your browser settings or using the opt-out mechanisms provided by these services.
3. Third-Party Service Cookies
We use several third-party services that may set their own cookies when you use our Service:
3.1 Rybbit Analytics (Privacy-Focused Analytics - No Consent Required)
✓ Cookieless & Privacy-First Analytics
Rybbit operates unconditionally on our site as it is designed to be privacy-first and does not require consent under GDPR. It respects Do Not Track (DNT) headers and collects no personal data.
Rybbit is our primary analytics platform that provides GDPR-compliant, privacy-focused website analytics without collecting personal information or using invasive tracking methods. Unlike traditional analytics that require consent, Rybbit is built on legitimate interest and privacy-by-design principles.
- Duration: 1 year (_rybbit cookie for session continuity only)
- Purpose: Privacy-first usage analytics, page views, referrer data
- Data Collected: Anonymized usage patterns, no IP addresses or personal identifiers
- Privacy Features: No cross-site tracking, no data sharing, respects Do Not Track headers
- Legal Basis: Legitimate interest (GDPR Article 6(1)(f)) - privacy-compliant analytics that does not require consent
- Location: EU-hosted service ensuring data sovereignty
- Consent Required: No - loads automatically in production
3.2 Paddle (Merchant of Record & Checkout)
Paddle.com is our merchant of record and handles all payment processing, invoicing, and sales tax. When you interact with the Paddle Checkout overlay, Paddle may set cookies for session management, fraud prevention, and payment processing.
- Duration: Varies (session to 1 year)
- Purpose: Checkout session management, fraud detection, payment processing, currency and locale preferences
- Legal Basis: Necessary for contract performance
- Privacy Policy: paddle.com/privacy
3.3 Mailjet (Email Communications)
Mailjet handles our transactional and marketing emails. Email tracking pixels may be used to measure email engagement.
- Duration: Varies
- Purpose: Email delivery, open/click tracking
- Legal Basis: Legitimate interest in email delivery and engagement metrics
3.4 Hetzner (Database Hosting)
Our database hosting provider may set cookies for session management and service optimization.
- Duration: Session or short-term
- Purpose: Database connectivity, service optimization
- Legal Basis: Necessary for service provision
3.5 Coolify (Hosting Platform)
Our hosting and deployment platform may set cookies for performance monitoring and service delivery.
- Duration: Session or short-term
- Purpose: Performance monitoring, deployment management
- Legal Basis: Necessary for service provision
3.6 Featurebase (Chat, Feedback, Roadmaps & Changelogs)
Featurebase provides our customer support, feedback collection, product roadmaps, and changelog features. This service respects your marketing cookie preferences and only loads when you consent.
- Duration: Session-based and persistent (for user preferences)
- Purpose: Customer support chat, feature requests, feedback collection, roadmap viewing, and changelog updates
- Cookie Name: featurebase-* (various cookies for session and preferences)
- Data Collected: Session data, chat transcripts, feedback submissions, user preferences, authentication tokens (securely signed with JWT)
- Security: Uses secure JWT authentication for logged-in users to protect user identity and data integrity
- Language Support: Automatically adjusts based on your language setting
- Consent Management: Integrates with our cookie consent system - widget only loads when you accept marketing cookies
- Legal Basis: Consent for marketing purposes, legitimate interest for providing customer support and product feedback mechanisms
- Privacy: GDPR-compliant with data processing agreements in place
4. Managing Your Cookie Preferences
4.1 Browser Settings
Most web browsers allow you to control cookies through their settings. You can:
- View cookies stored on your device
- Delete existing cookies
- Block cookies from specific websites
- Block all cookies (may affect website functionality)
- Set cookies to be deleted when you close your browser
4.2 Browser-Specific Instructions
- Chrome: Settings > Privacy and Security > Cookies and other site data
- Firefox: Settings > Privacy & Security > Cookies and Site Data
- Safari: Preferences > Privacy > Manage Website Data
- Edge: Settings > Cookies and site permissions > Cookies and stored data
4.3 Third-Party Opt-Out Tools
You can also opt out of specific tracking services:
- Google Analytics: Google Analytics Opt-out Browser Add-on
- Google Ads: Google Ad Settings
- Facebook: Facebook Ad Preferences
- LinkedIn: LinkedIn Ad Preferences
4.4 Impact of Disabling Cookies
Please note that disabling certain cookies may impact your experience with our Service:
- Essential cookies: Disabling may prevent login and core functionality
- Analytics cookies: No impact on functionality, but helps us improve the Service
- Marketing cookies: You may see less relevant advertisements
5. Your Rights Under GDPR
If you are in the European Economic Area (EEA), you have specific rights regarding cookies and personal data:
- Right to be informed: This policy provides transparent information about our cookie use
- Right of access: You can request information about cookies and data we store
- Right to rectification: You can request correction of inaccurate data
- Right to erasure: You can request deletion of your data
- Right to withdraw consent: You can withdraw consent for non-essential cookies at any time
- Right to data portability: You can request your data in a machine-readable format
- Right to object: You can object to processing based on legitimate interests
6. Changes to This Cookie Policy
We may update this Cookie Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make changes, we will update the "Last Updated" date at the top of this policy.
We encourage you to review this Cookie Policy periodically to stay informed about how we use cookies. Continued use of our Service after any changes constitutes your acceptance of the updated policy.
7. Contact Us
If you have any questions about this Cookie Policy or our use of cookies, please contact us:
- Email: support@gomonio.com
- Support: Contact Support
For general inquiries about GoMonio, you can also visit our support page or check our frequently asked questions.