1. What cookies and similar technologies are
A cookie is a small text file that a website places on your device when you visit it. Cookies allow the site to remember information about your visit, for example to keep you logged in, remember your language, or measure how features are used. In this policy, "cookies" also covers similar technologies that have a comparable effect: local storage and session storage in your browser, pixel tags, and small identifiers stored at the device or browser level. Cookies can be set by the website you are visiting ("first-party cookies", in our case set by braincraft.live) or by a third party that the site relies on ("third-party cookies"). They can be deleted at the end of your browsing session ("session cookies") or persist on your device for a defined period ("persistent cookies").
2. Categories of cookies we use
We use cookies in three categories. Strictly necessary cookies (always active). These are required for the Service to work and cannot be turned off without breaking core functionality. They handle authentication, session management, security (CSRF protection, fraud prevention), load balancing, and remembering your language preference. Because they are necessary to provide the Service you have asked for, they do not require consent under EU law. Functional cookies (with your consent where required). These remember choices that improve your experience but are not strictly required, for example UI preferences such as a theme or sidebar state. We disable them where you have not given consent and they are not strictly necessary. Analytics cookies (with your consent). These help us understand how the Service is used so we can improve it: which features are used most, where users encounter friction, and how page performance varies. We use a privacy-friendly analytics setup that aggregates and pseudonymises data; we do not build cross-site profiles. We do not use advertising cookies, do not run cross-site behavioural advertising, and do not sell or rent your data to advertisers.
3. Specific cookies we set
The list below describes the main cookies we set. Names may evolve as the Service evolves; the categories and purposes remain stable. bc_session — strictly necessary. Stores your authenticated session token. Lifetime: session-only or up to 30 days if you select "remember me". bc_csrf — strictly necessary. Protects against cross-site request forgery attacks. Lifetime: session-only. bc_locale — strictly necessary / functional. Stores your language preference (en/fr) so the interface loads in the right language. Lifetime: 12 months. bc_workspace — strictly necessary / functional. Remembers the last Workspace you accessed so you land in the right context. Lifetime: 12 months. bc_consent — strictly necessary. Stores your cookie-consent choices so we know which non-essential categories you have allowed. Lifetime: 12 months. bc_analytics_id — analytics, set only with your consent. Pseudonymous identifier used to aggregate usage statistics; not linked to your account except to attribute aggregate signals. Lifetime: 6 months. bc_session_id (Audience) — strictly necessary. Used on the participant page to associate responses to a session and prevent abuse. No personal data is stored. Lifetime: session-only. We will keep this list up to date as cookies are added, removed, or replaced.
4. Third-party cookies
Some of the partners we rely on may set their own cookies in your browser when you use a particular feature. We work only with providers whose practices are compatible with this policy and our Privacy Policy. Stripe and PayPal (payment processing) may set cookies during a checkout session for fraud prevention and to comply with payment-network rules (such as 3-D Secure). These cookies are governed by Stripe's and PayPal's own privacy policies. Product analytics. We use a privacy-friendly analytics provider that, by default, does not set cross-site tracking cookies. If we ever introduce a tool that relies on additional analytics cookies, we will list it here and request your consent before activating it. We do not embed advertising-network tags (such as Google Ads remarketing pixels) on the Service. Third parties that you choose to integrate with BrainCraft (for example, a Learning Management System) may set their own cookies on their own pages; we do not control those cookies and recommend reviewing their privacy and cookie policies directly.
5. How to manage your cookie preferences
On your first visit, we display a cookie banner that lets you accept all categories, reject non-essential categories, or pick and choose. You can change your decision at any time through the "Cookie settings" link in the footer of every page; your latest choice replaces any previous one. You can also manage cookies directly in your browser settings. Each major browser provides controls to view stored cookies, delete them, or block them in advance: Google Chrome — Settings → Privacy and security → Cookies and other site data. Mozilla Firefox — Settings → Privacy & Security → Cookies and Site Data. Apple Safari — Preferences → Privacy → Manage Website Data. Microsoft Edge — Settings → Cookies and site permissions → Manage and delete cookies. Note that if you block strictly necessary cookies through your browser, BrainCraft may stop working correctly: in particular, you may not be able to log in, host sessions, or have your settings remembered between visits.
6. Do Not Track and Global Privacy Control
We honour browser-level signals where it is technically meaningful to do so. If your browser sends a Do Not Track ("DNT") signal, or a Global Privacy Control ("GPC") signal, we treat it as a withdrawal of consent for non-essential cookies and analytics, even if you have not used our cookie banner explicitly. Strictly necessary cookies remain active because they are required for the Service to work. You can still adjust your preferences manually through our cookie banner if you wish to allow analytics on a specific browser.
7. Changes to this Cookie Policy
We may update this policy from time to time as we change how the Service uses cookies, when we replace or add a sub-processor, or when applicable law evolves. The "Last updated" date at the top of this page reflects the most recent revision. For material changes, we will notify you in advance via an in-app notice or email if you have subscribed to policy notifications.
8. Contact
For any question about this Cookie Policy, or to exercise your rights regarding personal data we may collect through cookies, write to privacy@braincraft.live. For a fuller picture of how we handle personal data, see our Privacy Policy.
Questions about cookies, or want to adjust your preferences? Write to privacy@braincraft.live, or use the "Cookie settings" link in our footer.