Cookie Policy

Last Updated: December 2, 2025

1. Introduction

This Cookie Policy explains how Rapid Risk Review ("RRR," "we," "our," "us") uses cookies and similar tracking technologies on our website and services (collectively, the "Service"). This policy should be read in conjunction with our Privacy Policy.

2. What Are Cookies?

Cookies are small text files that are placed on your device (computer, smartphone, tablet, or other electronic device) when you visit a website. Cookies allow websites to recognize your device and store information about your preferences or past actions.

We use both session cookies (which expire when you close your browser) and persistent cookies (which remain on your device until deleted or until they expire).

3. Types of Cookies We Use

3.1 Strictly Necessary Cookies

These cookies are essential for the operation of our Service and enable you to use its features. Without these cookies, core functionality like authentication, security, and session management would not be possible.

Examples:

• Authentication tokens (Supabase Auth)
• Session identifiers
• Security cookies for fraud prevention
• Cookie consent preferences

Legal Basis: These cookies are necessary for the performance of our contract with you.

3.2 Analytics and Performance Cookies

These cookies help us understand how visitors interact with our Service by collecting and reporting information anonymously. This helps us improve the Service and user experience.

Examples:

• Google Analytics or similar analytics tools
• Page view tracking
• User journey and interaction analytics
• Performance monitoring and error tracking

Legal Basis: Legitimate interest in improving our Service and understanding user behavior.

3.3 Functional Cookies

These cookies enable enhanced functionality and personalization, such as remembering your preferences, language settings, or recent searches.

Examples:

• User preferences (theme, language, display settings)
• Recent vendor searches
• Dashboard customization settings
• Notification preferences

Legal Basis: Legitimate interest in providing enhanced user experience.

3.4 Targeting and Advertising Cookies

Currently, we do not use targeting or advertising cookies. If we implement such cookies in the future, we will update this policy and obtain your explicit consent where required by law.

4. Third-Party Cookies

We may use services from third-party providers that set cookies on our behalf. These third parties have their own privacy and cookie policies:

• Google Analytics: Used for website analytics and usage statistics. Google Privacy Policy
• Supabase: Used for authentication and backend services. Supabase Privacy Policy
• Stripe: Used for secure payment processing and fraud prevention. Stripe Privacy Policy
• Google reCAPTCHA Enterprise: Used for bot protection and security. Google Privacy Policy

5. How We Use Cookies

We use cookies to:

• Authenticate users and maintain secure sessions
• Remember your preferences and settings
• Analyze how users interact with our Service to improve functionality
• Monitor and enhance the performance and security of our Service
• Prevent fraud and abuse
• Provide personalized experiences based on your usage patterns

6. Managing Your Cookie Preferences

6.1 Browser Settings

Most web browsers allow you to control cookies through their settings. You can set your browser to:

• Block all cookies
• Block third-party cookies only
• Delete cookies when you close your browser
• Notify you when a website sets a cookie

To learn more about cookie controls, visit your browser's help documentation:

• Google Chrome
• Mozilla Firefox
• Apple Safari
• Microsoft Edge

⚠️ Important Note: If you block or delete strictly necessary cookies, some features of our Service may not function properly. You may not be able to log in, access your account, or use certain functionality that requires authentication.

6.2 Opt-Out Tools

You can opt out of analytics tracking by:

• Installing the Google Analytics Opt-out Browser Add-on
• Using Do Not Track (DNT) browser settings (support varies by provider)

6.3 Mobile Devices

Mobile devices have their own cookie and tracking settings. Please refer to your device manufacturer's instructions for managing cookies and tracking preferences on mobile devices.

7. Cookie Duration

Cookies have different lifespans:

Session Cookies: Expire when you close your browser. Used primarily for authentication and security.

Persistent Cookies: Remain on your device for a set period (ranging from hours to years). Used for preferences, analytics, and enhanced functionality. Most of our persistent cookies expire within 1-2 years.

8. Do Not Track Signals

Some browsers support "Do Not Track" (DNT) signals. Currently, there is no industry-wide standard for responding to DNT signals. We do not currently respond to DNT signals, but we provide you with other options to control tracking as described in this policy.

9. Updates to This Cookie Policy

We may update this Cookie Policy from time to time to reflect changes in our practices, technologies, legal requirements, or for other operational reasons. We will post the updated policy on this page with a new "Last Updated" date.

Your continued use of the Service after such changes constitutes your acceptance of the updated Cookie Policy.

10. Contact Us

If you have questions or concerns about our use of cookies, please contact us:

Privacy Team
Rapid Risk Review
Email: privacy@rrr.dev