01What are cookies?
Cookies are small text files placed on your device by a website. They allow the site to recognise your device, remember preferences, and understand how the site is used. We also use similar technologies — local storage, session storage, IndexedDB, pixels and software-development-kit identifiers — and we treat them all collectively as "cookies" in this policy.
02How we use cookies
We use cookies for a small number of clearly defined purposes:
- To make the site work and remember you between visits;
- To keep you signed in to your account;
- To understand which pages and features people use, so we can improve them;
- To detect and prevent abuse, fraud and security incidents.
We do not use cookies to build advertising profiles or to share data with advertising networks.
03Categories of cookies
We classify cookies into three categories:
- Strictly necessary — required for core functions such as authentication, security, load balancing and remembering your cookie choices. These cannot be turned off without breaking the site.
- Analytics & performance — help us measure traffic and improve the product. These are optional and only set with your consent in regions where consent is required.
- Functional — remember preferences such as language, theme or which pop-ups you have dismissed.
04Cookies and similar technologies on this site
The current state of the marketing website at tryatlasagi.com is deliberately minimal. We do not embed any first-party analytics, advertising, retargeting or social-media tracking pixels. The trackers below are the ones you may encounter on the site today.
| Name | Provider | Purpose | Category | Lifetime |
|---|---|---|---|---|
__cf_bm | Cloudflare | Bot mitigation when the site is fronted by Cloudflare's CDN/security layer | Strictly necessary | 30 minutes (rolling) |
cf_clearance | Cloudflare | Confirms that the visitor passed a security challenge | Strictly necessary | Up to 30 days |
OTPless session cookies (set on tryatlasagi.com/auth-login only) | OTPless / Bullfinch Software Pvt. Ltd. | Sign-in flow on the auth page | Strictly necessary | Session |
Browser localStorage entries used by ATLAS (set inside the desktop app, not on the marketing site) | ATLAS | Local memory, session token, encrypted shared key | Strictly necessary | Until cleared |
If you sign in via a third-party identity provider (such as Google or Apple via OTPless), that provider may set cookies on its own domain, governed by its own privacy and cookie policies.
05Third-party cookies
The third-party services that may set cookies on or via this site are limited to:
- Cloudflare — DNS, CDN, bot mitigation and edge security, where enabled;
- OTPless — operated by Bullfinch Software Private Limited, India; only on the sign-in page
tryatlasagi.com/auth-login; - Hostinger International Ltd. — static-hosting provider for the auth page; may set technical cookies for load balancing.
We do not embed third-party advertising, retargeting or social-media tracking pixels on tryatlasagi.com.
06Your consent
Because this site currently uses only strictly-necessary cookies, no consent banner is shown — strictly necessary cookies are exempt from prior-consent requirements under the GDPR (Recital 30, Article 6(1)(f)) and equivalent rules. We process data on the legal bases set out in our Privacy Policy.
If we introduce optional cookies in future, we will display a consent banner that lets you accept or reject each category before any optional tracker fires, and will keep a record of your choice as required by the DPDP Act, 2023 and the GDPR.
07Managing cookies in your browser
You can also block or delete cookies in your browser settings. Note that doing so may break parts of the site that depend on strictly necessary cookies. The instructions for each major browser are at:
If we add measurement tooling in future, we will offer an opt-out mechanism (a banner toggle, a separate "Cookie settings" link, and honour browser-level Global Privacy Control signals).
08Do Not Track and Global Privacy Control
We honour the Global Privacy Control (GPC) signal where required by law. When we detect a GPC header, we treat it as an opt-out of analytics and any non-essential cookie categories. Browser-based "Do Not Track" signals do not yet have a uniform standard, but we read DNT and apply the same logic where possible.
09Changes to this policy
We update this Cookie Policy whenever the cookies we use change. We will revise the "Last updated" date and, for material changes, post a notice at the top of the page or on the site banner.
10Contact
Questions about cookies?
XAGI Labs Private Limited
CIN: U62011KL2026PTC103330 • Thiruvananthapuram, Kerala 695019, India
Grievance Officer: Dheeraj Sivakumar (DIN 11727598)
Privacy: privacy@xagilab.com
General: hello@xagilab.com