Comprehensive Cookie Management & Dual Jurisdiction Compliance
Effective Date: September 24, 2025
Last Updated: September 24, 2025
Version: 1.0 (GDPR & DPDP Act Compliant)
Understanding Cookies & Your Rights
What Are Cookies
Cookies are small text files stored on your device when you visit websites. They help TWIITR India Intelligence remember your preferences, maintain your login status, and provide personalized business intelligence content. As a global platform serving both European and Indian users, we comply with both GDPR (EU) 2016/679 and India’s Digital Personal Data Protection Act (DPDP) 2023 for cookie processing.
Cookie Technology Types
- HTTP Cookies: Traditional browser cookies for session and preference management
- Local Storage: HTML5 storage for enhanced user experience and offline functionality
- Session Storage: Temporary data storage cleared when browser closes
- Web Beacons: Tracking pixels for email and content engagement measurement
- JavaScript Cookies: Dynamic cookies set through client-side scripting
Cookie Classification by Storage
- Session Cookies: Automatically deleted when you close your browser
- Persistent Cookies: Remain on your device for specified periods (hours to years)
- First-Party Cookies: Set directly by TWIITR India Intelligence
- Third-Party Cookies: Set by external service providers integrated into our platform
Legal Framework for Cookie Compliance
GDPR Cookie Requirements (Articles 6, 7 & ePrivacy Directive)
Prior Consent Mandatory: Non-essential cookies are blocked until you provide explicit consent
Granular Control: You can accept specific cookie categories while rejecting others
Easy Withdrawal: Consent withdrawal must be as simple as giving consent
No Dark Patterns: We avoid manipulative design elements that pressure cookie acceptance
Legitimate Interest Limitations: Cannot be used for marketing or non-essential analytics cookies
DPDP Act Cookie Framework (Sections 5, 6, 7)
Explicit Consent Required: For cookies processing digital personal data like IP addresses, user identifiers, and behavioral data
Free and Informed Consent: Clear explanation of cookie purposes with unconditional choice
Granular Consent Options: Separate consent for different cookie purposes and categories
Multi-language Support: Cookie notices available in English and regional Indian languages
Withdrawal Rights: Immediate effect when you withdraw cookie consent
Detailed Cookie Categories & Inventory
Strictly Necessary Cookies
Legal Basis: GDPR Legitimate Interest (Article 6(1)(f)), DPDP Legitimate Use (Section 8)
Consent Required: No (essential for platform functionality)
Purpose: Enable core website functions, security, and user authentication
| Cookie Name | Purpose | Duration | Data Processed | Provider |
| twiitr_session | User authentication and session management | Session | Session ID, login status | TWIITR |
| csrf_protection | Security against cross-site request forgery | Session | Security token | TWIITR |
| load_balancer | Server distribution for optimal performance | Session | Server routing data | AWS CloudFront |
| security_check | Fraud prevention and access monitoring | 24 hours | IP address, device fingerprint | TWIITR Security |
| cookie_consent_status | Records your cookie preference choices | 12 months | Consent selections, timestamp | TWIITR |
| platform_language | Interface language and localization | 12 months | Language preference | TWIITR |
Functional Cookies
Legal Basis: GDPR Consent (Article 6(1)(a)), DPDP Explicit Consent (Section 7)
Consent Required: Yes (enhances user experience)
Purpose: Remember preferences and provide personalized functionality
| Cookie Name | Purpose | Duration | Data Processed | Provider |
| user_dashboard_prefs | Dashboard layout and widget preferences | 12 months | Layout settings, widget config | TWIITR |
| research_filters_saved | Saved search filters and content preferences | 6 months | Search parameters, industry focus | TWIITR |
| accessibility_settings | Screen reader, font size, contrast preferences | 12 months | Accessibility configurations | TWIITR |
| notification_preferences | Email and platform notification settings | 12 months | Notification choices, frequency | TWIITR |
| timezone_location | Automatic timezone detection and scheduling | 6 months | Geographic timezone data | TWIITR |
| content_personalization | Tailored content recommendations | 6 months | Content interaction history | TWIITR |
Analytics & Performance Cookies
Legal Basis: GDPR Consent (Article 6(1)(a)), DPDP Marketing/Analytics Consent
Consent Required: Yes (helps improve platform performance)
Purpose: Understand platform usage and optimize user experience
| Cookie Name | Purpose | Duration | Data Processed | Provider |
| _ga_TWIITR | Google Analytics – unique visitor identification | 2 years | Anonymous user ID, session data | Google Analytics |
| _ga_config | Google Analytics – configuration and tracking | 2 years | Site configuration, measurement ID | Google Analytics |
| _gid | Google Analytics – session-specific identification | 24 hours | Daily unique user identification | Google Analytics |
| twiitr_analytics | Internal platform usage analytics | 12 months | Page views, feature usage, time spent | TWIITR Analytics |
| performance_metrics | Page load times and technical performance | 30 days | Load speeds, error tracking | TWIITR Performance |
| content_engagement | Content interaction and engagement tracking | 6 months | Downloads, reads, shares, ratings | TWIITR Insights |
| search_analytics | Search query analysis and optimization | 3 months | Search terms, results clicked, filters | TWIITR Research |
Marketing & Advertising Cookies
Legal Basis: GDPR Explicit Consent (Article 6(1)(a)), DPDP Marketing Consent
Consent Required: Yes (explicit opt-in required)
Purpose: Deliver targeted marketing and measure campaign effectiveness
| Cookie Name | Purpose | Duration | Data Processed | Provider |
| linkedin_insights_tag | LinkedIn advertising and conversion tracking | 90 days | Professional interests, engagement | LinkedIn Marketing |
| facebook_pixel | Meta advertising optimization and remarketing | 90 days | Website behavior, conversion events | Meta Business |
| google_ads_conversion | Google Ads conversion tracking and attribution | 90 days | Ad clicks, conversion actions | Google Ads |
| twiitr_marketing_campaigns | Internal marketing campaign effectiveness | 12 months | Campaign interactions, email opens | TWIITR Marketing |
| referral_tracking | Partner and affiliate program tracking | 6 months | Referral sources, conversion attribution | TWIITR Business |
| retargeting_audience | Remarketing audience segmentation | 90 days | Page visits, content interests | TWIITR Advertising |
Third-Party Integration Cookies
Legal Basis: GDPR Consent (Article 6(1)(a)), DPDP Service Integration Consent
Consent Required: Yes (enables third-party functionality)
Purpose: Support integrated services and payment processing
| Cookie Name | Purpose | Duration | Data Processed | Provider |
| stripe_checkout_session | Secure payment processing and fraud prevention | Session | Payment data, billing information | Stripe Payments |
| razorpay_payment_id | Indian payment gateway processing | Session | Transaction details, payment status | Razorpay India |
| zendesk_chat_session | Customer support chat functionality | Session | Support conversations, user context | Zendesk Support |
| calendly_booking_widget | Consultation scheduling and booking | Session | Appointment preferences, availability | Calendly Scheduling |
| youtube_embed_cookies | Educational video playback and analytics | Persistent | Video preferences, watch history | YouTube/Google |
| social_login_tokens | LinkedIn and Google login integration | 30 days | Authentication tokens, profile data | Social Platforms |
Cookie Consent Management System
Granular Consent Controls
Our cookie consent system provides comprehensive control over your privacy preferences:
Cookie Preference Center Access:
- Floating cookie banner on first visit with “Accept All,” “Reject All,” and “Customize” options
- Footer link “Cookie Settings” accessible from any page
- Account dashboard privacy section for logged-in users
- Mobile-optimized consent interface for smartphone and tablet users
Consent Granularity Options:
- Accept All: Enables all cookie categories for full platform functionality
- Reject All: Only strictly necessary cookies (basic functionality preserved)
- Customize Selection: Granular control over each cookie category
- Essential Only: Minimal cookie usage for privacy-focused users
Consent Withdrawal Procedures
GDPR Compliance: Withdrawal as easy as giving consent with immediate effect
DPDP Compliance: Simple withdrawal mechanisms with clear confirmation
Methods to Manage Cookie Consent:
- Cookie Preference Center: Immediate effect with real-time cookie blocking/enabling
- Account Settings: Comprehensive cookie management dashboard with consent history
- Email Request: cookies@twiitr.in (processed within 48 hours)
- Browser Settings: Technical cookie deletion and blocking instructions provided below
Consent Confirmation Process:
- Email confirmation sent for major consent changes
- Consent modification history maintained in your account
- Granular timestamps for audit and compliance purposes
- Option to download consent records for personal documentation
Browser-Specific Cookie Management
Google Chrome Cookie Controls
Desktop Instructions:
- Click three-dot menu (⋮) → Settings → Privacy and Security
- Select “Cookies and other site data” → “See all cookies and site data”
- Search for “twiitr.in” to manage our specific cookies
- Use “Block third-party cookies” to prevent external tracking
- Add site exceptions for granular control
Mobile Chrome:
- Chrome app → Settings → Privacy and Security → Cookies
- Toggle “Block third-party cookies” for privacy protection
- Manage site data → Find TWIITR entries for specific control
Mozilla Firefox Cookie Management
Desktop Instructions:
- Menu button (☰) → Options → Privacy & Security
- Under Cookies and Site Data, click “Manage Data”
- Search for “twiitr.in” domains and delete selectively
- Use “Enhanced Tracking Protection” for automatic blocking
- Set custom cookie exceptions in “Manage Exceptions”
Firefox Mobile:
- Settings → Privacy → Data Management → Cookies
- Clear cookies by individual site or category
- Enable tracking protection for automatic cookie blocking
Safari Cookie Settings
macOS Safari:
- Safari menu → Preferences → Privacy tab
- Click “Manage Website Data” to view stored cookies
- Search for “twiitr” to find our platform cookies
- Use “Prevent cross-site tracking” for enhanced privacy
iOS Safari:
- Settings app → Safari → Privacy & Security
- “Block All Cookies” for maximum privacy (may break functionality)
- “Prevent Cross-Site Tracking” recommended for balanced approach
Microsoft Edge Cookie Controls
Desktop Edge:
- Settings (⋯) → Privacy, search, and services
- Clear browsing data → Cookies and other site data
- Site permissions → Cookies and site data → specific site management
- Use tracking prevention levels: Basic, Balanced, or Strict
Third-Party Cookie Provider Information
Google Services Cookie Portfolio
Services: Analytics, Ads, YouTube, reCAPTCHA, Fonts, Maps integration
Privacy Policy: https://policies.google.com/privacy
Cookie Opt-out: https://tools.google.com/dlpage/gaoptout
Ad Personalization: https://adssettings.google.com/
Data Processing: EU-US Data Privacy Framework compliant
Cookies Used:
- _ga, _ga_*: Analytics tracking and measurement
- _gid: Daily unique user identification
- __gads: Google Ads personalization and frequency capping
- NID: Google services personalization and security
Social Media Platform Cookies
LinkedIn Corporation
Privacy Policy: https://www.linkedin.com/legal/privacy-policy
Cookie Control: https://www.linkedin.com/legal/cookie-policy
Business Purpose: Professional networking, B2B advertising, career insights
Meta (Facebook) Platforms
Privacy Policy: https://www.facebook.com/privacy/policy/
Cookie Management: https://www.facebook.com/policies/cookies/
Integration Purpose: Social login, content sharing, business advertising
Payment Processor Cookies
Stripe Inc. (Global Payments)
Privacy Policy: https://stripe.com/privacy
Security Standards: PCI DSS Level 1 certified
Cookie Purpose: Fraud prevention, secure checkout, payment optimization
Razorpay (Indian Payments)
Privacy Policy: https://razorpay.com/privacy/
Regulatory Compliance: RBI guidelines, Indian banking regulations
Data Localization: Indian customer data processed within India
Business Tools & Support
Zendesk Customer Support
Privacy Policy: https://www.zendesk.com/company/privacy-policy/
Cookie Purpose: Support chat functionality, ticket management, user context
Calendly Scheduling
Privacy Policy: https://calendly.com/privacy
Integration Purpose: Consultation booking, meeting scheduling, availability management
Data Processing in Cookies
Personal Data Categories in Cookies
According to both GDPR and DPDP Act, cookies may contain personal data requiring specific protection:
Identifiers: User IDs, session tokens, device fingerprints, IP addresses
Behavioral Data: Page views, click patterns, search queries, content preferences
Authentication Data: Login status, security tokens, access permissions
Communication Data: Chat sessions, support interactions, marketing engagement
Location Data: Timezone preferences, geographic indicators (with consent)
Professional Data: Industry interests, business intelligence preferences, subscription details
Cross-Border Cookie Data Processing
For EU Users (GDPR Compliance):
- Cookie data processed in EEA, adequacy decision countries, or with appropriate safeguards
- Standard Contractual Clauses (SCCs) for third-country transfers
- Regular adequacy assessments for international cookie processors
- Right to object to international processing under Article 21
For Indian Users (DPDP Compliance):
- Preference for Indian data processing with approved international transfers
- Cross-border transfers only to government-approved countries
- Data localization for critical personal data categories when notified
- Transparent disclosure of international cookie data processing
Cookie Data Retention Schedule
Session Cookies: Immediately deleted upon browser closure
Short-term Cookies: 24 hours to 7 days for temporary functionality
Medium-term Cookies: 30 days to 12 months for user preferences
Long-term Cookies: Up to 2 years for analytics (with consent renewal)
Advertising Cookies: Maximum 90 days with regular consent verification
Automated Deletion Procedures:
- Expired cookies automatically purged from servers
- Regular cookie audit and cleanup processes
- User-initiated deletion through preference center
- Bulk deletion upon account closure or consent withdrawal
Cookie Compliance Monitoring
Regular Cookie Audit Framework
We conduct comprehensive cookie audits every quarter to ensure continued compliance:
Technical Cookie Scanning:
- Automated discovery of all cookies set across platform domains
- Third-party cookie integration monitoring and assessment
- Cookie categorization verification and legal basis validation
- Cross-border data flow analysis for international compliance
Compliance Verification Process:
- GDPR Article 7 consent requirement validation
- DPDP Act Section 7 consent mechanism verification
- Cookie consent banner testing across devices and browsers
- User experience testing for consent withdrawal processes
Consent Management Technology Stack
Cookie Consent Platform Features:
- Prior Consent Blocking: Technical prevention of non-essential cookie loading until consent
- Granular Consent Options: Category-specific and purpose-specific consent mechanisms
- Cross-Device Synchronization: Consent preferences synchronized across user devices
- Audit Trail Documentation: Detailed consent records for regulatory compliance
- Multi-language Support: Cookie notices in 23+ languages for accessibility
Integration Specifications:
- Google Consent Mode v2: Integration for analytics while respecting user choices
- TCF 2.0 Compatibility: Transparency and Consent Framework support for advertising
- API-First Architecture: Real-time consent status for all integrated services
- Privacy-by-Design: Default privacy settings with opt-in for enhanced functionality
Regulatory Compliance Documentation
GDPR Documentation Maintained:
- Records of processing activities (Article 30) including cookie-specific processing
- Data Protection Impact Assessments (DPIA) for high-risk cookie processing
- Consent documentation and withdrawal audit trails
- Cross-border transfer mechanisms and adequacy assessments
DPDP Act Documentation Maintained:
- Digital personal data processing records including cookie data categories
- Consent management system specifications and user interface documentation
- Grievance handling procedures for cookie-related complaints
- Data localization compliance verification for Indian user cookie data
Children’s Cookie Protection
Age-Specific Cookie Policies
GDPR Framework: 16-year age threshold with member state variations (13-16 years permitted)
DPDP Framework: 18-year age threshold for all digital services in India
Enhanced Protection Measures:
- Behavioral Tracking Prohibited: No profiling or behavioral analysis for users under applicable age thresholds
- Parental Consent Required: Verifiable parental consent through secure authentication methods
- Marketing Cookie Restrictions: Advertising and marketing cookies disabled for identified minors
- Educational Content Focus: Cookie usage limited to educational and safety purposes
Age Verification & Parental Controls
Verification Methods: Digital identity verification, parental email confirmation, identity document review
Parental Dashboard: Cookie consent management interface for parents/guardians
Regular Consent Review: Periodic verification of continued parental consent for minor users
Cookie-Related Contact Information
Specialized Cookie Support
Cookie Technical Support: cookies-support@twiitr.in
Response Time: 24-48 hours for technical cookie issues
Expertise: Cookie blocking problems, consent interface issues, browser compatibility
Cookie Privacy Inquiries: cookie-privacy@twiitr.in
Response Time: 72 hours for privacy-related cookie questions
Scope: Legal basis questions, consent clarifications, data processing concerns
Regional Cookie Compliance Contacts
EU Cookie Compliance Officer:
Email: eu-cookies@twiitr.in
Address: [EU Representative Address]
Specialization: GDPR cookie compliance, ePrivacy Directive requirements
India Cookie Compliance Officer:
Email: india-cookies@twiitr.in
Address: [Indian Registered Address]
Specialization: DPDP Act cookie requirements, Indian regulatory compliance
Emergency Cookie Support
Urgent Cookie Issues: urgent-cookies@twiitr.in
24/7 Availability: Critical security or privacy concerns
Escalation Process: Automatic routing to senior privacy officers for immediate resolution
Cookie Policy Updates & Versioning
Update Notification Framework
Major Changes: 30 days advance notice via email, platform announcements, and policy versioning
Minor Updates: Immediate implementation with change log documentation
Regulatory Changes: Immediate compliance implementation with user notification within 72 hours
Version Control & Change Management
Current Version: 1.0 (Initial GDPR & DPDP Dual Compliance)
Next Scheduled Review: December 2025
Change Approval Process: Legal review, privacy impact assessment, technical validation
Historical Versions: Available upon request for compliance documentation
Change Log: Detailed modification history maintained for regulatory audit purposes
Frequently Asked Questions
Essential Cookie Questions
Q: Can I use TWIITR with all cookies disabled?
A: Yes, but with limited functionality. Essential cookies enable core features like login, security, and basic navigation. Disabling all cookies may prevent account access and personalization features.
Q: How often do I need to renew cookie consent?
A: Marketing and analytics cookies require consent renewal every 12 months. You’ll receive email reminders before consent expiration with easy renewal options.
Q: Do you use cookie walls or forced consent?
A: No. We provide genuine choice with “Accept All,” “Reject All,” and “Customize” options. Platform access doesn’t require accepting non-essential cookies, though some features may be limited.
Q: Can I export my cookie consent history?
A: Yes. Logged-in users can download consent history through Account Settings → Privacy → Cookie History Export. This provides timestamps and detailed consent choices for personal records.
Technical Cookie Questions
Q: Why do some cookies reappear after deletion?
A: Essential cookies automatically regenerate for security and functionality. Marketing/analytics cookies only reappear if you’ve provided consent. Clear consent through our preference center to prevent unwanted cookie regeneration.
Q: How do you handle cookie synchronization across devices?
A: Cookie preferences synchronize across devices when logged into your TWIITR account. Anonymous browsing requires separate consent on each device for privacy protection.
This comprehensive Cookie Policy demonstrates our commitment to transparent cookie usage while complying with both GDPR and DPDP Act requirements. For additional clarification or technical support regarding cookies, contact our specialized cookie support team using the channels provided above.
Word Count: Approximately 2,800 words
SEO Keywords: cookie policy compliance, GDPR cookie consent, DPDP Act cookie requirements, cookie management platform, business intelligence cookies, international cookie compliance
