Cookie Policy
1. Introduction
Thank you for visiting letstop.io (the "Site") and using the LETSTOP mobile application (the "App"), operated by LETSTOP Ltd. ("LETSTOP," "we," "our," or "us").
We use cookies and similar technologies—including SDK storage, local storage, pixels, beacons, tags, and device identifiers (collectively, "cookies")—to operate and improve our services and to help protect both you and LETSTOP. This Cookie Policy explains what cookies are, why we use them, the types we use (including those from trusted partners), and how you can manage or disable them.
When cookies involve data that identifies or can identify you ("Personal Data"), we process it in accordance with our Privacy Notice, applying protections under the EU GDPR, UK GDPR, California CCPA/CPRA, and other relevant laws.
2. What Are Cookies?
Cookies are small text files or code snippets stored on your device when you visit a website or use a mobile app. They allow the service to recognize your device, remember your preferences, authenticate sessions, and collect analytics.
Categories of cookies:
| Criterion | Options | Explanation |
|---|---|---|
| Purpose | Strictly-Necessary & Security, Functional, Analytics & Performance, Advertising & Targeting, Social-Media Integration | Based on functionality |
| Duration | Session, Persistent | Session: temporary; Persistent: remain until expired or deleted |
| Provenance | First-Party, Third-Party | Set by LETSTOP or by integrated third parties |
3. Why We Use Cookies
| Category | Purpose (examples) | Legal Basis |
|---|---|---|
| Strictly-Necessary & Security | Authenticate sessions, enable APIs, load balance, block bots | Legitimate interest; contract performance |
| Functional | Store preferences, language, in-App states, cookie choices | Legitimate interest; consent where required |
| Analytics & Performance | Understand usage, A/B testing, feature adoption | Consent |
| Advertising & Targeting | Measure campaigns, limit frequency, personalize (Web only) | Consent |
| Social-Media Integration | Enable login/sharing with platforms | Consent; contract performance |
Note: We do not serve behavior-based ads in the mobile App. In the EU/UK, Advertising cookies are disabled by default.
4. Detailed Cookie & SDK List
4.1 Strictly-Necessary & Security
| Name / ID | Domain / SDK | Purpose | Expiry | Type |
|---|---|---|---|---|
| ls_session_id | letstop.io | Maintains logged-in session | Session | First-party |
| XSRF-TOKEN | letstop.io | CSRF protection | Session | First-party |
| cf_clearance | cloudflare.com | Security check passed | 1 year | Third-party |
| __cf_bm | cloudflare.com | Bot management | 30 min | Third-party |
| firebase_instance_id | Firebase SDK (App) | Push routing ID | Persistent | First-party |
4.2 Functional
| Name / ID | Domain / SDK | Purpose | Expiry | Type |
|---|---|---|---|---|
| ls_language | letstop.io | Language setting | 6 months | First-party |
| ls_theme | letstop.io | UI theme preference | 6 months | First-party |
| adjust_session | Adjust SDK (App) | Attribution tracking | 14 days | Third-party |
4.3 Analytics & Performance
| Name / ID | Domain / SDK | Purpose | Expiry | Type |
|---|---|---|---|---|
| _ga, _ga_<ID> | letstop.io | Google Analytics user ID | 13 months | Third-party |
| _gid | letstop.io | Google Analytics daily ID | 24 hours | Third-party |
| _gat | letstop.io | Throttles GA requests | 1 min | Third-party |
| _hjSessionUser_<ID> | Hotjar | UX heatmaps (anonymized) | 365 days | Third-party |
| amplitude_id_<APIKEY> | Amplitude SDK (App) | Funnel & usage tracking | 13 months | Third-party |
4.4 Advertising & Targeting (Web only)
| Name | Domain / Provider | Purpose | Expiry |
|---|---|---|---|
| _fbp | Facebook Pixel | Paid campaign measurement | 90 days |
| li_fat_id | B2B ad attribution | 30 days | |
| tt_pixel_id | TikTok | Influencer campaign tracking | 13 months |
5. Mobile App Identifiers
The App may access:
- IDFA (iOS): Only if you opt-in via App Tracking Transparency
- AAID (Android): Subject to your system-level consent
If you deny access, we use fallback identifiers that do not track you personally.
6. Managing Cookies & Mobile Identifiers
6.1 Web
On first visit, you'll see a cookie banner where you can:
- Accept all cookies
- Reject non-essential cookies
- Customize preferences per category
Change settings anytime via "Cookie Settings" in the footer. To manage cookies manually:
Note: Blocking Strictly-Necessary cookies may break login and core features.
6.2 Mobile
- iOS: Settings → Privacy & Security → Tracking → Toggle LETSTOP
- Android: Settings → Privacy → Ads → Delete Advertising ID
Clear App data in OS settings to reset SDK storage.
7. Legal Bases & Transfers
- Strictly-Necessary: Legitimate interest; contract performance
- Functional, Analytics, Advertising, Social-Media: Consent (Art. 6(1)(a) GDPR), revocable anytime
For international data transfers, we use Standard Contractual Clauses, adequacy decisions, and certified vendors (e.g., ISO 27001, SOC 2).
8. Third-Party Links & Embeds
The Site and App may embed third-party content (e.g., X posts, YouTube). Those providers may set their own cookies. Please review their respective cookie policies.
9. Updates
We may update this Cookie Policy for legal, technical, or business reasons. When we do, we update the "Last updated" date and may ask for renewed consent if required.
10. Contact Us
For any questions about our cookie practices, contact:
Email: privacy@letstop.io
Mail: LETSTOP Ltd.,
Quijano Chambers
P.O. Box 3159
Road Town, Tortola
British Virgin Islands