Cookie Policy

This Cookie Policy (the “Cookie Policy”) describes how Shiori uses cookies and similar technologies (pixels, local storage, SDKs, device identifiers) on SHIROI.io, https://docs.shiroi.io, and in related web interfaces and APIs (collectively, the “Services”). The Cookie Policy is to be read together with our Privacy Policy.

1. What Are Cookies

Cookies are small files the browser stores on your device. Pixels/tags are mini-scripts to measure interactions. Local/session storage are browser memory areas. SDKs and device identifiers are used in mobile and embedded environments. All of the foregoing are referred to as “cookies.”

2. How and Why We Use Cookies

We use cookies for:

• operation of the Services: authentication, routing, load balancing, security, anti-bot protection;

• providing features and remembering settings: language, interface preferences;

• performance and stability analytics: error diagnostics, traffic measurement, aggregated metrics;

• abuse prevention and API integrity.

We do not use cookies for cross-context behavioral advertising. If practices change, we will update the Policy and consent banner.

3. Categories of Cookies

• Strictly necessary. Required for core operation, login, and security. In the EEA/UK, consent is not required under ePrivacy.

• Functional. Remember choices and settings. Consent required.

• Analytics and performance. Measure usage and stability. Consent required.

• Security and abuse prevention. Rate limiting, threat signals. Typically classified as strictly necessary.

4. Third-Party Providers

We may use third-party hosting, security, and analytics providers that set their own cookies. The current list of providers and purposes is available in the cookie-preferences panel: [link/button “Cookie Settings”].

5. Consent and Management

• In the EEA/UK, non-essential cookies are set only after your consent via banner/panel.

• You may change your choice or withdraw consent at any time via the “Cookie Settings” link/button in the footer or profile settings.

• We honor Global Privacy Control; when active, non-essential cookies are not set.

6. Browser/Device Controls

You can delete or block cookies in browser settings. This may reduce functionality. In mobile environments, control of SDKs and identifiers is available via system settings (e.g., limit tracking).

7. Cookie Lifetimes

Durations depend on category and provider. Indicatively: strictly necessary — session to 12 months; functional — up to 12 months; analytics — up to 24 months in aggregated form. Specific lifetimes per cookie are shown in the cookie-preferences panel.

8. Cookie List

A list of specific cookies, purposes, and lifetimes is published and kept current in the cookie-preferences panel. Examples of in-Service cookies may include: service session IDs, anti-bot tokens, performance identifiers, and interface-preference IDs.

9. Legal Bases and Compliance

• Strictly necessary cookies are set without consent as objectively necessary to provide the requested service; legal basis — legitimate interests.

• Functional and analytics cookies are used with your consent and can be disabled at any time.

• Under CCPA/CPRA, we do not “sell” or “share” personal information for cross-context advertising. If that changes, a “Do Not Sell or Share My Personal Information” link will appear, and we will honor GPC.

• In other U.S. states, we implement opt-out rights from targeting/profiling where required via the panel.

10. Changes

We may update the Cookie Policy and the “Last Updated” date. Material changes will be accompanied by notice in the Services and/or an updated banner.

11. Contacts

Cookie questions: [email protected].