§In short
- Strictly necessary items run by default. Everything else is off until you say yes.
- Optional analytics: one HubSpot cookie, set only if you accept the cookie banner.
- No advertising, remarketing, or cross-site tracking cookies — ever.
- Your decision is stored in your browser's localStorage; you can change it any time from the footer.
- We honour the Global Privacy Control (GPC) signal as an automatic decline.
§What are cookies
Cookies are small text files a site can store in your browser to remember state between page loads. Similar local-storage mechanisms (IndexedDB, the browser's localStorage, service workers) are covered under the same legal framework in most jurisdictions.
§What we actually use
We split cookies into two buckets: strictly necessary (no consent required under the EU ePrivacy directive) and optional analytics (consent required before they load).
Strictly necessary
- Consent state: your cookie banner choice is stored under
ipable.consent.v1in localStorage. Never leaves your device. - Authentication (platform only): after you log in, a short-lived session token keeps you signed in.
- CSRF protection (platform only): a rotating anti-forgery token.
- UI preferences: theme and dismissed inline notices, kept in localStorage.
Optional — analytics (HubSpot)
If you click Accept on the cookie banner, we load HubSpot's page-tracking script from js-eu1.hs-scripts.com. It sets the following cookies:
hubspotutk— a visitor identifier. Used to stitch your pageviews to a demo request if you later submit the form. Retention: 13 months.__hstc— records the timestamps of your first visit, last visit, and current session. Retention: 6 months.__hssc— session counter. Retention: 30 minutes.__hssrc— session flag indicating the browser restarted. Retention: session only.
The cookies live on the ipable.ai domain and are readable only by HubSpot's script. No data is shared with advertising networks.
§Third parties
HubSpot (Dublin, Ireland / Cambridge MA, USA) is the only third-party tracker on the site, and only after you opt in. Data flows directly from your browser to HubSpot's EU region servers (js-eu1.hs-scripts.com). HubSpot is bound by a data processing agreement with us; international transfers are covered by the EU–US Data Privacy Framework and the Standard Contractual Clauses.
Google Fonts. The landing page loads font files from fonts.gstatic.com. Fetching a font sends a request to Google, which may set or read Google's own cookies on the Google domain (not on ipable.ai). Google's use of that data is governed by its privacy policy.
If strictest compliance matters to you, we can self-host the font files — send a note to privacy@ipable.ai and we'll ship a self-hosted build.
§How to control them
- Cookie settings. Click the Cookie settings link at the bottom of every page to accept, decline, or change your mind at any time. Revoking clears the HubSpot cookies on your next page load.
- Browser-level control. Most browsers let you block cookies outright or on a per-site basis. Check Preferences → Privacy.
- Clear our stored choice. Open DevTools → Application → Local Storage → https://ipable.ai and delete the keys prefixed with
ipable.— the banner will reappear on your next visit. - Global Privacy Control. If your browser sends a GPC signal, we treat it as an automatic decline and skip the banner entirely. You can still opt in explicitly via the footer.
§Changes
If we add any cookie that is not strictly necessary, this page will be updated before the change ships, and — where required by law — a consent banner will appear before the item is set.
§Contact
Questions about cookies or browser storage? Write to privacy@ipable.ai.
This document is provided as a baseline template. Review with counsel before publishing. For questions, write to legal@ipable.ai.