Cookie Policy
Effective date: April 1, 2026
1. What Are Cookies
Cookies are small text files that a website places on your device when you visit. They allow the site to remember information about your visit — such as whether you are logged in — making your next visit easier and the site more useful to you.
Cookies can be session cookies (deleted when you close your browser) or persistent cookies (retained for a set period). They can be set by the website you are visiting (first-party) or by third-party services embedded in the page (third-party).
2. Essential Cookies
| Cookie name | Type | Purpose | Retention |
|---|---|---|---|
mg_refresh | HttpOnly, Secure, SameSite=Strict | Stores your refresh token to keep you logged in across sessions. Never accessible from JavaScript. | 30 days |
The mg_refresh cookie is set by api.mindguardai.io when you log in. It is a first-party, HttpOnly cookie, meaning it cannot be read by JavaScript and is protected from cross-site request forgery attacks. It is automatically cleared when you sign out or after 30 days of inactivity.
3. Analytics Cookies
Analytics cookies are loaded only after you give consent via our cookie banner. If you reject non-essential cookies, these are never loaded.
| Cookie name | Provider | Purpose | Retention |
|---|---|---|---|
_ga | Google Analytics | Distinguishes unique users. Used to understand aggregate usage patterns — which pages are visited, how often, and from which regions. | 2 years |
_ga_* | Google Analytics | Persists session state for Google Analytics 4 (GA4). Stores a unique session identifier per measurement ID. | 2 years |
Google Analytics data is processed by Google LLC under a Data Processing Amendment. We use analytics in aggregate only — we do not use Google Analytics to identify or track individual users. IP addresses sent to Google are anonymized. Google's privacy policy is available at policies.google.com/privacy.
4. Local Storage
The following items are stored in your browser's localStorage. These are not cookies — they cannot be transmitted to a server automatically — but we disclose them here for full transparency.
| Key | Purpose | Notes |
|---|---|---|
mg_cookie_consent | Stores your cookie consent choice (accepted or rejected) so the banner does not reappear. | Persists until cleared. No expiry. |
mindguard_token | Legacy access token storage key. No longer written by current versions — any existing value is automatically migrated to in-memory storage on next login. | Will be empty on current versions. Safe to clear. |
You can clear localStorage at any time through your browser's developer tools or by clearing site data in your browser settings.
5. How to Control Cookies
Cookie banner
When you first visit MindGuard, our cookie banner lets you accept all cookies or reject non-essential ones. Your preference is saved in mg_cookie_consent. To change your choice, clear your site data (see below) and reload the page — the banner will reappear.
Browser settings
Most browsers allow you to view, block, and delete cookies through their settings. Blocking essential cookies will prevent you from staying logged in. Common browser guides:
Google Analytics opt-out
You can also install the Google Analytics Opt-out Browser Add-on to prevent your visits from being reported to Google Analytics across all websites.
For more information about our overall privacy practices, see our Privacy Policy.
6. Changes to This Policy
We may update this Cookie Policy when we change the cookies we use or in response to legal requirements. When we do, we will update the "Effective date" at the top of this page. We encourage you to check back periodically.
7. Contact
For questions about this Cookie Policy:
Email: privacy@mindguardai.io
Website: https://mindguardai.io