1. What cookies are
Cookies are small text files a website stores in your browser so it can remember you between pages and visits. Closely related is browser local storage, which works similarly but is never sent to the server. This policy covers both.
2. Essential cookies (always on)
These are required for the site to function and cannot be switched off. Session cookie — keeps you signed in to your account while you use the app; deleted or expires shortly after your session ends. CSRF/XSRF token — a security cookie that protects every form you submit from cross-site request forgery. Cookie-consent state — remembers that you have seen the cookie notice. Without these the login, billing and dashboard simply do not work.
3. Preference cookies
Language preference (rb_lang) — when you pick a language from the language switcher we store your choice for about one year so the site greets you in the right language next visit. Browser local storage — a few features remember harmless state on your own device, for example your progress in the free Local SEO Checklist tool. This data never leaves your browser.
4. Analytics & advertising tags (only when enabled, public site only)
The public marketing site can load Google Analytics 4 and Google Ads conversion tags when we have enabled them. These set Google cookies (such as _ga) to measure visits and ad conversions in aggregate. They load only on public marketing pages — never inside the signed-in app — and we do not run third-party advertising networks, remarketing pixels, or cross-site tracking beyond these Google tags. If a tag is not configured, no analytics cookie is set at all.
5. Third-party cookies during checkout and sign-in
Payments — Stripe (and Razorpay for customers in India) process payments on their own secure pages and set their own cookies for fraud prevention; we never see or store your card details. Google sign-in/OAuth — when you connect your Google Business Profile, Google sets its own cookies on google.com domains as part of its standard sign-in flow. Both are governed by those providers' own policies.
6. How to control cookies
Every modern browser lets you view, block, and delete cookies in its settings (usually under Privacy & Security). You can also use private/incognito windows, which discard cookies when closed. Blocking essential cookies will break sign-in and checkout; blocking analytics cookies has no effect on functionality. To opt out of Google Analytics across all sites you can install Google's official opt-out browser add-on.
7. Changes & contact
If our cookie usage changes — for example a new analytics provider — we will update this page and the "last updated" date above. Questions about cookies or privacy: support@growmelocally.com. See also our Privacy Policy and GDPR Compliance pages.