Cookie Policy

Last Updated: January 21, 2026

This Cookie Policy explains how SuiteOp Inc. ("SuiteOp", "we", "us", or "our") uses cookies and similar tracking technologies on our website suiteop.com and web application app.suiteop.com (collectively, the "Services").

By using our Services, you consent to the use of cookies as described in this Policy. You can manage your cookie preferences at any time using the settings described below.

1. What Are Cookies?

Cookies are small text files that are placed on your device (computer, smartphone, or tablet) when you visit a website. They are widely used to make websites work more efficiently and to provide information to website owners.

Types of cookies we use:

• Session Cookies: Temporary cookies that expire when you close your browser.
• Persistent Cookies: Cookies that remain on your device for a set period or until you delete them.
• First-Party Cookies: Set by SuiteOp directly.
• Third-Party Cookies: Set by third-party services we use (e.g., analytics providers, marketing tools).

2. How We Use Cookies

We use cookies for the following purposes:

2.1 Essential Cookies (Strictly Necessary)

These cookies are required for the Services to function and cannot be disabled.

• cf_clearance - Cloudflare bot detection and DDoS protection (1 year, Cloudflare)
• __cf_logged_in - Cloudflare authentication state (1 month, Cloudflare)
• CF_VERIFIED_DEVICE_* - Device verification for secure access (2 years, Cloudflare)
• _cfuvid - Unique visitor identifier for Cloudflare security (Session, Cloudflare)
• Session cookies (Bubble.io) - Maintains your login session on app.suiteop.com (Session, SuiteOp/Bubble.io)

2.2 Analytics Cookies (Performance)

These cookies help us understand how visitors interact with our website by collecting information about usage patterns.

Google Analytics:

• _ga - Distinguishes unique users (2 years, Google Analytics)
• ga* (e.g., _ga_EBD66KMRBS, _ga_SPTC7NKGBK) - Stores and tracks page views and user sessions for specific properties (2 years, Google Analytics)
• _gid - Distinguishes unique users for Google Analytics (24 hours, Google Analytics)
• _gcl_au - Google Ads conversion tracking (90 days, Google Ads)

Cloudflare Analytics (Zaraz):

• cfz_google-analytics_v4 - Cloudflare-managed Google Analytics 4 data (engagement, session tracking) (1 year, Cloudflare Zaraz)
• cfzs_google-analytics_v4 - Session-specific Google Analytics 4 data (pageviews, conversions) (Session, Cloudflare Zaraz)
• cfz_adobe - Adobe Analytics tracking via Cloudflare (1 year, Cloudflare Zaraz)
• cfz_amplitude - Amplitude analytics event tracking (1 year, Cloudflare Zaraz)
• cfzs_amplitude - Session-specific Amplitude data (Session, Cloudflare Zaraz)
• cfz_facebook-pixel - Facebook Pixel tracking data (1 year, Cloudflare Zaraz)

Segment (Analytics.js):

• ajs_anonymous_id - Anonymous user identifier for Segment analytics (1 year, Segment)
• ajs_user_id - Authenticated user identifier for Segment analytics (1 year, Segment)

Adobe Analytics:

• AMCV_* - Adobe Marketing Cloud visitor ID (2 years, Adobe)
• AMCVS_* - Session indicator for Adobe Marketing Cloud (Session, Adobe)
• kndctr_*_identity - Adobe Experience Cloud identity (1 year, Adobe)

Sentry.io (Error Monitoring):

• AMP_* - Amplitude analytics integration for error tracking (1 year, Sentry.io)

Data collected: Page views, time on site, bounce rate, device type, browser type, referring site, user interactions, error logs (anonymized where possible).

2.3 Marketing & Advertising Cookies

These cookies are used to deliver relevant advertisements, track campaign performance, and manage customer engagement. These cookies are set based on your consent preferences.

HubSpot (Marketing Automation & CRM):

• __hssc - Tracks sessions for visitor analysis (30 minutes, HubSpot)
• __hssrc - Determines if the visitor has restarted their browser (Session, HubSpot)
• __hstc - Tracks visitors across sessions for analytics (6 months, HubSpot)
• hubspotutk - Tracks visitor identity for form submissions and analytics (6 months, HubSpot)
• hjSessionUser* - Hotjar session user ID for heatmaps and behavior analytics (1 year, HubSpot/Hotjar)

LinkedIn (B2B Marketing):

• bcookie - LinkedIn browser ID for cross-domain tracking (1 year, LinkedIn)
• _guid - LinkedIn user identifier for analytics (3 months, LinkedIn)
• AnalyticsSyncHistory - LinkedIn Insight Tag for ad conversion tracking (30 days, LinkedIn)
• aam_uuid - Adobe Audience Manager unique ID for LinkedIn (1 month, LinkedIn)
• at_check - LinkedIn check for ad targeting (Session, LinkedIn)
• __cf_bm (LinkedIn domain) - Cloudflare bot management for LinkedIn services (30 minutes, Cloudflare/LinkedIn)

Google Ads & DoubleClick:

• ADS_VISITOR_ID - Google Ads visitor identifier (1 month, Google)
• _ps* - Google DoubleClick referral tracking (e.g., __ps_did, __ps_r) (6 months, DoubleClick)
• ar_debug - Google DoubleClick debug mode (1 month, DoubleClick)

Iterable (Email Marketing):

• iterableEndUserId - Tracks email campaign engagement (1 year, Iterable)

2.4 Functional Cookies

These cookies enable enhanced functionality and personalization.

Intercom (Customer Messaging):

• intercom-device-id-* - Device identifier for Intercom messaging widget (9 months, Intercom)
• intercom-id-* - User identifier for Intercom chat history (9 months, Intercom)
• intercom-session-* - Active Intercom session for chat support (7 days, Intercom)

Bizible (Marketing Attribution):

• _biz_uid - Bizible unique visitor identifier (1 year, Bizible)
• _biz_nA - Bizible pageview counter (1 year, Bizible)
• _biz_flagsA - Bizible tracking flags (1 year, Bizible)
• _biz_pendingA - Bizible pending attribution data (1 year, Bizible)

Other Functional:

• _reb2butk - Remembers user preferences (9 months, SuiteOp)

2.5 Third-Party Authentication Cookies

When you log in using Google or access Google services integrated in our application, Google may set authentication cookies.

• __Secure-1PSID, __Secure-3PSID - Google account authentication (2 years, Google)
• __Secure-1PAPISID, __Secure-3PAPISID - Google API authentication (2 years, Google)
• __Secure-1PSIDCC, __Secure-3PSIDCC - Google security tokens (1 year, Google)
• __Secure-1PSIDTS, __Secure-3PSIDTS - Google session timestamps (1 year, Google)
• __Secure-ENID - Google encrypted user ID (1 year, Google)
• APISID, HSID - Google API session identifiers (2 years, Google)
• AEC - Google security token for ad fraud prevention (6 months, Google)

Note: These cookies are set by Google and are subject to Google's Privacy Policy: policies.google.com/privacy

3. Your Cookie Choices

3.1 Managing Cookie Preferences

Via Cookie Consent Banner (suiteop.com)

When you first visit our marketing website, you will see a cookie consent banner. You can:

• Accept All: Consent to all cookies (Essential, Analytics, Marketing, Functional).
• Reject All: Only allow Essential cookies (the site may have limited functionality).
• Customise: Choose which categories of cookies to accept.

Your preferences are stored in browser storage and respected across your sessions.

Via Browser Settings

Most browsers allow you to:

• View and delete cookies
• Block third-party cookies
• Block all cookies (note: this may break website functionality)

Browser-specific instructions:

• Chrome: support.google.com/chrome/answer/95647
• Firefox: support.mozilla.org/kb/enhanced-tracking-protection-firefox-desktop
• Safari: support.apple.com/guide/safari/manage-cookies-sfri11471
• Edge: support.microsoft.com/microsoft-edge/delete-cookies-in-microsoft-edge-63947406-40ac-c3b8-57b9-2a946a29ae09

3.2 Opting Out of Third-Party Cookies

Google Analytics: Install the Google Analytics Opt-Out Browser Add-on.

Google Ads: Manage ad personalization at adssettings.google.com.

LinkedIn Ads: Opt out of LinkedIn ad tracking at linkedin.com/psettings/guest-controls.

Do Not Track (DNT): We respect the cookie preferences you set via our cookie banner. However, there is currently no industry standard for responding to browser DNT signals.

4. Cookies and Personal Data (GDPR)

4.1 Legal Basis for Cookie Use

• Essential Cookies: Legitimate interest (necessary for the website to function and provide security).
• Analytics Cookies: Consent (you can opt out via cookie banner or browser settings).
• Marketing Cookies: Explicit consent (you can opt out via cookie banner).
• Functional Cookies: Consent (you can opt out).

4.2 Data Retention

• Cookie data is retained for the duration specified in the tables above.
• Analytics data (Google Analytics, HubSpot) is automatically anonymized and retained for up to 26 months.
• Marketing data (LinkedIn, Iterable) is retained according to each provider's privacy policy.

4.3 Your Rights

Under GDPR, you have the right to:

• Withdraw consent to non-essential cookies at any time.
• Request access to data collected via cookies.
• Request deletion of cookie-related data.
• Object to processing based on legitimate interest.

To exercise these rights, contact us at [email protected].

5. Third-Party Cookie Providers

The following third-party services set cookies on our behalf:

• Cloudflare - CDN, security, analytics orchestration
  Privacy Policy: cloudflare.com/privacypolicy
• Google Analytics - Website analytics
  Privacy Policy: policies.google.com/privacy
• Google Ads - Advertising and conversion tracking
  Privacy Policy: policies.google.com/technologies/ads
• HubSpot - Marketing automation, CRM, chat
  Privacy Policy: hubspot.com/legal/privacy-policy
• Segment - Analytics data aggregation
  Privacy Policy: segment.com/legal/privacy
• Intercom - Customer messaging and support
  Privacy Policy: intercom.com/legal/privacy
• LinkedIn - B2B marketing and analytics
  Privacy Policy: linkedin.com/legal/privacy-policy
• Adobe Analytics - Marketing analytics
  Privacy Policy: adobe.com/privacy/policy.html
• Sentry.io - Error monitoring and performance
  Privacy Policy: sentry.io/privacy
• Iterable - Email marketing campaigns
  Privacy Policy: iterable.com/trust/privacy-policy
• Bizible - Marketing attribution
  Privacy Policy: bizible.com/privacy-policy

6. Other Tracking Technologies

In addition to cookies, we may use:

• Local Storage / Session Storage: Similar to cookies but stored in your browser's local storage. Used for application state management on app.suiteop.com (powered by Bubble.io).
• Web Beacons / Pixels: Small transparent images used to track email opens (e.g., in transactional emails sent via Sendgrid) and ad conversions (LinkedIn Insight Tag, Facebook Pixel).
• Cloudflare Zaraz: A server-side tag management system that loads third-party tools (analytics, marketing) without directly setting browser cookies in some cases.

These technologies are subject to the same principles as cookies outlined in this Policy.

7. Cookies Set by Domain

Summary:

• suiteop.com (Marketing Website): Essential, Analytics, Marketing, and Functional cookies are set based on your consent preferences.
• app.suiteop.com (Application): Primarily Essential (authentication, security) and limited Analytics cookies for product improvement. Marketing cookies from suiteop.com may carry over if you navigate from the marketing site.

8. Updates to This Policy

We may update this Cookie Policy from time to time to reflect changes in our practices, technologies, or legal requirements. When we make significant changes, we will:

• Update the "Last Updated" date at the top of this page.
• Notify you via email or a prominent notice on our website.
• Request renewed consent if required by law (e.g., for new types of cookies or purposes).

9. Contact Us

If you have questions about our use of cookies, please contact us:

• Email: [email protected]
• Address: 2093 Philadelphia Pike, #5505, Claymont, DE 19703

For more information about how we handle your personal data, please see our Privacy Policy.