Early Alpha: Memoato is in early development. Features may be incomplete or change frequently.

Memoato Logo
memoato
Follow
Contact
Lab
GDPR compliant & minimal usage

Cookie Policy

We believe in minimal data collection. Our cookie usage is limited to essential session management only—no tracking, no advertising, no unnecessary data collection.

Last updated: June 16, 2025

What cookies we use

Simple answer: Only the absolute minimum required for the service to function.

Essential Only

We use only essential session cookies required for authentication and basic functionality. No optional or tracking cookies.

GDPR Compliant

Our cookie usage fully complies with EU GDPR regulations and requires no consent banners for essential cookies.

No Tracking

Zero advertising cookies, analytics cookies, or third-party tracking. Your browsing behavior is not monitored or recorded.

How we use cookies

Memoato uses cookies sparingly and only for essential functionality. We believe in privacy-first design, which means collecting the absolute minimum data necessary to provide our service.

Essential Session Cookies

These cookies are necessary for the basic functioning of our service and cannot be disabled:

  • Session Authentication: Temporary token to keep you logged in during your session
  • Security Tokens: CSRF protection to prevent malicious attacks
  • Preference Storage: Remember your basic app settings during your session

Important: These session cookies are automatically deleted when you close your browser. We do not store any persistent cookies that track you across sessions or websites.

What we DON'T use

No Advertising Cookies

  • • No Google Ads tracking
  • • No Facebook Pixel
  • • No retargeting cookies
  • • No advertising network integrations

No Analytics Cookies

  • • No Google Analytics
  • • No third-party analytics trackers
  • • No behavioral tracking
  • • No cross-site tracking

No Social Media Cookies

  • • No social media widgets
  • • No "Like" or "Share" buttons with tracking
  • • No social login tracking
  • • No embedded social content

No Third-Party Cookies

  • • No external service trackers
  • • No CDN tracking cookies
  • • No marketing automation cookies
  • • No affiliate tracking

Technical cookie details

Cookie NamePurposeDurationType
next-auth.session-tokenAuthentication session managementSession (deleted on browser close)Essential
next-auth.csrf-tokenCross-site request forgery protectionSession (deleted on browser close)Essential
memoato-preferencesStore user interface preferencesSession (deleted on browser close)Essential

Cookie Attributes: All our cookies are set with secure flags, SameSite=Strict policy, and HttpOnly where applicable to maximize security and prevent cross-site tracking.

Legal compliance

GDPR Compliance (EU)

  • • Essential cookies only (Article 5, GDPR)
  • • No consent required for strictly necessary cookies
  • • Full data transparency and user control
  • • Right to erasure and data portability

Other Regulations

  • • CCPA compliant (California, USA)
  • • PIPEDA compliant (Canada)
  • • ePrivacy Directive compliant (EU)
  • • LGPD compliant (Brazil)

No Consent Banner: Because we only use strictly necessary cookies, we don't need those annoying cookie consent banners. Your experience is cleaner and more private.

Managing cookies

While our cookies are essential for the service to function, you have several options for managing them:

Browser Settings

  • • Block all cookies (will prevent login)
  • • Delete cookies after each session
  • • View and manage individual cookies
  • • Configure cookie preferences per site

Account Settings

  • • Log out to clear session cookies immediately
  • • Use incognito/private browsing mode
  • • Clear browser data regularly
  • • Configure session timeout preferences

Important Note: If you disable essential cookies, you won't be able to log in or use Memoato's core features. Our service requires these minimal cookies to function securely.

Data controller information

Service Provider

Company: HILLS Lab d.o.o.

Registration: Croatia

VAT ID: HR48104693060

Website: hills-lab.hr

Product: Memoato Platform

EU Business: Yes (Croatia)

GDPR Compliance: Fully compliant

Cookie Philosophy: Minimal essential usage only

EU Supervisory Authority

As a Croatian-registered company, our primary data protection authority is:

Croatian Personal Data Protection Agency (AZOP)
azop.hr

You may also contact your local EU data protection authority for cookie-related complaints.

Questions about cookies?

Get in touch

Have questions about our cookie usage or need clarification about our data practices?

Privacy Team: privacy@memoato.com

Data Protection Officer: dpo@hills-lab.hr

General Support: support@memoato.com

Policy updates

If we ever need to change our cookie usage (which is unlikely given our minimal approach):

  • • We'll notify users via email and platform notice
  • • Any new non-essential cookies will require explicit consent
  • • We'll update this policy with clear change notifications
  • • Users can always opt out or delete their accounts
  • • Changes will comply with EU GDPR notification requirements