Legal
Cookie Policy
Effective: 2026-05-25 · Version 2.0
1. What this Policy covers
This Cookie Policy explains how DineFlow uses cookies and similar technologies (web storage, pixels) on the dashboard at app.dineflow.ai, the marketing site at dineflow.ai, the widget embedded on customer websites, and the API at api.dineflow.ai. Read with the Privacy Policy.
2. What we use
| Category | Purpose | Examples |
|---|---|---|
| Strictly necessary | Login, session, CSRF, anti-fraud, load balancing | df_access, df_refresh, df_csrf |
| Functional | Theme, locale, recently viewed location, widget configuration cache | df_theme, df_locale, df_loc_id |
| Analytics (anonymous) | Product improvement, performance debugging, error reporting | df_anon_id (rotated 30d) |
| Advertising | Not used. | — |
We do not set third-party advertising cookies. We do not fingerprint your device. We do not share cookie data with ad networks.
3. How to control cookies
- Strictly necessary cookies cannot be disabled because the Service relies on them.
- Functional cookies can be cleared via your browser settings; you will lose theme/locale preferences and may need to re-pick a location.
- Analytics cookies can be opted out from Account → Privacy → Analytics.
- Global Privacy Control (GPC). We respect GPC signals where applicable; sending GPC opts you out of analytics.
4. The widget on customer sites
When a restaurant embeds the DineFlow widget on their website, the widget loads from widget.dineflow.ai. It uses session storage (not cookies) to maintain the chat conversation across page navigations within the same tab. It sets no third-party tracking cookies on the host site.
5. Changes
We may update this Policy. The “Effective” date at the top reflects the latest version. Material changes are notified via in-product banner.
6. Contact
Cookie questions: general@dineflow.ai.
Read with the Privacy Policy.