Cookie-Richtlinie gemass TTDSG und ePrivacy-Richtlinie
Cookies are small text files that are stored on your device when you visit a website. We also use similar technologies such as localStorage (browser-based storage) and tracking scripts. These technologies allow us to recognize your browser, remember your preferences, and understand how you use our services.
This cookie policy explains which cookies and similar technologies we use on the Chatcast website (www.chatcast.io), the brand console (console.chatcast.io), and embeddable widgets (faq-widget.chatcast.io, ai-assistant.chatcast.io). It should be read together with our Privacy Policy.
When you first visit our website, a cookie banner asks you to accept or decline non-essential cookies. Only strictly necessary technologies are used without your consent. Analytics and tracking technologies are activated only after you click “Accept”.
Your consent choice is stored in your browser's localStorage under the key cookie-consent. We do not set a cookie to track your consent — the preference is stored locally on your device only.
Legal basis: SS 25 TTDSG (Telekommunikation-Telemedien-Datenschutz-Gesetz) requires consent for accessing or storing information on your device unless it is strictly necessary for the service you requested. For analytics cookies, we rely on your explicit consent pursuant to Art. 6(1)(a) GDPR.
These technologies are essential for the functioning of our services. They cannot be disabled without breaking core functionality. No personal data is shared with third parties through these technologies.
| Name | Type | Service | Purpose | Duration |
|---|---|---|---|---|
| cookie-consent | localStorage | Website | Stores your cookie consent preference (“true” or “false”). Used to determine whether analytics scripts should load. | Until manually cleared |
| accessToken | localStorage | Brand console | JWT authentication token for the brand console. Required to keep you logged in. | Until logout |
| selectedBrand | localStorage | Brand console | Stores your active organization/brand selection so you don't have to re-select it each visit. | Until logout |
| cfaq_anonymous_token | localStorage | FAQ widget | A randomly generated anonymous identifier that enables chat history continuity in the FAQ widget on merchant storefronts. Contains no personal information (name, email, etc.). | Until manually cleared |
These technologies help us understand how visitors interact with our website so we can improve it. They are only activated after you give consent via the cookie banner.
| Name | Provider | Service | Purpose | Duration |
|---|---|---|---|---|
| _ga | Google Ireland Ltd. | Website | Google Analytics 4 (Measurement ID: G-FR9SS2ME1G). Distinguishes unique users and tracks page views, sessions, and user interactions. | 2 years |
| _ga_* | Google Ireland Ltd. | Website | Used by Google Analytics to persist session state. | 2 years |
Google Analytics data may be transferred to the United States. Google LLC is certified under the EU-US Data Privacy Framework. For more information, see Google's Privacy Policy.
Legal basis: Art. 6(1)(a) GDPR (consent).
For authenticated merchant users of the brand console, we use PostHog for product analytics. PostHog is configured in “identified only” mode — it only creates analytics profiles for logged-in users, not anonymous visitors. All data is hosted in the EU (eu.i.posthog.com).
| Name | Provider | Purpose | Duration |
|---|---|---|---|
| ph_* | PostHog Inc. (EU) | Feature usage tracking, session analytics, and product improvement for authenticated merchant users. | 1 year |
Legal basis: Art. 6(1)(f) GDPR (legitimate interest in improving the product for paying customers). PostHog does not track anonymous visitors and all data remains in the EU.
We use Vercel Analytics to collect anonymized web performance metrics such as page load times and Core Web Vitals. This service does not use cookies and does not identify individual users. It processes only aggregate performance data.
Legal basis: Art. 6(1)(f) GDPR (legitimate interest in maintaining website performance). No consent required as no personal data is processed and no information is stored on your device.
We do not use marketing, advertising, or social media cookies. The only third-party cookies on our website are from Google Analytics, and they are set only after you give consent.
When you use Google Sign-In on the brand console, Google may set cookies related to the authentication flow. These are strictly necessary for the sign-in process.
You can withdraw your cookie consent at any time using any of the following methods:
Open your browser's developer tools (usually F12), navigate to the Application or Storage tab, find localStorage for chatcast.io, and delete the cookie-consent entry. On your next visit, the cookie banner will appear again and you can decline.
In your browser settings, you can clear all cookies and site data for chatcast.io. This will remove all localStorage entries and cookies, effectively resetting your consent and logging you out of any active sessions.
Most browsers allow you to block cookies entirely or block third-party cookies. Note that blocking all cookies may impair the functionality of the brand console (authentication requires localStorage). Guides for managing cookies in common browsers:
You can also prevent Google Analytics tracking specifically by installing the Google Analytics Opt-out Browser Add-on.
When Chatcast widgets are embedded on a merchant's storefront, the widget uses a single localStorage entry (cfaq_anonymous_token) on the merchant's domain. This token is a randomly generated anonymous identifier used solely to maintain chat history continuity. It contains no personal information.
The widget does not set any cookies, does not use tracking pixels, and does not load any analytics scripts on the merchant's storefront. End-customers can delete the anonymous token at any time by clearing localStorage for the merchant's domain.
The merchant is the data controller for end-customer data on their storefront. For questions about widget data practices, please refer to the merchant's own privacy and cookie policies.
We may update this cookie policy from time to time to reflect changes in our use of cookies and similar technologies. The date of the most recent update is shown below. If we make material changes, we will reset your consent preference so that the cookie banner appears again.
For questions about this cookie policy, please contact:
Comet Rocks GmbH
Cuvrystrasse 1
10997 Berlin, Germany
Email: info@chatcast.io
Last updated: February 2025