Cookies are small text files stored on a browser or device when a user visits a website or uses an online service. Cookies may be used to recognize a browser or device, maintain a session, remember settings, support security, or collect usage information.

We may also use similar technologies, such as web beacons, pixels, local storage, browser storage, software development kits, session tokens, and related identifier technologies that perform comparable functions. In this Cookie Policy, we may use the term "cookies" as shorthand for cookies and these similar technologies unless the context requires a more specific distinction.

Depending on the product surface and deployment, Klarefi may use the following categories of cookies or similar technologies:

• strictly necessary cookies;
• analytics or performance cookies;
• functional cookies;
• advertising or targeting cookies, if used; and
• product-session, authentication, and security-related technologies in authenticated or hosted product experiences.

Not every category is necessarily used in every region, browser, customer deployment, or product surface.

Klarefi may use strictly necessary cookies or similar technologies where needed to operate the website, authenticated dashboard, or hosted intake portals. These technologies may be used for login and session continuity, authentication, organization or tenant context, security controls, fraud, abuse, and misuse prevention, request integrity, and maintaining technically required workflow state.

In hosted intake portals, these technologies may also be used to maintain secure access between steps, preserve in-progress submission state, reduce repeated prompts, and support document upload continuity where required to render the service correctly.

Where permitted by applicable law, strictly necessary cookies may be set without opt-in because the relevant service cannot function properly without them.

Klarefi may use analytics or performance technologies to understand website traffic and usage patterns, measure page or feature performance, improve navigation and onboarding, diagnose issues, and monitor aggregate service reliability trends.

Specific analytics or measurement tools may vary by deployment. When non-essential analytics technologies are used, Klarefi will provide any consent or opt-out controls required for the relevant product surface or region.

Klarefi may use functional cookies or similar technologies to remember non-essential settings and improve usability. This may include language or regional settings, interface preferences, white-label or hosted portal presentation settings, and similar convenience features.

If a user blocks these technologies, some features may become less convenient or may not retain selected preferences, but core access may still be available depending on the context.

Klarefi does not currently rely on advertising or targeting cookies unless such technologies are specifically deployed and disclosed. If Klarefi later uses advertising, retargeting, conversion-tracking, or similar technologies, Klarefi will provide the notices and choices required for those technologies.

Jurisdiction-specific consent or opt-out requirements may apply if Klarefi adopts these technologies in the future.

When users access the authenticated dashboard, Klarefi may use cookies or similar technologies for authentication, sign-in continuity, security checks, organization context, access control, and fraud prevention. These technologies help confirm that a user is authorized to access a specific account or organization and help the service operate reliably and securely.

Some identity or session technologies may be provided by external service providers or by successor providers depending on the deployment. Klarefi may also use associated identifiers, service logs, or similar records for auditability, reliability, account administration, and security rather than for advertising.

Hosted intake portals are distinct from the public website and the authenticated dashboard. Klarefi may use cookies or similar technologies in hosted intake portals to maintain secure session continuity, confirm that a user accessed a valid intake session link, preserve in-progress intake progress, support uploaded document continuity, and maintain secure access between steps.

These technologies may also support security, anti-fraud, abuse prevention, and request validation. In the current implementation, Klarefi may use a secure HTTP-only hosted-intake session cookie or similar session mechanism. Klarefi may later refine or replace this implementation with successor technologies while keeping the same functional purpose.

Klarefi may use third-party service providers for analytics, authentication, infrastructure, security, error monitoring, masked session replay, support, embedded content, communications, or similar functions. These providers may set or access cookies or similar technologies according to their own service documentation and configurations.

Additional product-specific or customer-specific vendor details may be provided through an applicable customer agreement, DPA, cookie banner, or product notice.

• Analytics or measurement providers, where configured
• Authentication or identity providers, where configured
• Consent management tools, where configured
• Error monitoring or masked replay tools, where configured
• Support or communications tools, where configured
• Advertising or targeting tools, if any are deployed

Users can generally manage cookies through browser or device settings, including by deleting stored cookies, blocking future cookies, or adjusting related permissions. If Klarefi deploys a cookie banner, preference center, or similar consent tool, users may also be able to manage certain choices there.

Blocking or disabling strictly necessary cookies or similar technologies may prevent parts of the website, authenticated dashboard, or hosted intake portals from functioning correctly. In hosted intake portals in particular, blocking necessary session technologies may interrupt secure access, document handling, or intake progress.

Klarefi may provide additional consent, opt-out, or jurisdiction-specific disclosures depending on where users are located and which technologies are deployed.

Where required, Klarefi will surface region-specific notices, consent choices, or opt-out mechanisms in the relevant product flow or supplemental notice.

Klarefi may update this Cookie Policy from time to time. If we do, we will revise the "Last updated" date at the top of this page and may provide additional notice through the website, the product, or other appropriate means where required or appropriate.

Questions about this Cookie Policy may be sent to mike@klarefi.com.