Cookies Policy

Last updated: May 9, 2026

Notice: This policy is currently a working draft pending review by qualified legal counsel. It reflects our actual cookie usage but the wording is not yet legally vetted.

This Cookies Policy explains how LedgerFlow uses cookies and similar technologies on ledgerflow.fimm.app.

1. What are cookies

Cookies are small text files stored on your device when you visit a website. They allow the site to remember information about your visit (such as your login session) so you don't have to re-enter it every time.

2. Cookies we use

Strictly necessary

These cookies are required for the Service to function. You cannot opt out of them while using the Service.

  • Laravel session cookie (e.g., ledgerflow_session) — keeps you logged in across pages. Expires when you log out or after 120 minutes of inactivity.
  • XSRF-TOKEN — protects against cross-site request forgery on form submissions. Expires with your session.

Functional

  • Sentry user context (server-side, not stored as a browser cookie) — when an error occurs, we attach your user ID to the error report so we can investigate. Passwords and tokens are scrubbed.

Analytics, advertising, tracking

We do not use Google Analytics, Facebook Pixel, or any third-party advertising or tracking cookies.

3. Third-party cookies via Google OAuth

If you choose "Sign in with Google", Google may set its own cookies on your browser as part of its authentication flow. Those cookies are governed by Google's cookie policy, not ours.

4. How to control cookies

Most browsers let you block or delete cookies. If you block essential cookies, the Service will not work — you will be unable to log in. You can typically manage cookies via your browser's settings:

5. Changes to this policy

We may update this policy as our cookie usage changes. Material changes will be communicated via email or in-product notice.

6. Contact

Questions: legal@fimm.pk