# COOKIE POLICY ## GeoChain Marketplace **Last Updated: November 3, 2025** **Effective Date: [Date of Implementation]** --- ## 1. INTRODUCTION This Cookie Policy (hereinafter "Policy") explains how GeoChain, located at https://geo-chain.xyz/, uses cookies and similar tracking technologies (hereinafter "Cookies") to recognize visitors and track their use of the Platform. This Policy is designed to comply with: - **GDPR** (Article 7 and ePrivacy Directive) - **ePrivacy Directive** (2002/58/EC as amended by 2009/136/EC) - **California Privacy Laws** (CCPA/CPRA) - **Other Applicable Privacy and Cookie Laws** By using the Platform, you consent to the use of Cookies as described in this Policy. If you do not wish to accept Cookies, you may disable them through your browser settings, but some Platform features may not function properly. --- ## 2. WHAT ARE COOKIES? ### 2.1 Definition A cookie is a small text file placed on your device (computer, tablet, smartphone) by your web browser when you visit a website. Cookies are stored locally and sent back to the website server with subsequent requests. ### 2.2 How Cookies Work 1. You visit the GeoChain Platform 2. Platform sends a cookie to your browser 3. Browser stores the cookie locally 4. Your browser sends the cookie back to Platform with each request 5. Platform reads the cookie to recognize you and remember preferences ### 2.3 Related Technologies Similar to cookies, the following tracking technologies collect information: - **Web Beacons/Pixels**: Invisible images embedded in web pages that track page views - **Local Storage**: Browser storage mechanism similar to cookies - **Session Storage**: Temporary storage during a single browser session - **IndexedDB**: Browser database for storing larger amounts of data - **Canvas Fingerprinting**: Technique creating unique browser fingerprints - **Device Identifiers**: Unique identifiers assigned to mobile devices --- ## 3. TYPES OF COOKIES USED ### 3.1 Strictly Necessary Cookies **Consent Status: NO CONSENT REQUIRED** These Cookies are essential for the Platform to function and cannot be disabled without impairing Platform functionality. **Purpose:** - Maintain user authentication - Remember login status - Store session information - Prevent fraud and security threats - Ensure site stability and performance - Implement user preferences for site display **Examples:** - Session identifiers - CSRF/XSRF tokens - Authentication tokens - Language preference - Security credentials **Provider:** GeoChain **Retention:** Until end of browser session (typically 24 hours) **Cannot be disabled** - Platform will not function without these ### 3.2 Functional/Preference Cookies **Consent Status: CONSENT REQUIRED (but some may be necessary)** These Cookies enhance Platform functionality and store user preferences. **Purpose:** - Remember user preferences and settings - Store user language and regional settings - Remember wallet connections - Store search history and filters - Remember previously viewed listings - Store dashboard configurations **Examples:** - Theme preference (light/dark mode) - Language selection - Wallet address preferences - Search filters and sorting - Dashboard layout preferences **Provider:** GeoChain **Retention:** 1-12 months **User Control:** Can be disabled, but some features may not work optimally ### 3.3 Performance & Analytics Cookies **Consent Status: EXPLICIT CONSENT REQUIRED** These Cookies analyze how you use the Platform and help improve performance. **Purpose:** - Analyze Platform usage and traffic patterns - Identify which features are popular - Measure page performance and load times - Identify technical issues or errors - Understand user journeys through the Platform - Generate anonymized usage statistics - Test new features and improvements (A/B testing) **Examples:** - Page view tracking - Click tracking - Time-on-page measurement - Bounce rate analysis - Feature usage analytics - Performance metrics **Providers:** - GeoChain (internal analytics) - Google Analytics (if implemented) - Other analytics providers **Retention:** 13-26 months **User Control:** Can be disabled by opting out in Cookie Settings ### 3.4 Marketing & Advertising Cookies **Consent Status: EXPLICIT, AFFIRMATIVE OPT-IN REQUIRED** These Cookies track your behavior across websites for targeted advertising purposes. **Purpose:** - Track behavior across websites - Create audience segments for targeted ads - Measure advertising effectiveness - Deliver personalized advertisements - Retarget you with ads on other websites - Conduct market research - Build interest profiles **Examples:** - Facebook Pixel - Google Ads Pixel - Advertising network cookies - Retargeting pixels - Social media tracking pixels **Providers:** - Facebook/Meta - Google Ads - Other advertising networks **Retention:** 30-730 days **User Control:** Must opt-in explicitly; can be disabled at any time ### 3.5 Social Media Cookies **Consent Status: EXPLICIT CONSENT REQUIRED** These Cookies are set by social media platforms and track social sharing and engagement. **Purpose:** - Track social media sharing - Enable social login functionality - Track conversions from social platforms - Enable social widgets and buttons - Analyze social media traffic **Providers:** - Twitter/X - LinkedIn - Discord - Telegram - Other social platforms **Retention:** Variable (set by social media platforms) **User Control:** Can be disabled; social features may be limited --- ## 4. COOKIE CONSENT & MANAGEMENT ### 4.1 Consent Banner Upon your first visit to the GeoChain Platform: - A prominent cookie consent banner is displayed - The banner clearly states cookies are used and explains their purposes - The banner provides options to: - Accept all cookies - Accept only necessary cookies - Customize cookie preferences - Access this full Cookie Policy ### 4.2 Consent Requirements **For Strictly Necessary Cookies:** - No consent required - Set automatically for Platform functionality **For All Other Cookies:** - Explicit, affirmative consent is required - Pre-checked boxes are NOT permitted (GDPR requirement) - Consent must be freely given - Users can withdraw consent at any time - Consent is specific to each cookie category - Silence or passive acceptance does NOT constitute consent ### 4.3 Managing Cookie Preferences **After your initial consent, you can manage preferences:** **In Platform Settings:** - Go to Account → Privacy Settings → Cookie Preferences - Adjust cookie categories to accept or decline - Customize individual cookie permissions **In Your Browser:** - Most browsers allow you to disable cookies globally - You can clear cookies from your browser's settings - You can set exceptions for specific sites **Browser-Specific Instructions:** - **Chrome**: Settings → Privacy and security → Cookies and other site data - **Firefox**: Preferences → Privacy & Security → Cookies and Site Data - **Safari**: Preferences → Privacy → Cookies and website data - **Edge**: Settings → Privacy → Clear browsing data ### 4.4 Withdrawing Consent You have the right to withdraw cookie consent at any time: - Changes take effect immediately - Previously set cookies may remain until they expire - Existing consent preferences are not deleted automatically - New non-consensual cookies will not be set --- ## 5. THIRD-PARTY COOKIES ### 5.1 Third-Party Tracking The Platform integrates with third-party services that may set their own cookies: **Services & Their Cookies:** - **Wallet Providers** (MetaMask, OKX, Trust Wallet, Xaman) - **Email Service Providers** - **Analytics Providers** (Google Analytics) - **Advertising Networks** - **Social Media Platforms** ### 5.2 Third-Party Privacy Policies Third-party services are governed by their own privacy policies and cookie policies. GeoChain is not responsible for: - Third-party cookie usage - Third-party data practices - Third-party privacy compliance - Third-party security measures **You should review third-party privacy policies:** - Google Analytics: https://policies.google.com/privacy - Facebook: https://www.facebook.com/policies/cookies/ - [Other third parties' policies] ### 5.3 Third-Party Opt-Out Many third-party providers offer opt-out mechanisms: - Google Analytics: https://tools.google.com/dlpage/gaoptout - Digital Advertising Alliance: https://optout.aboutads.info/ - Network Advertising Initiative: https://optout.networkadvertising.org/ --- ## 6. COOKIE RETENTION & DELETION ### 6.1 Cookie Lifespan **Cookies are retained for different periods depending on type:** | Cookie Type | Typical Retention | Purpose | |---|---|---| | Session Cookies | Duration of session | Maintain authentication | | Necessary Cookies | 24 hours - 1 year | Site functionality | | Preference Cookies | 1 year | Remember user preferences | | Analytics Cookies | 13-26 months | Website analytics | | Marketing Cookies | 30-730 days | Advertising tracking | ### 6.2 Automatic Deletion - Cookies are automatically deleted when they expire - Session cookies delete when you close your browser - No further action is required from you ### 6.3 Manual Cookie Deletion Users can manually delete cookies through: - Browser history clearing - Browser cookie manager - Browser extensions designed for cookie management - Operating system settings --- ## 7. COMPLIANCE WITH PRIVACY LAWS ### 7.1 GDPR Compliance This Cookie Policy ensures compliance with GDPR requirements: **Article 7 - Consent Requirements:** - ✓ Consent is freely given - ✓ Consent is specific to cookie categories - ✓ Consent is informed (full disclosure) - ✓ Consent is unambiguous (affirmative action) - ✓ Consent is not pre-ticked - ✓ Withdrawal is simple **Article 14 - Transparency:** - ✓ Clear information about cookies provided - ✓ Privacy policy link available - ✓ Categories of cookies clearly described - ✓ Purposes of cookies clearly explained **ePrivacy Directive Compliance:** - ✓ Prior consent before non-essential cookies - ✓ Cookie banner displayed before setting cookies - ✓ Ability to decline all non-essential cookies - ✓ Easy opt-out mechanism ### 7.2 CCPA/CPRA Compliance (California) For California residents, this Cookie Policy ensures compliance with: **CCPA Requirements:** - ✓ Disclosure of cookies and tracking technologies - ✓ Right to opt-out of targeted advertising - ✓ Do Not Track signal compliance - ✓ Right to delete collected data **CPRA Amendments:** - ✓ Right to correct inaccurate data - ✓ Right to limit data use - ✓ Right to opt-in for sensitive data --- ## 8. DO NOT TRACK (DNT) ### 8.1 DNT Support Some browsers include a "Do Not Track" feature. GeoChain respects DNT signals: **How DNT Works:** - Your browser sends a DNT signal with web requests - The signal indicates you do not consent to tracking - Websites can (but are not required to) honor DNT signals **GeoChain's DNT Policy:** - If you enable DNT in your browser, GeoChain will: - Honor the DNT signal - Restrict marketing and analytics cookies - Continue using strictly necessary cookies - Not track you across other websites **Limitation:** GeoChain cannot control third-party services' DNT compliance. --- ## 9. INTERNATIONAL COOKIE RULES ### 9.1 Jurisdiction-Specific Requirements **European Union/EEA:** - Prior consent required (ePrivacy Directive) - Opt-in only for non-essential cookies - Easy withdrawal mechanism required - Regular compliance reviews **California (USA):** - Disclosure of tracking technologies - Opt-out right for targeted advertising - Response timeline: 45 days (45 days extendable) - Do Not Track signal support **Canada:** - Implied consent may be acceptable in limited circumstances - Consent required for non-essential tracking - Privacy Act compliance required **Other Regions:** - GDPR standards applied for EU data - Local privacy laws supersede this policy where more protective --- ## 10. COOKIE SECURITY ### 10.1 Security Measures GeoChain implements security measures to protect cookies: - Secure flag set on cookies (HTTPS only) - HttpOnly flag prevents JavaScript access - SameSite attributes prevent CSRF attacks - Cookies encrypted where containing sensitive data ### 10.2 Risks Users should be aware of cookie risks: - Cookies can be intercepted on unsecured networks - Cookies can be stolen through malware - Cookies can enable unauthorized access if compromised - Third-party cookies may enable unauthorized tracking ### 10.3 Protection Recommendations - Use secure (HTTPS) connections only - Keep antivirus/security software current - Use a Virtual Private Network (VPN) on public WiFi - Disable cookies in public settings - Clear cookies regularly --- ## 11. UPDATES TO THIS POLICY ### 11.1 Changes GeoChain may update this Cookie Policy to: - Reflect new cookies added to the Platform - Comply with new regulations - Clarify existing provisions - Address user concerns ### 11.2 Notice of Changes For material changes: - GeoChain will provide notice via email - Changes will be posted prominently on the Platform - Users will have 30 days before changes take effect - Continued use constitutes acceptance --- ## 12. CONTACT & INQUIRIES **For cookie-related questions or requests:** **Email:** geochain@geo-chain.xyz **Subject:** Cookie Policy Inquiry **Include:** - Specific cookie question or concern - Device/browser information - Description of issue **Response Timeline:** Within 10 business days **For GDPR Data Subject Requests:** - Email geochain@geo-chain.xyz - Subject: GDPR Cookie Data Request - Include account identifier and specific request --- ## 13. COOKIE INVENTORY ### 13.1 GeoChain-Set Cookies | Cookie Name | Type | Purpose | Retention | Consent Required | |---|---|---|---|---| | session_id | Necessary | Session management | Session | No | | auth_token | Necessary | Authentication | 24 hours | No | | csrf_token | Necessary | Security | Session | No | | preferences | Functional | User preferences | 1 year | Yes | | language | Functional | Language selection | 1 year | Yes | | wallet_connected | Functional | Wallet status | Session | Yes | | analytics_id | Analytics | Usage tracking | 2 years | Yes | | marketing_track | Marketing | Ad tracking | 1 year | Yes | ### 13.2 Third-Party Cookies Third-party services set cookies subject to their own policies. Common third-party cookies include those from: - Google Analytics - Facebook Pixel - Wallet providers - Email marketing providers - Social media platforms --- **END OF COOKIE POLICY** **Document Version**: 1.0 **Language**: English **Last Updated**: November 3, 2025