Back to Home
Legal

Cookies Policy

Last revised: April 24, 2026

INTRODUCTION

This Cookie Policy explains how Awide Labs Ltd. ("Awide Labs", "we", "us" or "our") uses cookies, similar tracking technologies, third-party resources, and related technologies when you access or use https://www.awide.io (the "Site"). This Cookie Policy should be read together with the Awide Privacy Notice. It applies only to the Awide-controlled layer (Awide's public website at https://www.awide.io) and does not cover processing performed by Awide as a processor on behalf of customers or processing that takes place inside the Customer environment, which are governed by the EULA, Common Data Protection Terms, and applicable Regional DPA.

For the purposes of this Cookie Policy, the term "cookies" is used broadly to describe cookies and similar technologies, including pixels, web beacons, local storage, scripts, log-based identifiers, and external resource requests, where relevant.

1. WHAT ARE COOKIES AND SIMILAR TECHNOLOGIES?

1.1. Cookies are small text files placed on your device when you visit a website. Similar technologies include web beacons, pixels, local storage, JavaScript tags, and other technical methods that may store information on, or access information from, your terminal equipment or support service delivery, security, and measurement.

1.2. Under Directive 2002/58/EC concerning the processing of personal data and the protection of privacy in the electronic communications sector, as amended by Directive 2009/136/EC (the "ePrivacy Directive"), storing information on, or gaining access to information stored in, a user's terminal equipment generally requires prior informed consent unless the technology is strictly necessary to provide a service explicitly requested by the user.

2. HOW WE USE THESE TECHNOLOGIES

We use cookies and similar technologies for the following purposes:

  • to deliver, secure, and maintain the Site and its infrastructure;
  • to route traffic and serve content through hosting and content delivery infrastructure;
  • to process forms and user requests submitted through the Site;
  • to support compliance, troubleshooting, incident response, and audit logging;
  • to enable analytics or performance measurement only where such tools are activated and lawfully used.

3. TECHNOLOGIES USED

3.1. Based on the current technical configuration reviewed as of the date of this Cookie Policy, the following technologies and external resources have been identified in connection with the Site:

Technology / Service Purpose Provider Data involved Category / Legal basis
Google Fonts (fonts.googleapis.com, fonts.gstatic.com) Loading and rendering web fonts used by the Site. Google LLC (Google Fonts Privacy FAQ) IP address, browser and device metadata, language settings, referring URL, page URL, timestamps, and similar technical request data. Third-party functional resource. Legal basis is article 5(3) of the ePrivacy Directive (Directive 2002/58/EC as amended by Directive 2009/136/EC). According to US law: data collected through web forms is processed to fulfill user-requests including services (e.g., contact responses, support inquiries) as a legitimate business purpose under FTC Section 5 (fair practices, 15 U.S.C. § 45), CalOPPA notice requirements, and applicable state privacy laws such as CPRA §1798.140(e) (business purpose processing, not "sale" or "sharing").
Amazon CloudFront CDN Content delivery, routing, caching, availability, security, and protection of the Site. Amazon Web Services, Inc. (Privacy Policy) IP address, requested URL, user agent, referrer, timestamps, HTTP status, and infrastructure log data. Strictly necessary infrastructure. Legal basis is article 5(3) of the ePrivacy Directive where the service is necessary to provide the Site requested by the user. Under GDPR this processing is based on our legitimate interests under article 6(1)(f) in ensuring network and information security (Recital 49). For users in the US, including California residents, we use this log data for our legitimate business purposes, including security, debugging, service operation and legal compliance, and we do not sell or share this data for cross-context behavioral advertising.
AWS hosting / storage (including S3 where used) Hosting and serving website assets and content. Amazon Web Services, Inc. (Privacy Policy) Infrastructure logs and content delivery data; depending on the service, technical request data and operational records. Strictly necessary infrastructure. Legal basis is article 5(3) of the ePrivacy Directive where technically necessary for site delivery and resilience. As we use this information to host and serve website content, monitor and improve the performance and resilience of our infrastructure, detect and prevent security incidents and ensure the stability and security of our Services, the legal basis for this processing is legitimate interests under Article 6(1)(f) GDPR in operating a secure, reliable hosting environment and protecting our systems and users from misuse and cyberattacks (Recital 49 GDPR). For users in the US, including California residents, we use this infrastructure and log data for legitimate business purposes, including providing and operating our hosting services, ensuring the security and integrity of our systems, detecting, preventing and responding to fraud and security incidents, troubleshooting and improving our infrastructure, and complying with applicable legal obligations; we do not sell or share this log data for cross-context behavioral advertising.
Contact form workflow (including AWS Lambda and DynamoDB where used) Receiving, processing, storing, and managing enquiries submitted through contact forms. Amazon Web Services, Inc. (Privacy Policy) / Awide Labs Ltd. First name, last name, email address, company, message content, submission metadata, and related technical logs. Requested service / communication handling. Technologies used to transmit or store a user-requested enquiry do not require separate consent under article 5(3) of the ePrivacy Directive where strictly necessary to provide that requested communication service. When you contact us via our contact forms, we process the personal data you provide (such as your first and last name, email address, company details and the content of your message), together with submission metadata and related technical logs, in order to receive, process and manage your enquiry and to respond to you; this processing is generally necessary for the performance of a contract or to take steps at your request prior to entering into a contract (Article 6(1)(b) GDPR), and we may additionally rely on our legitimate interests (Article 6(1)(f) GDPR) in handling business enquiries, improving our customer service and protecting our services from misuse. For users in the United States, including California residents, this information may be considered "personal information" and we use it for our legitimate business purposes, including providing and managing our relationship with you, responding to your requests, maintaining records of communications, ensuring the security and proper functioning of our contact-form workflow (for example, where we use AWS Lambda, DynamoDB or similar service providers), and complying with applicable legal obligations. We do not sell or share contact-form enquiries for cross-context behavioral advertising.
Third-party destination links (e.g., AWS Marketplace, documentation portals, or external project pages) Redirecting users to external resources requested by them. Relevant third parties The third-party website may receive standard browser request data once you follow the link. External destination / separate controller environment. The external destination becomes independently responsible for its own cookies and privacy practices after the user leaves the Site.

3.2. If analytics, marketing, or other technologies are introduced, re-enabled, or used in future deployments, this Cookie Policy will be updated accordingly before or at the time such technologies are lawfully deployed.

4. LEGAL BASES, EPRIVACY APPROACH, AND US STATE PRIVACY DISCLOSURES

4.1. Where the GDPR, the UK GDPR, and/or the ePrivacy Directive apply, Awide Labs distinguishes between strictly necessary technologies, analytics and performance technologies, and marketing or similar tracking technologies. The applicable legal analysis depends on the purpose of the technology, whether it stores or accesses information on the user's device, and whether it is necessary to provide the service explicitly requested by the user.

4.2. Strictly necessary technologies, including core hosting, content delivery, security, routing, fraud prevention, and infrastructure tools such as AWS hosting, CloudFront, and similar operational services, may be used where they are necessary to provide, secure, or maintain the Site. For GDPR purposes, the related personal data processing may rely on Article 6(1)(f) GDPR (legitimate interests), supported where relevant by Recital 49 GDPR, and/or Article 6(1)(b) GDPR where processing is necessary to take steps at the request of the user or to provide a requested service. Awide Labs documents and applies an appropriate balancing assessment where Article 6(1)(f) GDPR is relied upon. Where Awide Labs processes personal data submitted through the Site's contact form (for example, to respond to enquiries or to take steps at the user's request prior to entering into a contract), such processing is based on Article 6(1)(b) GDPR, supported where relevant by Article 6(1)(f) GDPR for ordinary B2B enquiry handling, consistent with section 4.1 of the Privacy Notice.

4.3. Analytics and performance technologies, if enabled in the future, will be treated separately from strictly necessary technologies. Where consent is required under Article 5(3) of the ePrivacy Directive and applicable national laws, such technologies will be activated only after the user has provided valid prior consent. For GDPR purposes, the related personal data processing will be carried out on the basis of consent where such consent is required.

4.4. Marketing and similar tracking technologies, including technologies used in support of direct marketing communications, behavioral advertising, campaign measurement, or audience building, are also treated separately. Any consent used for marketing must be separate from consent used for analytics or from notices relating to ordinary contact or enquiry handling. Continued browsing, silence, inactivity, dark patterns, or pre-ticked boxes do not constitute valid consent.

4.5. Where Awide Labs sends direct electronic marketing communications, the legal assessment for those communications is performed separately under applicable direct marketing rules and the ePrivacy Directive. Where a lawful soft opt-in is available under applicable law, it is assessed narrowly and specifically for those communications. It does not replace the transparency and consent analysis applicable to website tracking technologies.

4.6. For visitors in the United States, certain cookies and similar technologies may also be regulated by US state privacy laws, including the California Consumer Privacy Act as amended by the California Privacy Rights Act (CCPA/CPRA), where applicable. Awide Labs does not sell personal information as those terms are defined under applicable US state privacy laws. Awide Labs also does not use cookies or similar technologies for cross-context behavioural advertising on the reviewed page state. California residents, to the extent the CCPA/CPRA applies, have the right to know, access, correct, delete, and opt out of the sale or sharing of personal information, subject to applicable exceptions. To exercise these rights, please contact Awide Labs at info@awide.io. Where required by other applicable US state privacy laws (including the VCDPA, CPA, CTDPA, UCPA, TDPSA, OCPA, MCDPA, TIPA, and FDBR, as further described in Section 4.3 of the Awide Privacy Notice), Awide Labs will provide additional notices, opt-out mechanisms, or regional disclosures through its Privacy Notice, cookie banner, or other relevant notice layers.

4.7. Awide Labs does not knowingly use cookies or similar technologies to collect personal data from children under the age of 16 (or under 13 as defined by the Children's Online Privacy Protection Act (COPPA) in the United States). The Site and Awide's products are intended for business users only.

5. INTERNATIONAL DATA TRANSFERS

5.1. Awide Labs Ltd. is established in Israel. Israel benefits from an adequacy decision of the European Commission (Decision 2011/61/EU, as maintained) for relevant transfers from the European Economic Area, subject to the scope and conditions of that decision. Some service providers involved in the operation of the Site may nevertheless process or access data outside Israel, the United Kingdom, or the European Economic Area, including in the United States, depending on the relevant configuration, traffic routing, storage setup, support access model, and deployment region.

5.2. Where personal data is transferred internationally, Awide Labs ensures that an appropriate transfer mechanism is in place in accordance with Chapter V of the GDPR before any transfer of personal data to a third country takes place. Transfers to Google LLC and Amazon Web Services, Inc. may rely, as applicable, on the EU-US Data Privacy Framework where the importer is certified for the relevant processing activity, and/or on the Standard Contractual Clauses adopted pursuant to Article 46(2)(c) GDPR. Where data is hosted and remains within the EEA, no transfer outside the EEA occurs for that processing activity. Awide Labs assesses transfers on a case-by-case basis and applies supplementary measures where required under applicable EDPB guidance.

5.3. Awide Labs reviews whether each recipient acts as an independent controller, joint controller, or processor for the relevant processing operation and implements the appropriate contractual and governance measures accordingly. Where a joint controllership situation arises, the allocation of responsibilities will be documented in accordance with Article 26 GDPR.

6. YOUR CHOICES

6.1. You can manage cookies and similar technologies through your browser settings, device settings, and, where available, the Site's cookie banner or preferences tool. If non-essential technologies are introduced or activated, users should be able to accept, reject, or later modify those settings through the relevant consent interface. Where consent is used as the legal basis for any processing, you have the right to withdraw that consent at any time with effect for the future, without affecting the lawfulness of processing carried out prior to withdrawal. Withdrawal of consent must be as easy as giving it and can be exercised through the same consent interface or by contacting info@awide.io.

6.2. Personal data submitted through the Site's contact form is retained for a period required for legal, contractual, or legitimate operational purposes, in which case the applicable retention basis will apply. Infrastructure and security logs are retained only for as long as reasonably necessary for security, troubleshooting, fraud prevention, compliance, and evidentiary purposes, after which they are deleted, anonymized, or aggregated in accordance with internal retention procedures and the configuration of the relevant AWS services.

6.3. Blocking certain technologies may affect the operation, display, or availability of parts of the Site. In particular, blocking external resources such as web fonts or certain security-related services may change how pages render or function.

7. DO NOT TRACK AND SIMILAR SIGNALS

7.1. Browsers and devices may offer privacy signals such as "Do Not Track" or similar settings. Because legal and technical standards for such signals remain inconsistent, the Site may not respond uniformly to all such signals unless and until a recognized, operational, and legally relevant standard is adopted or implemented in the Site's consent and preference management tools. Where legally required signals become applicable, Awide Labs will assess and implement them as appropriate.

8. CHANGES TO THIS COOKIE POLICY

8.1. This Cookie Policy may be updated from time to time to reflect legal, technical, or operational changes, including changes to the technologies used on the Site. Where required, appropriate notice will be provided and, where applicable, renewed consent will be sought before materially changed non-essential technologies are applied.

9. CONTACT US

9.1. If you have questions about this Cookie Policy or about how cookies and similar technologies are used on the Site, please contact: info@awide.io.