Cookie Policy
Last updated: 21 May 2026
1. About this policy
This Cookie Policy explains how TradeMatrix ("we", "us") uses cookies, local storage, and similar technologies on our marketing website tradematrix.uk and the TradeMatrix CRM application tradematrixapp.uk (together, the "Service").
It should be read together with our Privacy Policy.
2. What are cookies?
Cookies are small text files placed on your device when you visit a website. Local storage and session storage work similarly but are managed by the browser rather than sent with each request. We use all three.
3. Categories of cookies we use
3.1 Strictly necessary (always on)
Required for the Service to function. These do not require consent under PECR / UK GDPR.
- Authentication tokens (Supabase access/refresh tokens, stored in localStorage) — keep you signed in
- Session preferences — last-used tab, filters, viewport state
- CSRF / security tokens — protect against cross-site request forgery
- Onboarding flags — remember which tour steps you've completed
- Calendar setup flag — so we don't re-prompt you
- Cookie consent choice — remembers your preferences
3.2 Functional
Improve your experience but are not strictly required.
- Theme / device viewport preferences
- React Query cache (5-minute in-memory cache) for faster page loads
- Cached company branding (logo URL, colours) to reduce reloads
3.3 Performance & error monitoring
- Sentry — captures error and performance data to help us diagnose bugs. No advertising or cross-site tracking.
3.4 Third-party cookies set when you use integrations
When you use these features, the relevant third party may set its own cookies, governed by its own policies:
- Stripe — payment processing and fraud prevention (Stripe Checkout / Stripe.js)
- Google Sign-In — authenticate you with your Google account
- Google Maps / Places — address lookup and geocoding
- Google Calendar / Gmail — when you connect those integrations
- Cloudflare — security, bot protection, and content delivery
We do not use advertising cookies, third-party marketing pixels, or cross-site behavioural tracking.
4. What we store about Google integrations
When you connect Google Sign-In, Gmail, or Google Calendar, we store:
- An encrypted OAuth refresh token so we can keep performing the actions you've authorised
- The connected Google account email and the selected calendar ID (for Calendar)
- Records of emails we've sent on your behalf and calendar events we've created — so they appear on the relevant CRM record
These are stored server-side, not in browser cookies. See section 3 of our Privacy Policy for full details, including our compliance with the Google API Services User Data Policy (Limited Use).
5. Managing cookies
You can clear cookies and local storage at any time via your browser settings. Doing so will sign you out of the CRM and reset your preferences.
Most browsers also let you block or restrict third-party cookies. Blocking strictly necessary cookies will prevent the Service from working properly.
You can revoke Google integration access at any time from Settings → Email / Calendar within the CRM, or via myaccount.google.com/permissions.
6. Changes to this policy
We may update this Cookie Policy from time to time. The "Last updated" date at the top of this page indicates when it was last revised.
7. Contact
Questions? Email support@tradematrixapp.uk.