Cookie Policy

Last updated: April 15, 2026. This Cookie Policy applies to threatgrid.tech and associated ThreatGrid properties. For questions, contact security@threatgrid.tech.

1. What Are Cookies

Cookies are small text files placed on your device when you visit a website. They are widely used to make websites function correctly, improve performance, and provide information to website operators. Cookies can be "session cookies" (deleted when you close your browser) or "persistent cookies" (remaining on your device for a defined period or until manually deleted).

In addition to cookies, ThreatGrid may use similar technologies including local storage, session storage, and browser-based fingerprinting signals for security and operational purposes. These are collectively referred to as "cookies" in this policy for simplicity.

2. Categories of Cookies We Use

2.1 Strictly Necessary Cookies

These cookies are essential for the website and platform to function correctly. They cannot be disabled without breaking core functionality. Strictly necessary cookies are used for:

• CSRF (Cross-Site Request Forgery) protection on forms and submission workflows
• Session management for authenticated TLINK PRO users
• Rate limiting enforcement on public diagnostic tools
• Security incident detection and abuse prevention
• Load balancing and server-side routing

These cookies do not require your consent and are set automatically when you interact with the platform.

2.2 Functional Cookies

Functional cookies enhance your experience by remembering your preferences and settings across visits. On ThreatGrid properties, functional cookies may be used to:

• Remember display or interface preferences on TLINK PRO
• Maintain tool input state during diagnostic sessions
• Store user-defined settings within authenticated workspaces

2.3 Performance and Analytics Cookies

ThreatGrid may use basic analytics tooling to understand aggregate page-level usage patterns, monitor platform performance, and identify errors. Analytics data is collected in aggregate and is not used to identify individual users. No third-party behavioral advertising networks or cross-site tracking cookies are used on ThreatGrid properties.

Analytics data collected includes pages visited, time on site, browser type, and general geographic region (country/region level only). This data is used solely for improving the website and platform experience.

2.4 Security Cookies

As a security services provider, ThreatGrid uses cookies and browser signals as part of our operational security monitoring. These may be used to detect bot activity, identify suspicious access patterns, enforce access controls, and protect platform integrity. Security cookies are strictly necessary and cannot be disabled.

3. Cookies We Do Not Use

ThreatGrid does not use the following cookie categories:

• Third-party advertising or retargeting cookies
• Cross-site behavioral tracking cookies
• Social media tracking pixels from external platforms
• Cookies for the purpose of building advertising profiles or selling user data

4. TLINK PRO Platform Cookies

The TLINK PRO analyst platform uses session and authentication cookies required for secure operation of the workspace, asset monitoring, and reporting features. These are strictly necessary for platform function. TLINK PRO users who are logged in may have persistent session tokens stored in browser storage to support seamless re-authentication across sessions. These tokens are protected by standard browser security controls and are scoped to the TLINK PRO domain.

5. Third-Party Services

ThreatGrid may use limited third-party services for operational purposes, such as hosting infrastructure and security tooling. These services may set their own operational cookies as part of normal infrastructure function. ThreatGrid does not permit third-party services used in its infrastructure to use cookies for advertising, marketing, or cross-site tracking purposes independent of ThreatGrid's operational requirements.

6. Managing Cookies

You can manage or delete cookies through your browser settings. Most browsers allow you to refuse new cookies, accept only certain cookies, or delete existing cookies. The process varies by browser — refer to your browser's help documentation for specific instructions:

• Chrome: Settings → Privacy and Security → Cookies and other site data
• Firefox: Preferences → Privacy & Security → Cookies and Site Data
• Safari: Preferences → Privacy → Manage Website Data
• Edge: Settings → Cookies and site permissions

Please note that disabling strictly necessary cookies will prevent core website and platform functionality from working correctly. Disabling security cookies may result in access being blocked by ThreatGrid's automated security systems.

7. Do Not Track

ThreatGrid respects Do Not Track (DNT) browser signals where technically feasible. Analytics data collection is limited to aggregate, non-identifying metrics regardless of DNT status. Strictly necessary and security cookies are set regardless of DNT signals, as they are required for core platform function and security.

8. Changes to This Policy

ThreatGrid may update this Cookie Policy to reflect changes in how we use cookies, changes in applicable law, or changes in our platform and infrastructure. Updates will be posted to this page with a revised effective date. We encourage you to review this policy periodically.

9. Contact

Questions about how ThreatGrid uses cookies can be directed to security@threatgrid.tech.