Cookie Policy
How MatchSense uses cookies and browser storage to keep the Service working, remember your preferences, and measure usage — with consent handled under ePrivacy/GDPR and Indonesia’s UU PDP.
Last updated: [set on publish]
Template — review with qualified legal counsel before production use.
1. What are cookies and similar technologies?
Cookies are small text files placed on your device when you visit a website. Similar technologies include browser local storage and session storage, which let a site store information in your browser. Together they help the Service remember your actions and preferences and keep you securely signed in.
This policy explains how MatchSense uses cookies and browser storage, the specific keys we set, the consent we rely on, and how you can control them. It should be read together with our Privacy Policy.
2. Essential cookies and storage
These are strictly necessary for the Service to function and cannot be switched off in our systems. They keep you signed in, maintain and secure your session, and support core checkout flows. The main essential items we use are:
- matchsense_user_token — an httpOnly session cookie that authenticates your signed-in session on the server. Being httpOnly, it is not accessible to page JavaScript, which helps protect it against cross-site scripting.
- matchsense-user-session — a browser storage key used to maintain your active session state in the app.
3. Functional storage (preferences)
Functional storage remembers choices you make so the interface behaves the way you expect. On MatchSense these are stored as browser local storage keys rather than server cookies:
- matchsense-theme — stores whether you use the light or dark interface.
- matchsense-locale — stores your selected language (for example, English or Indonesian).
4. Analytics cookies
Analytics cookies help us understand how visitors use the Service so we can improve it — for example, which features are used and where users encounter problems. This information is aggregated and used for measurement and product improvement. These are non-essential: where the law requires it, we set them only after you give consent, and you can decline or withdraw consent at any time.
5. Third-party cookies
Some cookies are set by third parties that help us operate the Service. These providers process data under their own privacy and cookie policies:
- Midtrans — during Indonesian Rupiah (IDR) checkout for payment processing and fraud prevention.
- Stripe — during international checkout for payment processing and fraud prevention.
- Google — when you sign in with Google OAuth for authentication.
- Analytics providers — where enabled and consented, to measure aggregate usage.
6. Consent
For essential cookies and storage, we rely on the legitimate need to deliver a service you have requested, so no consent is required. For non-essential cookies — such as analytics and any third-party marketing cookies — we ask for your consent before setting them, consistent with EU ePrivacy and GDPR consent norms and with the consent expectations under Indonesia's Personal Data Protection Law (Undang-Undang No. 27 Tahun 2022 tentang Pelindungan Data Pribadi, the "UU PDP").
Where a consent banner or preference control is presented, your choices are recorded and you can change or withdraw them at any time. Withdrawing consent does not affect processing that already took place while consent was valid.
7. Managing and controlling cookies
You can control and delete cookies through your browser settings, and you can clear browser local storage — including the matchsense-theme, matchsense-locale, and matchsense-user-session keys — at any time. Most browsers also let you block cookies or alert you before they are set.
Please note that blocking or deleting essential cookies and storage — including the matchsense_user_token session cookie — will sign you out and may prevent parts of the Service, such as your account and checkout, from working correctly.
8. Changes to this policy
We may update this Cookie Policy as our use of cookies and similar technologies evolves. When we make material changes, we will update the "Last updated" date above and, where required, notify you through the Service.
9. Contact
Questions about cookies can be sent through our contact page or to [dpo@matchsense.online]. For broader details on how we handle personal data, see our Privacy Policy; see also our Terms of Service and Responsible Gaming page.