LEGAL

Cookie Policy

KairosAI Technologies Private Limited · Last updated 30 June 2026 · Effective date: 30 June 2026

This Cookie Policy explains how KairosAI Technologies Private Limited (a company incorporated under the Companies Act, 2013, with its registered office at Flat No. E-506, Pristine Allure, S.No. 20/2A, Vadgaon Sheri, Pune City, Pune – 411014, Maharashtra, India) (“KairosAI”, “we”, “us” or “our”) uses cookies and similar technologies on the KairosAI platform and website (the “Platform”). KairosAI is a multimodal, AI-powered customer-service agent platform that handles conversations across voice (including PSTN telephony), WhatsApp, email and web chat for businesses. We use cookies sparingly: only those that are strictly necessary to keep you signed in and to keep the Platform secure. We do not use advertising, social-media or cross-site tracking cookies. This policy should be read together with our Privacy Policy, which describes how we handle personal data in line with India’s Digital Personal Data Protection Act, 2023 (the “DPDP Act”).

1. What are cookies?

A “cookie” is a small text file that a website stores on your device (computer, tablet or mobile phone) when you visit it. Cookies are widely used to make websites and web applications work, or to work more efficiently, and to provide information to the operator of the site. Related technologies — such as the browser’s localStorage and sessionStorage — serve a similar purpose by allowing a small amount of data to be saved in your browser. In this policy we use the word “cookies” broadly to cover cookies and these closely related browser-storage technologies.

Cookies can be classified as “session” cookies (which are deleted when you close your browser) or “persistent” cookies (which remain until they expire or you delete them), and as “first-party” cookies (set by us) or “third-party” cookies (set by another domain). The Platform uses only first-party, strictly-necessary storage, as described below.

2. The principle we follow: strictly-necessary only

KairosAI is designed to use the minimum amount of client-side storage required to deliver and secure the service. We do not deploy:

  • third-party advertising or retargeting cookies;
  • social-media plug-in or “like-button” cookies;
  • cross-site or cross-device tracking cookies;
  • data brokers’ or ad-network pixels; or
  • analytics cookies (we currently run no third-party analytics on the authenticated Platform — see Section 6 should this change in future).

The only cookies and browser-storage items we use are those that are strictly necessary for you to sign in, to stay signed in and to keep your account secure.

3. The specific cookies and storage we use

The Platform sets only the following items:

  • Authentication session cookie (first-party, strictly necessary). When you sign in, we set a secure session cookie so that the Platform can recognise you on each subsequent request and keep you logged in without re-entering your password on every page. This cookie also underpins security measures such as session validation and protection against cross-site request forgery. It is set with security attributes (for example, HttpOnly, Secure and an appropriate SameSite policy) and expires when your session ends or after a defined period of inactivity. Without this cookie, you cannot sign in to or use the authenticated areas of the Platform.
  • Cookie-consent acknowledgement (first-party, stored in localStorage). When you acknowledge our transparency notice (the cookie banner), we record that acknowledgement in your browser’s localStorage so that we do not show the notice on every visit. This item contains only a simple flag (and the version/date of the notice you saw); it does not contain any personal data, is not transmitted to advertisers and is not used for tracking.

We may, from time to time, set short-lived technical cookies that are equally strictly necessary — for example, to balance load, to maintain a secure connection, or to remember a non-tracking preference such as your chosen interface language. Any such item is first-party and used solely to operate the Platform.

4. Why we do not ask for consent for these cookies

Under widely accepted data-protection practice, and consistent with the principle of data minimisation reflected in the DPDP Act and the Information Technology Act, 2000, cookies that are strictly necessary to provide a service that the user has actively requested do not require prior consent. The authentication session cookie and the consent-acknowledgement item fall squarely within this strictly-necessary category — they exist only to deliver the sign-in functionality you ask for and to keep your account secure. We therefore do not seek separate consent for them. We do, however, show a clear transparency notice the first time you visit, and we publish this policy, so that you are informed about what we store and why. If we ever introduce a cookie that is not strictly necessary, we will ask for your consent before setting it (see Section 6).

5. How you can clear or block cookies

You remain in control of cookies through your browser settings. Most browsers let you view the cookies and storage held for a site, delete them, and block some or all cookies. You can usually find these controls in your browser’s “Privacy”, “Security” or “Site settings” menu. Guidance is available in the help pages for Google Chrome, Mozilla Firefox, Apple Safari and Microsoft Edge, among others.

Please note an important consequence: if you block or delete the authentication session cookie, you will not be able to sign in to the Platform, or you will be signed out, because the Platform relies on that cookie to maintain your authenticated session. Clearing the consent-acknowledgement item in localStorage will simply cause the transparency notice to be shown again on your next visit. Because we do not use advertising or tracking cookies, there is no third-party tracking for you to opt out of.

6. Changes if we add analytics or other cookies in future

Our use of cookies may evolve as the Platform develops. If we decide to introduce analytics, performance measurement, or any other cookies or technologies that are not strictly necessary, we will: (a) update this Cookie Policy to describe the new items, their purpose and their duration; (b) update the consent banner so that you can give or withhold consent for those non-essential cookies; and (c) ensure that any such cookies are not set until you have consented, where consent is required. We encourage you to review this page periodically. The “Last updated” date at the top of this policy reflects the most recent revision.

7. Data, hosting and security

The Platform is hosted on Amazon Web Services in the Mumbai region (ap-south-1). Data is encrypted in transit (TLS) and at rest, multi-tenant isolation is enforced using PostgreSQL row-level security, and secrets are stored in AWS Systems Manager (SSM) with AES-GCM encryption. The session cookie described above forms part of these security arrangements. For full details of how we process personal data, the legal bases on which we rely, your rights under the DPDP Act and how to exercise them, please see our Privacy Policy.

8. Grievance and Contact Officer

In accordance with the DPDP Act and the Information Technology Act, 2000, our designated Grievance and Contact Officer is Vishal Khandelwal, Founder, who can be reached at hello@trykairos.in. You may contact the Officer with any question, concern or complaint about cookies or the handling of your personal data, and we will respond within the timelines required by applicable law.

9. Governing law and jurisdiction

This Cookie Policy is governed by and construed in accordance with the laws of India. The courts at Pune, Maharashtra shall have exclusive jurisdiction over any dispute arising out of or in connection with this policy. Any arbitration shall be seated at Pune, Maharashtra, conducted in English, under the Arbitration and Conciliation Act, 1996.

10. Contact

If you have any questions about this Cookie Policy or our use of cookies, please contact us at hello@trykairos.in, or write to us at our registered office: KairosAI Technologies Private Limited, Flat No. E-506, Pristine Allure, S.No. 20/2A, Vadgaon Sheri, Pune City, Pune – 411014, Maharashtra, India.