Cookie Policy
Last updated: March 2026
This Cookie Policy explains what cookies are, how Joy Pilot Limited (“Joy Pilot”, “we”, “us” or “our”) uses them on our website and application at joypilot.co, and what choices you have regarding their use.
By continuing to use our website, you consent to our use of cookies in accordance with this policy. If you do not agree to our use of cookies, you should adjust your browser settings accordingly or refrain from using our website.
1. What Are Cookies?
Cookies are small text files that are placed on your computer or mobile device when you visit a website. They are widely used to make websites work more efficiently, to provide a better browsing experience, and to give website owners useful information about how their site is being used.
Cookies can be “persistent” or “session” cookies. Persistent cookies remain on your device after you close your browser, while session cookies are deleted as soon as you close your browser.
2. How We Use Cookies
Joy Pilot uses cookies for the following purposes:
- To keep you signed in — so you don’t have to log in every time you visit a new page.
- To protect your account — by verifying your identity and preventing cross-site request forgery (CSRF) attacks.
- To remember your preferences — such as your selected region and locale settings.
- To manage your session — including showing you a warning before your session expires due to inactivity.
- To understand how our website is used — so we can improve the experience for everyone.
3. Cookies We Use
The tables below describe the specific cookies used by Joy Pilot, grouped by their purpose.
3.1 Strictly Necessary Cookies
These cookies are essential for the operation of our website and application. Without them, you would not be able to log in, navigate the application or use its features. These cookies cannot be switched off.
| Cookie Name | Purpose | Duration |
|---|---|---|
laravel_session |
Identifies your browser session so you can stay logged in as you navigate between pages. This cookie is encrypted and cannot be read by third parties. | 3 hours |
XSRF-TOKEN |
A security token that protects you against cross-site request forgery (CSRF) attacks. It ensures that form submissions and data requests genuinely come from you, not a malicious third party. | 3 hours |
remember_token |
If you choose “Remember Me” when logging in, this token allows you to stay signed in across browser sessions without re-entering your password. The token is stored securely in our database and can be revoked at any time. | 30 days |
3.2 Functional Cookies
These cookies enable features that improve your experience but are not strictly essential. They remember choices you make so the application can behave in a way that suits you.
| Cookie Name | Purpose | Duration |
|---|---|---|
user-logged-out-at |
Tracks when your session will expire due to inactivity. This allows us to display a warning before you are automatically logged out, giving you the chance to extend your session. | 3 hours |
locale-region |
Stores your preferred region (e.g. United Kingdom, New Zealand) so we can display the correct currency, tax terminology and localised content. | Persistent |
locale-hide-header |
Remembers that you have already selected your region, so the region selection banner is not shown again on subsequent visits. | Persistent |
3.3 Analytics Cookies
These cookies help us understand how visitors interact with our website by collecting information anonymously. This data helps us improve our website and the services we offer. These cookies are set by Google Analytics and Google Tag Manager.
| Cookie Name | Purpose | Duration |
|---|---|---|
_ga |
Used by Google Analytics to distinguish unique visitors to our website. Does not contain any personal information. | 2 years |
_gid |
Used by Google Analytics to distinguish users within a single browsing session. | 24 hours |
_gat |
Used by Google Analytics to limit the rate at which data is collected, helping to manage high-traffic websites. | 1 minute |
We use Google Analytics (property ID: G-B7S59BWNE3) and Google Tag Manager (container ID: GTM-K6GWRX3K) to collect this data. Google may also set additional cookies as part of these services. You can learn more about how Google uses your data at Google’s partner policy page.
3.4 Advertising and Conversion Cookies
We use a limited number of advertising cookies to measure the effectiveness of our marketing campaigns. These cookies help us understand whether visitors who saw our advertisements went on to sign up for Joy Pilot.
| Provider | Purpose | Duration |
|---|---|---|
| Google Ads | Tracks conversions from Google advertising campaigns to help us measure the return on our marketing spend. We use this data to improve our advertising so it reaches people who would genuinely benefit from Joy Pilot. | 90 days |
3.5 Social Media Cookies
If you interact with social media features on our website (such as sharing content or using social login), the relevant social media platform may set cookies on your device. Joy Pilot does not control these cookies.
| Provider | Purpose |
|---|---|
| May set cookies if you use Facebook-related features or if our site includes Facebook social plugins. These cookies may be used for targeted advertising on Facebook. | |
| May set cookies if you interact with LinkedIn integration features. These cookies help with professional network integration. | |
| Twitter / X | May set cookies if you interact with Twitter/X sharing features or embedded content. |
We recommend reviewing the cookie and privacy policies of each social media platform for full details on how they use your data.
4. Cookie Security
We take the security of your cookies seriously:
- Encryption: All essential cookies (including your session cookie and CSRF token) are encrypted using industry-standard methods. Even if intercepted, the data they contain cannot be read.
- HTTP-Only: Session cookies are marked as HTTP-only, which means they cannot be accessed by JavaScript running in your browser. This protects against cross-site scripting (XSS) attacks.
- Secure flag: In production, cookies are transmitted only over encrypted HTTPS connections, preventing interception over insecure networks.
- SameSite protection: Our cookies use the “lax” SameSite attribute, which provides protection against cross-site request forgery attacks while still allowing normal navigation.
5. How to Manage Cookies
You have the right to decide whether to accept or reject cookies. You can manage your cookie preferences in the following ways:
5.1 Browser Settings
Most web browsers allow you to control cookies through their settings. You can typically find these in the “Options”, “Settings” or “Preferences” menu of your browser. The following links explain how to manage cookies in common browsers:
5.2 Google Analytics Opt-Out
You can opt out of Google Analytics tracking by installing the Google Analytics Opt-Out Browser Add-on, which is available for all major browsers.
5.3 Impact of Disabling Cookies
Please be aware that if you choose to disable or reject cookies, some parts of Joy Pilot may not function correctly. In particular:
- You will not be able to log in or maintain an active session if you block strictly necessary cookies.
- The application will not remember your region or locale preferences if you block functional cookies.
- We will not be able to improve our website based on usage patterns if you block analytics cookies.
6. Third-Party Cookies
Some cookies on our website are set by third-party services that appear on our pages. We do not control the use of these cookies and you should check the relevant third party’s website for more information about how they use cookies:
- Google Privacy Policy (Analytics, Tag Manager and Ads)
- Stripe Privacy Policy (payment processing)
- Facebook/Meta Privacy Policy
- LinkedIn Privacy Policy
- Twitter/X Privacy Policy
7. Changes to This Policy
We may update this Cookie Policy from time to time to reflect changes in our practices or for operational, legal or regulatory reasons. When we make changes, we will update the “Last updated” date at the top of this page. We encourage you to review this page periodically to stay informed about our use of cookies.
8. Contact Us
If you have any questions about our use of cookies or this Cookie Policy, please contact us:
- By email: [email protected]
- Through our website: joypilot.co
9. Related Policies
This Cookie Policy should be read alongside our other legal documents:
- Privacy Policy — how we collect, use and protect your personal data
- Terms of Service — the terms and conditions for using Joy Pilot