For YouFeaturesPricingContact
Sign inRequest Demo

Legal

Cookie Policy

Last updated: 24 March 2026

This Cookie Policy explains how Hayil Inc. uses cookies and similar technologies when you visit our website (hayil.org) or use our web dashboard. It does not apply to our mobile app or USSD service, which use different technical mechanisms and do not use browser cookies.

1. What Are Cookies?

Cookies are small text files that a website stores on your browser or device when you visit. They allow the website to recognise your device on subsequent visits and remember certain information about you - such as whether you're logged in or your preferences.

Similar technologies include local storage (browser-based key-value storage), session storage (cleared when you close the tab), and pixel tags(small images used to track page visits). We refer to all of these collectively as “cookies” in this policy.

2. Cookies We Use

We use the following categories of cookies:

Strictly Necessary

Required for the Platform to function. Cannot be disabled.

Required
hayil_token
Stores your authentication session. HttpOnly - cannot be read by JavaScript. Expires after 7 days of inactivity.
hayil_refresh
Allows silent re-authentication without a new OTP. Scoped to the refresh endpoint only.
__csrf
CSRF protection token for state-changing requests.
Functional

Enhance usability and remember your preferences.

Optional
billing_preference
Remembers whether you last selected monthly or annual billing on the pricing page.
sidebar_state
Remembers whether your office dashboard sidebar is collapsed or expanded.
Analytics

Help us understand how the platform is used so we can improve it. All data is aggregated and anonymised.

Optional
Plausible Analytics
Privacy-first analytics. No cross-site tracking. No personal data stored. No cookies placed by default - uses a script tag only.
Error tracking (Sentry)
Records JavaScript errors and stack traces to help us fix bugs. Session replay is disabled. No PII is captured.
Third-Party / Payments

Set by Paystack when you interact with the payment flow. Governed by Paystack's own privacy policy.

Required
Paystack cookies
Fraud prevention and session management during checkout. Only active during the payment flow.

3. What We Don't Do

  • We do not use advertising cookies or tracking pixels from ad networks.
  • We do not sell data derived from cookies to third parties.
  • We do not use cross-site tracking technologies.
  • We do not use fingerprinting techniques to identify users.
  • We do not embed third-party social media widgets that track you.

Hayil's web dashboard and website are advertising-free. We have no commercial relationship with advertisers and your browsing behaviour is never used to serve you ads.

4. Authentication Cookies in Detail

Because Hayil handles politically sensitive data, we take extra care with authentication cookies:

  • HttpOnly - the hayil_token cookie cannot be read by JavaScript. This protects your session from XSS attacks even if malicious code somehow ran on the page.
  • Secure - cookies are only sent over HTTPS, never plain HTTP.
  • SameSite=Strict - cookies are not sent with cross-site requests, protecting against CSRF attacks.
  • Scoped refresh token - the refresh token is only sent to the /api/auth/refresh endpoint, limiting its exposure.

5. Managing Your Cookie Preferences

5.1 Browser settings

You can instruct your browser to refuse all cookies or to alert you when cookies are being sent. Each browser is different - consult your browser's help documentation. Note that disabling strictly necessary cookies will prevent you from logging in to the web dashboard.

5.2 Functional and analytics cookies

You can opt out of functional and analytics cookies at any time by visiting your account privacy settings (logged-in users) or by emailing privacy@hayil.org.

5.3 Do Not Track

We honour the Do Not Track browser signal. If your browser sends a DNT:1 header, Hayil will disable all non-essential tracking for your session automatically.

6. Cookie Duration

hayil_token (session)7 days from last activity
hayil_refresh30 days
billing_preference1 year
sidebar_stateSession (cleared on tab close)
Analytics (Plausible)No cookie - script only
Paystack cookiesSession (cleared after checkout)

7. Changes to This Policy

We may update this Cookie Policy when we introduce new features or change our tooling. When we do, we will update the “Last updated” date at the top. For significant changes affecting your privacy, we will notify you via the Platform.

8. Contact

Hayil Inc. - Privacy Team
26 Pearl Green Street, Accra, Ghana
privacy@hayil.org