Cookie Policy
Last updated: April 2026
Introduction
This Cookie Policy explains what cookies are, which ones we use on megrowthes.com and app.megrowthes.com, what we use them for, and how you can manage your consent. It is an integral part of our Privacy Policy and applies to anyone who visits or uses our services.
What are cookies?
Cookies are small text files that a website stores on your device when you visit it. They allow the site to remember your actions and preferences (language, signed-in state, consents) for a period of time, so you don't have to re-enter them every time you return or navigate between pages. We also use similar technologies such as the browser's localStorage, which serves an equivalent purpose.
Legal basis and consent
We process the data associated with cookies in accordance with Regulation (EU) 2016/679 (GDPR), Directive 2002/58/EC (ePrivacy), and the Spanish Organic Law 3/2018 on the Protection of Personal Data (LOPDGDD). The legal basis is:
- Strictly necessary cookies: legitimate interest (Art. 6.1.f GDPR) and the technical exemption of Art. 22.2 LSSI.
- Analytics cookies: explicit prior consent (Art. 6.1.a GDPR), collected through our consent banner.
Types of cookies we use
Essential cookies
These are required for the site to function. Without them you would not be able to sign in, complete the registration form, or browse securely. They do not require consent.
Analytics cookies (opt-in)
These help us understand site usage in an aggregated, anonymous way so we can improve the experience. They are only enabled if you click "Accept all" in the banner. You can disable them at any time.
Cookie and storage detail
This table reflects the cookies and local-storage entries we currently use. We review it periodically and update it when our technical stack changes.
Analytics cookies are only stored on your device if you clicked "Accept all" in the banner. If you chose "Essential only", only essential cookies are used and nothing is sent to PostHog or Google Analytics.
Third parties we share data with
The following providers process data on our behalf. All of them are bound by a Data Processing Agreement (DPA) and process the data exclusively for the purposes described.
- Supabase — authentication and database (EU servers, eu-west-1, Dublin).
- Vercel — hosting for the site and the application.
- Cloudflare — CDN and anti-bot protection (Turnstile).
- PostHog — product analytics (EU Cloud).
- Google Analytics 4 — web-traffic analytics (when enabled).
- HeyGen — conversational avatar service.
- Brevo — email communications (newsletter, notifications).
- Resend — transactional emails (account verification, password reset).
- Sentry — technical error monitoring (PII scrubbed before sending).
How to manage your consent
You are in control at all times:
- Initial banner: the first time you visit the site you can choose between "Accept all" or "Essential only".
- Change later: clear site data in your browser to see the banner again, or go to your profile → Privacy to manage your preferences.
- Versioning: if we update this policy, the banner reappears automatically so you can decide again.
- Browser settings: every modern browser also lets you block or delete cookies from its settings.
Your rights
You have the right to access, rectify, erase, restrict the processing of, port, and object to the processing of your data. You can exercise these rights by writing to:
Email: privacy@megrowthes.com
If you believe we have not responded properly, you have the right to lodge a complaint with the Spanish Data Protection Agency (AEPD, https://www.aepd.es/).
Changes to this policy
We may update this Cookie Policy to reflect technical, legal, or operational changes. When we do, we will update the "Last updated" date in the header and, if the changes are material, we will show you the banner again to collect a new consent.
