Back to HomeDigi Therapy
    Zoom (Video Sessions): During video sessions, Zoom may set cookies required for session management

    Cookie Policy

    Last Updated: February 9, 2026 · Effective Date: February 9, 2026

    1. Introduction

    This Cookie Policy explains how Digi Therapy, Inc. ("Digi Therapy," "we," "us," or "our") uses cookies, web storage (localStorage and sessionStorage), and similar tracking technologies when you visit our website at digitherapy.com.npand related applications (the "Platform").

    This Cookie Policy should be read in conjunction with our Privacy Policy and Terms & Conditions.

    2. What Are Cookies & Similar Technologies?

    Cookies are small text files that are placed on your device (computer, tablet, or mobile phone) when you visit a website. Cookies are widely used to make websites work, to improve efficiency, and to provide information to the website operators.

    Web Storage (localStorage & sessionStorage) is a mechanism that allows websites to store data in your browser. Unlike cookies, web storage data is not sent to the server with every request. localStorage persists until explicitly deleted; sessionStorage is cleared when the browser tab is closed.

    Browser Fingerprinting uses attributes of your browser and device (such as screen resolution, installed fonts, and timezone) to create a pseudonymous identifier. We use the open-source FingerprintJS library for this purpose.

    3. Categories of Cookies & Technologies We Use

    3.1 Strictly Necessary Cookies

    These cookies are essential for the Platform to function and cannot be disabled. Without these cookies, services you have asked for cannot be provided.

    NameProviderPurposeDuration
    appwrite-sessionDigi Therapy (Appwrite)Maintains your authenticated session with the Appwrite backend. Required for login functionality.Session / 365 days
    next-auth.session-token / __Secure-next-auth.session-tokenDigi Therapy (NextAuth)Maintains your authenticated session when using social login (Google, GitHub, Facebook, LinkedIn). Contains an encrypted JWT.Session / 30 days
    next-auth.csrf-token / __Host-next-auth.csrf-tokenDigi Therapy (NextAuth)Provides Cross-Site Request Forgery (CSRF) protection for authentication forms and requests.Session
    next-auth.callback-urlDigi Therapy (NextAuth)Stores the URL to redirect to after authentication completes.Session
    cookie-consentDigi TherapyStores your cookie consent preferences so we don't ask you again on every visit.365 days

    3.2 Functional Cookies & Web Storage

    These technologies enable enhanced functionality and personalisation. They may be set by us or by third-party providers whose services we have added to our pages. If you do not allow these, some or all of these features may not function properly.

    Name / KeyTypePurposeDuration
    digitherapy:questionnairelocalStorageStores your encrypted onboarding questionnaire progress so you can resume if you navigate away. Data is encrypted using AES-GCM via the Web Crypto API.Until cleared or registration
    digitherapy:questionnaire-keylocalStorageEncryption key for the questionnaire data above (stored client-side only).Until cleared or registration
    digitherapy:onboarding-variantlocalStorageStores your assigned A/B testing variant for the onboarding flow to ensure a consistent experience across visits.Until cleared
    digitherapy:onboarding-entrysessionStorageTracks the entry context for the onboarding flow (e.g., referral source) within the current browser tab.Browser tab session
    themelocalStorageRemembers your preferred colour theme (light/dark) across visits.Until cleared

    3.3 Analytics Cookies & Technologies

    These technologies help us understand how visitors interact with the Platform by collecting and reporting information. This data is used exclusively to improve the Platform's usability and performance, and is not shared with any third party.

    Name / KeyTypePurposeDuration
    digitherapy:onboarding-eventslocalStorageStores questionnaire funnel analytics events (step views, step completions, skips) locally to help us understand and improve the onboarding experience.Until cleared or registration
    Browser Fingerprint (FingerprintJS)Runtime APIGenerates a pseudonymous visitor identifier using publicly available browser attributes. Used for cross-session continuity, fraud prevention, and therapist matching recommendations. Does not reveal your identity.Page lifecycle / 24 months server-side

    3.4 Third-Party Cookies & Technologies

    Certain third-party services integrated into our Platform may set their own cookies. We do not control these cookies. Please refer to each provider's respective privacy and cookie policies:

    • Google Fonts:Font files loaded from Google's servers. Google may set cookies or collect IP and browser information. Google Privacy Policy
    • Khalti (Payment):When you make a payment, Khalti's embedded widget may set cookies required for payment processing and fraud prevention. Khalti Privacy Policy
    • Zoom (Video Sessions): During video sessions, Zoom may set cookies required for session management and real-time communication. Zoom Privacy Statement
    • OAuth Providers (Google, GitHub, Facebook, LinkedIn): When you sign in via social login, the respective provider's authentication flow may set cookies in your browser.

    4. Managing Your Cookie Preferences

    You can manage your cookie preferences in the following ways:

    4.1 Our Cookie Consent Banner

    When you first visit our Platform, we display a cookie consent banner that allows you to accept or decline non-essential cookies. You can change your preferences at any time by clicking the "Cookie Settings" link in the footer of any page.

    4.2 Browser Settings

    Most web browsers allow you to control cookies through their settings. You can usually find these settings in the "Options," "Preferences," or "Settings" menu of your browser. You can set your browser to:

    • Block all cookies.
    • Accept only first-party cookies.
    • Delete cookies when you close your browser.
    • Notify you when a cookie is being set so you can choose whether to accept it.

    Please note that blocking or deleting cookies may impact your experience on the Platform and may prevent certain features from functioning correctly.

    4.3 Clearing Web Storage

    You can clear localStorage and sessionStorage data by:

    • Using your browser's developer tools (usually accessible via F12 → Application → Storage).
    • Clearing your browser's browsing data / site data.
    • Using the "Clear Data" functionality within your account settings (when available).

    5. Do Not Track Signals

    Some browsers include a "Do Not Track" (DNT) feature that signals to websites that you do not wish to be tracked. Because there is no universally accepted standard for interpreting DNT signals, our Platform does not currently respond to DNT signals. However, we respect your privacy choices and encourage you to use our cookie consent banner and browser settings to manage your tracking preferences.

    6. Changes to This Cookie Policy

    We may update this Cookie Policy from time to time to reflect changes in the technologies we use, legal requirements, or our data practices. When we make material changes, we will update the "Last Updated" date at the top of this page and provide notice through the Platform. We encourage you to review this Cookie Policy periodically.

    7. Contact Us

    If you have any questions about this Cookie Policy or our use of cookies and similar technologies, please contact us:

    • Email: [email protected]
    • Postal Address: Digi Therapy, Inc., Kathmandu, Nepal

    © 2026 Digi Therapy, Inc. All rights reserved. | Privacy Policy | Terms & Conditions