Cookie Policy

Effective date: May 24, 2026

Last updated: May 24, 2026

Plain-language summary (non-binding). We use cookies and similar technologies to make the site work, remember your settings, understand how it's used, and (only with your consent) measure marketing. You can change or withdraw consent any time through your browser or by contacting us. The full policy below is the binding version.

1. About This Policy

This Cookie Policy explains how Hermes ("Hermes", "we", "us", "our") uses cookies and similar tracking technologies on designwithhermes.com, app.designwithhermes.com, and the Hermes platform (collectively, the "Service"). It supplements our Privacy Policy, which describes how we process personal data more generally.

Capitalized terms not defined here have the meanings given in our Terms of Service.

2. What Are Cookies and Similar Technologies

"Cookies" are small text files placed on your device when you visit a website. They allow the site to recognize your browser, remember preferences, keep you signed in, and collect information about how the site is used.

We also use other technologies that operate similarly to cookies:

Local storage and session storage — key/value data stored by your browser; we use it to remember UI state and persist user preferences (for example, the campaign flag and pricing toggle on the LTD page).
Pixels and tracking tags — tiny images or scripts that record an event such as a page view or conversion.
SDKs — code libraries embedded in apps that perform analytics or other functions.
Server logs — automatic records of requests made to our servers.

Where this Policy refers to "cookies," it includes these similar technologies unless we say otherwise.

3. First-Party vs. Third-Party

"First-party" cookies are set by Hermes. "Third-party" cookies are set by our service providers or partners (such as analytics, payment, or advertising vendors). Third parties have their own privacy and cookie practices, which we link to where possible.

4. Categories of Cookies We Use

We classify cookies into four categories. Some are required for the Service to function (and cannot be turned off without affecting functionality). Others rely on your consent.

4.1 Strictly Necessary

Required for core functions like authentication, session management, security (e.g., CSRF protection), and load balancing. The Service cannot operate without them. These cookies do not require consent.

Name (example)	Provider	Purpose	Duration
session	Hermes	Maintain your signed-in session	Session
csrf_token	Hermes	Protect against cross-site request forgery	Session
cookie_consent	Hermes	Remember your cookie preferences	12 months

4.2 Functional / Preference

Remember choices you make to give you a better experience (such as language, region, theme, and the LTD pricing toggle).

Name (example)	Provider	Purpose	Duration
locale	Hermes	Remember your language	12 months
theme	Hermes	Remember light/dark UI choice	12 months
hermes-campaign (local storage)	Hermes	Remember whether the LTD campaign UI is enabled for this browser	Until cleared

4.3 Analytics / Performance

Help us understand how visitors interact with the Service so we can improve it. We use privacy-respecting analytics with IP truncation where supported and aggregate metrics by default.

Name (example)	Provider	Purpose	Duration
_ga, _ga_*	Google Analytics (if enabled)	Distinguish visitors and aggregate usage	Up to 24 months

4.4 Marketing

Used to measure campaign effectiveness and (where you've consented) deliver relevant content. We don't sell personal information and we don't engage in cross-context behavioral advertising for the purpose of building third-party audiences.

Name (example)	Provider	Purpose	Duration
_fbp	Meta (if enabled)	Conversion measurement for Meta Ads	Up to 90 days
_uetsid, _uetvid	Microsoft Bing (if enabled)	Conversion measurement for Microsoft Ads	Up to 13 months
li_oatml, li_sugr	LinkedIn (if enabled)	Conversion measurement for LinkedIn Ads	Up to 90 days

5. Third-Party Embeds

The Service may embed content from third parties (e.g., YouTube videos, Crisp chat, Stripe checkout, Google Fonts). Those embeds may set their own cookies. We have limited control over them; please consult their cookie/privacy policies for details. Examples:

Stripe — payment processing and fraud screening.
YouTube — embedded videos (we use privacy-enhanced mode where supported).
Crisp — chat widget for customer messaging.
Google Fonts — web fonts.

6. Local Storage Used by the Service

Some parts of the Service use browser local storage instead of cookies. Local storage values stay on your device, persist between sessions, and are not transmitted to us with each request:

hermes-campaign — flag indicating the LTD campaign UI is enabled in this browser.
hermes-pricing-mode — last-selected pricing toggle (Monthly / Lifetime).
Editor and dashboard UI preferences set during your session.

You can clear these values at any time from your browser's developer tools or by clearing site data.

7. Lawful Basis and Consent

We rely on the following lawful bases under GDPR/UK GDPR for cookie use:

Strictly necessary cookies — necessary for performance of a contract with you or for our legitimate interest in providing a functional and secure Service.
All other cookies — your consent, given through the cookie banner or equivalent control. You can withdraw consent at any time.

For visitors in jurisdictions where opt-out signals are required, we honor Global Privacy Control (GPC) signals as a CCPA opt-out for the browser session in which they are detected.

8. Managing and Withdrawing Consent

You can manage your cookie preferences in any of the following ways:

Cookie banner. Use the banner shown on your first visit, or open the cookie-settings link in the site footer to change your choices later.
Browser settings. Most browsers allow you to view, manage, and delete cookies and to block specific or all cookies. Help links: Chrome, Firefox, Safari, Edge.
Industry opt-outs. You can opt out of certain advertising cookies via aboutads.info (US), Your Online Choices (EU), or the Network Advertising Initiative.

Disabling strictly necessary cookies will break parts of the Service (e.g., you may not be able to sign in).

9. Changes to This Policy

We may update this Policy when our cookie use changes. We will post the updated Policy with a new "Last updated" date. Where required by law, we will obtain your consent again for material changes affecting non-essential cookies.

10. Contact

If you have questions about our cookie practices, contact us at hi@designwithhermes.com.