Cookie Policy
This Cookie Policy (“Cookie Policy”) explains how M-STROKE Ltd. (“the Company”, “we”, “us”, or “our”), a business company incorporated under the laws of the British Virgin Islands, uses cookies and similar tracking technologies on our website, M-STROKE.com (the “Website”).
This Cookie Policy is a free-standing instrument cross-referenced to our Privacy Policy and is accessible via the cookie consent banner and through a permanent link located in the footer of every page of the Website. In the event of any discrepancies between translated versions of this document, the English-language version shall prevail.
1. What Are Cookies and Similar Technologies?
A cookie is a small text file stored on your device when you visit a website. In addition to traditional cookies, this policy encompasses further technologies that are subject to statutory user consent regulations, including:
- Browser Local-Storage and Session-Storage Objects: Data stored directly inside your browser that persists either for the session duration or across multiple sessions.
- SDK Identifiers: Software Development Kit components embedded within digital interfaces to track interaction metrics.
- Pixels and Web Beacons: Minute, transparent graphic images used to confirm when specific content or emails are opened.
- Tracking URLs and Tags: Custom URL strings or code snippets deployed to identify referral traffic and behavioral attributes.
- Device-Fingerprinting Techniques: Technological processes used to identify unique devices based on browser parameters, operating system setups, and technical settings.
1.1 Technical Distinctions
- First-Party vs. Third-Party: First-party cookies are deployed directly by us from the M-STROKE.com domain. Third-party cookies are deployed by external service providers or partners (such as analytics firms and advertising networks).
- Session vs. Persistent: Session cookies automatically expire the moment you close your browser. Persistent cookies remain embedded on your device for a pre-determined validation period or until manually cleared.
2. Categorization of Cookies
In accordance with international privacy standards and judicial rulings (including the Court of Justice of the European Union in Case C-673/17, Planet49), we classify our cookies into the following distinct categories based on their operational necessity and required consent frameworks:
2.1 Strictly Necessary Cookies
Consent Required: No. These cookies are legally exempt from user consent mandates under Article 5(3) of the ePrivacy Directive and corresponding regional frameworks (such as the UK PECR).
Purpose: These cookies are indispensable to the core functionality, architecture, and regulatory compliance of the Website.
Indicative Applications: Managing secure user session identifiers; hosting Cross-Site Request Forgery (CSRF) protection tokens; logging your specific cookie consent choices; executing mandatory anti-fraud and anti-bot protocols essential to our Anti-Money Laundering (AML) obligations; and running IP-address geolocation checks required to enforce technical geo-blocking restrictions against Restricted Jurisdictions.
CRITICAL COMPLIANCE NOTICE: Disabling or blocking strictly necessary cookies via your browser settings will render the Website completely non-functional. Furthermore, tracking via these cookies is vital under United States federal securities law to verify that the M-STROKE utility token is not offered, distributed, or sold to restricted persons within Restricted Jurisdictions.
2.2 Preference and Functionality Cookies
Consent Required: Yes.
Purpose: To remember user configurations and provide enhanced, personalized interface experiences.
Indicative Applications: Retaining your selected language, geographical region, display preferences, and personalized layout settings.
2.3 Analytics and Performance Cookies
Consent Required: Yes.
Exceptions: Save for limited circumstances where first-party, contractually constrained, and heavily pseudonymized analytical services are permitted on a strict Member-State-by-Member-State basis under applicable local guidance.
Purpose: To gather aggregate diagnostic information, trace navigation paths, monitor user clicks, measure session durations, and analyze overall platform interaction patterns to help improve our services.
Indicative Applications: Google Analytics 4, Plausible, Mixpanel, and Hotjar.
2.4 Marketing and Advertising Cookies
Consent Required: Yes, in all instances.
Purpose: To deliver tailored promotional communications, trace the efficacy of cross-platform advertising campaigns, and build relevant interest profiles.
Indicative Applications: LinkedIn Insight Tag, X Pixel, Google Ads, and Meta Pixel.
3. The Consent Banner and User Control Mechanics
To ensure complete compliance with the ePrivacy Directive and the General Data Protection Regulation (GDPR), our custom cookie consent banner enforces the following technical standards:
- Prior Consent Block: No non-essential cookies (Preference, Analytics, or Marketing) will be set or read on your device prior to you providing a specific, freely given, informed, and unambiguous indication of your consent through a clear affirmative act.
- Equal Prominence: The "Reject All" option is presented with identical visual prominence as the "Accept All" option. Both selections feature equal coloring, size, contrast, and accessibility parameters to avoid manipulating your choice.
- No Dark Patterns: We completely reject deceptive or manipulative design choices (“dark patterns”). Remaining silent, continuing to browse, scrolling down a page, or simply closing the cookie banner will not be treated as consent.
- Granular Configuration: You are afforded full, granular toggle control to accept or reject cookies on a category-by-category basis.
- Simple Withdrawal: Withdrawing your consent is just as straightforward as giving it. You can alter your preferences at any time by clicking the persistent "Cookie Preferences" link located in the footer of our Website.
- Consent Lifecycles: M-STROKE maintains contemporaneous, secure back-end records of all user consents and refusals. Your cookie configuration selections will be sought afresh at intervals not exceeding twelve (12) months, or immediately upon any material change to our underlying data infrastructures.
4. Schedule of Active Cookies
We maintain a rigorous auditing schedule to review the active cookies on our Website at intervals not exceeding three (3) months. The table below lists the primary trackers deployed across M-STROKE.com:
| Cookie Name | Provider / Domain | Category | Purpose and Technical Function | Retention | Opt-Out / Link |
|---|---|---|---|---|---|
| __mstroke_session | First-Party | Strictly Necessary | Manages temporary secure user session states during platform interaction. | Session | Exempt from Opt-Out |
| __mstroke_csrf | First-Party | Strictly Necessary | Prevents Cross-Site Request Forgery security exploits. | Session | Exempt from Opt-Out |
| __mstroke_consent | First-Party | Strictly Necessary | Logs and preserves your selected cookie consent configurations. | 12 Months | Exempt from Opt-Out |
| __mstroke_geo | First-Party | Strictly Necessary | Processes IP geolocation to enforce technical blocking of Restricted Jurisdictions. | Persistent | Exempt from Opt-Out |
| _ga | Third-Party (Google LLC) | Analytics / Performance | Generates randomized identifiers to track pseudonymized Website usage data. | 2 Years | Google Privacy |
| _mixpanel | Third-Party (Mixpanel Inc.) | Analytics / Performance | Monitors navigation paths, button clicks, and custom interface interactions. | 1 Year | Mixpanel Privacy |
| _x_pixel | Third-Party (X Corp.) | Marketing / Advertising | Measures conversion events and tracks ad optimization on the X platform. | 90 Days | X Privacy |
| _linkedin_insight | Third-Party (LinkedIn Corp.) | Marketing / Advertising | Monitors demographic ad conversions and measures campaign performance. | 180 Days | LinkedIn Privacy |
5. Third-Party Disclosures & International Data Transfers
The activation of third-party cookies inevitably results in the transmission of certain technical identifiers (such as IP addresses and device specifications) to external vendors located outside the European Economic Area (EEA) and the United Kingdom. Because M-STROKE Ltd. operates within the British Virgin Islands (which does not hold an adequacy decision under Article 45 of the GDPR), all data flows initiated by these cookies rely on the European Commission's Standard Contractual Clauses (SCCs) and the UK International Data Transfer Addendum, supported by supplementary technological protection measures.
For further details regarding our international transfer frameworks, third-party categories, and your fundamental data subject rights, please consult our Privacy Policy.
6. Managing Tracking via Browser Settings
In addition to our on-site Cookie Preferences dashboard, you can restrict, block, or delete cookies directly via your browser settings. For detailed documentation, please visit the official help centers for the major modern browsers:
- Google Chrome
- Apple Safari
- Mozilla Firefox
- Microsoft Edge
- Brave Browser
7. Contact Information
If you have any questions or require additional information regarding this Cookie Policy or our data tracking practices, please reach out to our privacy management team:
- Data Protection Contact Email: privacy@m-stroke.com
- Corporate Address: M-STROKE Ltd., ASIA Leading Chambers, Road Town, Tortola VG1110, BVI.