Skip to main content
Didit Raises $2M and Joins Y Combinator (W26)
Didit
Didit
Cookies Policy
Updated May 16, 2026 · didit.me/terms/cookies
Legal

Cookies Policy

Updated: May 16, 2026

On this page

This Cookies Policy explains how Didit uses cookies and similar technologies on `didit.me` and other Didit-operated websites, what categories of cookies are set, how you can control them, and how Didit responds to browser-based privacy signals.

1. What are cookies?

Cookies are small text files placed on your device by a website you visit. They store information such as the website's name, a unique session or user identifier, and your preferences. "Similar technologies" include pixels, web beacons, software development kit (SDK) identifiers on mobile, local storage, and server-set tokens that perform the same functions as cookies.

First-party cookies are set by Didit itself; third-party cookies are set by services Didit embeds (for example, a YouTube video player).

2. How we use cookies

We use cookies to:

  • keep the site functional (load balancing, session continuity, security);
  • remember your cookie-consent choices;
  • measure how visitors use the site (page views, navigation paths, performance);
  • attribute marketing campaigns (which channel brought you to didit.me);
  • enable embedded media (YouTube videos, code snippets); and
  • support fraud and abuse prevention on the marketing site itself.

We do not use cookies on the marketing site for behavioral advertising profiles, cross-context behavioral advertising, or for any form of sale or sharing of personal information as defined by the California Consumer Privacy Act (CCPA) / California Privacy Rights Act (CPRA).

3. Categories of cookies we use

Strictly necessary — required for the site to operate (security, load balancing, consent storage). Always on; cannot be rejected because the site does not function without them.

Performance and analytics — measure traffic, page performance, and broad usage patterns in aggregate. Off by default; on only after you click "Accept" in the cookie banner.

Attribution — record which marketing source brought a visitor to didit.me (campaign, channel, referrer) so we can measure the effectiveness of marketing spend. First-party, owned and set by Didit (no third-party advertising network is involved). Off by default; on only after consent.

Embedded media — set by third-party media players we embed (for example, YouTube) when you play a video. Off until you interact with the embedded media.

4. Your choices — the cookie banner

On your first visit to `didit.me`, a cookie banner is shown with two equally prominent buttons: Accept all and Reject all. A Manage preferences option lets you accept or reject each non-essential category individually (analytics, attribution, embedded media). No non-essential cookie is set before you click Accept.

You can change your choices at any time by reopening the cookie banner via the "Cookie settings" link in the site footer, or by clearing the `didit_consent` cookie in your browser.

You can also block or delete cookies directly in your browser settings. Blocking strictly necessary cookies will break parts of the site (forms, sessions). Blocking analytics, attribution, or embedded-media cookies will not affect site functionality.

5. Browser-based privacy signals — Global Privacy Control (GPC) and Do Not Track (DNT)

Global Privacy Control (GPC). When your browser sends a Global Privacy Control signal (`Sec-GPC: 1`), Didit treats it as an opt-out of sale and sharing under the CCPA/CPRA and as an opt-out of analytics and attribution cookies. The GPC signal is recorded against the `didit_consent` cookie so that no analytics, attribution, or embedded-media cookie is set on that browser, regardless of any earlier banner choice.

Do Not Track (DNT). The legacy Do Not Track header has no industry-standard interpretation. Didit does not rely on DNT — please use the cookie banner or send a GPC signal. Most modern browsers and privacy extensions (DuckDuckGo, Brave, Firefox Privacy, etc.) emit GPC.

6. Special considerations for minors

We do not target advertising or use advertising cookies in sections of our website intended for younger users. If a customer uses Didit for age-related verification, the customer's own notices and consent flows govern that interaction.

7. International transfers

Some of the providers used to operate the website may transfer cookie-derived data outside the European Economic Area. Where required, Didit relies on the European Commission's 2021 Standard Contractual Clauses (SCCs) and the provider's own published transfer safeguards.

8. Updates to this Cookies Policy

Didit reviews and refreshes this policy at least every six months and whenever cookie usage materially changes. The effective date at the top reflects the last refresh.

9. Contact and complaints

For questions about this policy: privacy@didit.me.

If you believe Didit has handled cookies or personal data unlawfully, you may lodge a complaint with Didit's lead supervisory authority — the Spanish Data Protection Agency (Agencia Española de Protección de Datos / AEPD) at `aepd.es`, or with your local data-protection authority.

Didit Identity Spain, S.L. — CIF B22929327 · Calle Nápoles 227, P. 1, 08013 Barcelona, Spain
Didit Identity, Inc. — EIN 39-2860573 · 1111B S Governors Ave STE 34855, Dover, Delaware 19904, United States
© 2026 Didit · legal@didit.me · privacy@didit.me · security@didit.me · didit.me/terms/cookies

Have questions about a specific document?

Email legal@didit.me, privacy@didit.me, or security@didit.me — or message us on WhatsApp. We route you to the right contact.

Talk to us
Ask an AI to summarise this page