Cookie Policy
Effective Date: May 15, 2026
Last Updated: May 15, 2026
This Cookie Policy explains how Stratir LLC, a Wyoming limited liability company doing business as LIMITLESS ("LIMITLESS," "we," "our," or "us"), uses cookies and similar technologies when you access or interact with the LIMITLESS website located at limitless-osint.com and all related services (collectively, the "Service"). This policy is provided in compliance with the EU ePrivacy Directive (2002/58/EC as amended by 2009/136/EC), the General Data Protection Regulation (EU) 2016/679 ("GDPR"), the UK Privacy and Electronic Communications Regulations ("UK PECR"), the California Consumer Privacy Act as amended by the California Privacy Rights Act ("CCPA/CPRA"), Brazil's Lei Geral de Protecao de Dados ("LGPD"), and all other applicable cookie and tracking technology laws worldwide. This Cookie Policy should be read together with our Privacy Policy and Terms of Service.
1. WHAT ARE COOKIES AND SIMILAR TECHNOLOGIES?
Cookies are small text files that are placed on your device (computer, smartphone, or tablet) by a website when you visit it. Cookies are widely used to make websites function, to function more efficiently, and to provide reporting and analytics information to website operators.
Cookies can be classified by several characteristics:
- First-party cookies are set directly by the website you are visiting. They can only be read by that website.
- Third-party cookies are set by a domain other than the website you are visiting, typically by external services embedded in the page (such as analytics providers, advertising networks, or social media platforms).
- Session cookies are temporary and are deleted from your device when you close your browser.
- Persistent cookies remain on your device for a defined period or until you manually delete them.
In addition to cookies, websites may use similar technologies such as web beacons (pixel tags), local storage (HTML5), and fingerprinting scripts. This policy covers all such technologies collectively.
2. OUR COOKIE PHILOSOPHY: ESSENTIAL ONLY
LIMITLESS is committed to a privacy-first approach. We use only cookies that are strictly necessary for the Service to function. We do not use:
- Analytics or performance cookies (e.g., Google Analytics, Mixpanel, Hotjar)
- Advertising or targeting cookies (e.g., Google Ads, Facebook Pixel, retargeting tags)
- Social media tracking cookies
- Cross-site tracking technologies
- Browser fingerprinting scripts
- Web beacons or pixel tags for marketing purposes
Because we use only strictly necessary cookies, we do not display a cookie consent banner. Under the ePrivacy Directive, GDPR, and UK PECR, strictly necessary cookies are exempt from the requirement to obtain prior consent, as they are essential for the provision of a service explicitly requested by the user.
3. COOKIES WE USE
The following table provides a complete inventory of the cookies set by the Service:
| Cookie Name | Type | Purpose | Duration | Party |
|---|---|---|---|---|
| session_token | Strictly Necessary | Authenticates your login session. Contains a cryptographically random token (not Personal Data). Set as HTTP-only, Secure, and SameSite=Lax to prevent cross-site request forgery. | 7 days or until logout | First-party |
| locale | Strictly Necessary | Stores your selected language preference so the Service can display content in your chosen language across page navigations. | 365 days | First-party |
This is a complete and exhaustive list. We do not set any cookies beyond those listed above. If we introduce additional cookies in the future, this policy will be updated accordingly, and where required by law, we will obtain your consent before setting non-essential cookies.
4. LOCAL STORAGE AND SESSION STORAGE
In addition to cookies, the Service may use your browser's local storage or session storage mechanisms for the following strictly necessary purposes:
- Theme preferences: To remember your selected display theme (e.g., light or dark mode) across sessions without requiring server round-trips.
- Temporary UI state: To preserve the state of interactive elements (such as sidebar collapse state or active tab selections) during your current browsing session. This data is cleared when you close your browser tab.
Local storage and session storage data are stored only on your device, are never transmitted to our servers, and contain no Personal Data or tracking identifiers.
5. THIRD-PARTY COOKIES AND SERVICES
The Service does not embed any third-party cookies. However, when you interact with certain features, data may be transmitted to third-party services as described below. These services do not set cookies on your device through the Service:
- Stripe (Payment Processing): When you initiate a purchase, you are redirected to Stripe's hosted checkout page. Stripe may set its own cookies on its domain (stripe.com) during the checkout process. These cookies are governed by Stripe's Privacy Policy and are not set on our domain.
- Google (OAuth Authentication): If you choose to sign in with Google, you are briefly redirected to Google's authentication servers. Google may set cookies on its domain (google.com) as part of its OAuth flow. These cookies are governed by Google's Privacy Policy and are not set on our domain.
We do not control the cookies set by these third-party services on their own domains. We encourage you to review their respective privacy and cookie policies.
6. LEGAL BASIS FOR COOKIE USE
Our use of cookies is based on the following legal frameworks:
| Jurisdiction | Applicable Law | Legal Basis |
|---|---|---|
| European Economic Area | ePrivacy Directive, GDPR | Strictly necessary exemption (Art. 5(3) ePrivacy Directive); Legitimate interest (Art. 6(1)(f) GDPR) |
| United Kingdom | UK PECR, UK GDPR | Strictly necessary exemption (Reg. 6 PECR); Legitimate interest |
| United States (California) | CCPA/CPRA | Essential cookies are not considered "sale" or "sharing" of Personal Data. No opt-out required. |
| Brazil | LGPD | Legitimate interest (Art. 7, X LGPD); strictly necessary for service provision |
| Canada | PIPEDA | Implied consent for essential functionality cookies |
| South Africa | POPIA | Legitimate interest; necessary for service delivery |
Because we deploy only strictly necessary cookies, we are not required to obtain prior consent under any of the jurisdictions listed above. If we ever introduce non-essential cookies (such as analytics or advertising cookies), we will implement a compliant cookie consent mechanism before deploying them.
7. HOW TO MANAGE AND DELETE COOKIES
Although our cookies are strictly necessary and the Service may not function correctly without them, you retain full control over cookies through your browser settings. You can:
- View and delete individual cookies stored on your device.
- Block all cookies or only third-party cookies.
- Configure your browser to prompt you before accepting cookies.
- Clear all cookies when you close your browser.
Instructions for managing cookies in common browsers:
- Google Chrome: Settings > Privacy and Security > Cookies and other site data
- Mozilla Firefox: Settings > Privacy & Security > Cookies and Site Data
- Apple Safari: Preferences > Privacy > Manage Website Data
- Microsoft Edge: Settings > Privacy, Search, and Services > Cookies and site permissions
Please be aware that if you disable or delete the session authentication cookie, you will be logged out of the Service and will need to sign in again. Disabling the locale cookie will reset your language preference to the default.
8. DO NOT TRACK AND GLOBAL PRIVACY CONTROL
Some web browsers transmit "Do Not Track" ("DNT") signals to websites. Because there is no universally accepted standard for interpreting DNT signals, the Service does not currently respond to DNT signals. However, because we do not use any tracking, analytics, or advertising cookies, the practical effect is equivalent to honoring a DNT request.
We recognize and honor Global Privacy Control ("GPC") signals as a valid opt-out preference signal under the CCPA/CPRA. Because we do not sell or share Personal Data and do not use tracking cookies, no additional action is required upon receiving a GPC signal, but the signal is acknowledged and respected.
9. CHILDREN AND COOKIES
The Service is not directed at individuals under the age of eighteen (18). We do not knowingly set cookies on the devices of children under eighteen. Our strictly necessary cookies are set only when a user actively accesses the Service and creates an Account, which requires the user to be at least eighteen years of age.
10. CHANGES TO THIS COOKIE POLICY
We may update this Cookie Policy from time to time to reflect changes in our cookie practices, the technologies we use, applicable laws, or other operational factors. When we make changes, we will update the "Effective Date" and "Last Updated" date at the top of this page. If we introduce non-essential cookies that were not previously described in this policy, we will provide prominent notice through the Service and, where required by applicable law, obtain your consent before deploying such cookies.
We encourage you to review this Cookie Policy periodically to stay informed about our use of cookies.
11. CONTACT US
If you have any questions, concerns, or requests regarding this Cookie Policy or our use of cookies, please contact us at:
Stratir LLC, d/b/a LIMITLESS
Cookie and Tracking Technology Inquiries
Email: vance@stratir.com
Website: limitless-osint.com
For broader data protection inquiries, including exercising your rights under the GDPR, CCPA/CPRA, or other applicable privacy laws, please refer to our Privacy Policy.
If you are located in the European Economic Area or the United Kingdom and are not satisfied with our response, you have the right to lodge a complaint with your local data protection supervisory authority.