Effective Date: June 6, 2026 Version: 1.7
This is an informational document regarding how OneClick AI Solutions s.r.o. (hereinafter referred to as "we", "us") uses cookies and similar tracking technologies on the website www.sweetbun.ai (hereinafter referred to as the "Service").
This Policy supplements our Privacy Policy:
OneClick AI Solutions s.r.o. with its registered office at Sokolovská 428/130, Karlín, 186 00 Prague 8 ID No. (IČO): 23948353 Tax ID (DIČ): CZ23948353
In case of questions, please contact us at: support@sweetbun.ai.
Cookies are small text files that a website stores on your computer or mobile device the moment you start using it. Cookies allow us to remember your actions and preferences (e.g., login, language, font size) for a certain period of time, so you do not have to re-enter them.
In addition to cookies, we also use Local Storage (local browser storage), which works similarly but allows storing a larger volume of data (e.g., chat history with an AI Character before sending it to the server).
We divide cookies into three main categories according to their purpose:
These are necessary for the proper functioning of the website. Without them, it would not be possible to log in, complete checkout, or use the chat. We do not need your consent to use them.
| Name / Provider | Purpose | Duration |
|---|---|---|
| sb-*-auth-token (Supabase) | Keeps you logged in (authentication session). May be split across multiple .0 / .1 chunks when the JWT exceeds cookie size limits. | Persistent (until logout) |
| NEXT_LOCALE | Remembers the language you have chosen for the interface. | 1 year |
| sweetbun-cookie-consent (cookie) + sweetbun-cookie-consent-v2 (Local Storage) | The Local Storage entry is the canonical record of your granular cookie choices. The cookie is a server-readable boolean mirror so middleware and our Conversions API integration can gate calls on consent. | 1 year |
| sweetbun_sale_end | Records when your current promotional offer expires so the discount countdown stays consistent across pages. | 7 days |
| sweetbun_onboarded | Marks your account as onboarded so we can skip the age-verification database check on subsequent pages. | 1 year |
| Finby session cookies | Set by Finby inside the payment iframe for payment security and fraud prevention during card payment. | Session |
| _dgt_sess (Dognet) | Carries an affiliate click identifier for the duration of your visit so a referred signup or purchase can be attributed to the correct partner. Session-scoped and cleared when you close the browser. | Session |
Note on legacy keys: users who first visited under the previous brand still carry leezatko-cookie-consent, leezatko_sale_end, and leezatko_onboarded cookies. We continue to read them for one-time migration to the current keys; we no longer write new values to them.
These cookies help us understand how you use the website (e.g., which pages you visit most often). Data is anonymized and aggregated. We require your consent to use them.
| Name / Provider | Purpose | Duration |
|---|---|---|
| _ga (Google Analytics 4) | Main cookie for distinguishing users (anonymized ID). | 2 years |
| ga<container-id> | Maintains session status in Google Analytics. | 2 years |
In addition to the data collected by the Google Analytics tag in the browser, we transmit certain key conversion events (e.g., subscription purchase, renewal, refund and sign-up) to Google Analytics 4 server-side via the Measurement Protocol, using the same pseudonymous _ga identifier. These events include the transaction value and the product purchased (e.g., the plan or add-on name) and whether you are a new or returning customer. This server-side measurement happens only when you granted analytics consent (i.e., when the _ga cookie exists) and we do not send your IP address in these server-side events.
These cookies serve to track visitors across websites. The intention is to display ads that are relevant and interesting to the specific user and to measure conversions. We require your consent to use them.
| Name / Provider | Purpose | Duration |
|---|---|---|
| _gcl_au, _gads (Google Ads) | Measures the effectiveness of advertising campaigns and tracks conversions (e.g., subscription purchases). | 90 days |
| _fbp, _fbc (Meta Pixel) | Tracks visitors across websites to display relevant Facebook/Instagram ads and measure ad conversions. The values are also sent to the Meta Conversions API from our server. | 90 days |
| _fprom_tid, _fprom_ref (FirstPromoter) | Affiliate referral tracking so the partner who referred you is credited for your signup or purchase. | 90 days |
| _dgtvid (Dognet) | Affiliate referral tracking so the partner who referred you is credited for your signup or purchase after your session ends. Set only after marketing consent. | 30 days |
In addition to the values set by the Meta Pixel script in the browser, we synthesize _fbp and _fbc server-side from our middleware — only after marketing consent has been recorded — so the same identifiers are available to our Conversions API integration. Without marketing consent the middleware does not write these cookies and the Conversions API is not called.
Upon your first visit to our website, a Cookie Banner will appear. Here you have the option to:
You can change or withdraw your consent at any time by clicking the Cookie Settings link in the footer of the website. This opens the cookie preferences dialog with your current choices loaded so you can change individual categories at any time. Withdrawing consent does not affect the lawfulness of processing carried out before the withdrawal.
In addition to our banner, you can manage cookies directly in your browser. However, please note that blocking all cookies (including technical ones) may cause you to be unable to log in or use the chat with AI.
Instructions for the most common browsers:
We use Google Analytics 4 and Google Ads services provided by Google Ireland Limited. Google Analytics 4 does not log or store your IP address; the IP is used only momentarily to derive coarse geography and is then discarded. Google Ads allows us to measure the effectiveness of our advertising campaigns. We implement Google Consent Mode v2 — without your consent, Google receives only pseudonymous, cookieless signals. In addition to the in-browser tag, we measure key conversions (e.g., purchase, renewal, refund, sign-up) server-side via the Google Analytics 4 Measurement Protocol, using the pseudonymous _ga identifier together with the transaction value, the purchased product (plan or add-on name) and a new/returning customer indicator, only when analytics consent was granted and without transmitting your IP address.
More information about data protection at Google can be found here:
We use the Meta Pixel (in the browser) and the Meta Conversions API (server-to-server) provided by Meta Platforms Ireland Limited. These services help us measure the effectiveness of our advertising on Facebook and Instagram, and enable us to show relevant ads to users who have visited our website.
The Meta Pixel script (fbevents.js) is not loaded until you grant marketing consent — the browser does not contact Meta servers before your decision. The Meta Conversions API is similarly gated: server-side events (e.g., signup, purchase, renewal and refund) are only transmitted to Meta when you had granted marketing consent at the time of the action. These events may include the transaction value, the purchased product (plan or add-on name) and a new/returning customer indicator. We do not rely on Meta's Limited Data Use (LDU) flag as a substitute for consent; declined-consent visitors are not sent to Meta in either channel.
More information about data protection at Meta can be found here:
If you arrive at our website via a partner (affiliate) link, FirstPromoter sets a referral cookie so the partner who recommended us is credited for your signup or purchase. This cookie is only set after you grant marketing consent.
More information:
We use the Dognet affiliate network to track referrals from partner (affiliate) links. The integration is server-to-server — Dognet sets no third-party scripts in your browser. When you arrive via a Dognet affiliate link, we record an affiliate visitor identifier for the duration of your visit in the session cookie _dgt_sess so a referred signup or purchase can be attributed. We store this identifier in the persistent cookie _dgtvid (30 days) only after you grant marketing consent, so attribution can survive after the session ends. If you make a purchase, we report the sale to Dognet from our server (order value, currency, order reference, and the affiliate visitor identifier).
More information:
We may update this Policy from time to time (e.g., due to changes in legislation or the deployment of new tools). The current version is always available on this page.