This Cookie Policy explains how XEEP PLT (Company Registration No. 202504002688) ("Xeep," "we," "us," or "our") uses cookies and similar tracking technologies on our website at xeep.io and related web services. This policy should be read in conjunction with our Privacy Policy, which provides comprehensive information about how we collect, use, and protect your personal data.
By using our website and web-based services, you consent to the use of cookies as described in this Cookie Policy. You have the right to manage your cookie preferences as explained in Section 5 below.
What Are Cookies?
Cookies are small text files that are stored on your device (computer, smartphone, or tablet) when you visit a website. Cookies allow websites to recognize your device, remember your preferences, analyze how you use the site, and provide enhanced functionality. Cookies are widely used to make websites work more efficiently and to provide information to website owners.
Cookies can be "persistent" or "session" cookies. Persistent cookies remain on your device for a set period of time or until you delete them. Session cookies are temporary and are deleted when you close your web browser.
We use the following categories of cookies on our website:
1.1 Essential Cookies (Always Active)
These cookies are strictly necessary for our website to function and cannot be switched off in our systems. We use 6 essential cookies to ensure security, authentication, and core functionality. They enable core functionality such as security, account authentication, and remembering your cookie preferences. Without these cookies, essential services and features you have requested cannot be provided.
xeep_auth_token
Purpose: Maintains your login session after you sign in to your Xeep account
Duration: 1 day (24 hours)
Type: First-party, HTTP-only for security
Data Stored: Encrypted Firebase authentication token
Why Essential: Required for you to access your dashboard, view your health data, and use personalized features
xeep_csrf_token
Purpose: Protects against Cross-Site Request Forgery (CSRF) attacks when you submit forms
Duration: Session (deleted when browser closes)
Type: First-party, HTTP-only
Data Stored: Random security token
Why Essential: Prevents unauthorized actions on your account and protects your security
xeep_consent
Purpose: Stores your cookie consent preferences
Duration: 1 year
Type: First-party
Data Stored: Your consent choices (essential, analytics, performance)
Why Essential: Remembers your cookie preferences so we don't ask repeatedly
1.2 Preference Cookies (With Your Consent)
These cookies allow our website to remember choices you make (such as your theme preference or language) and provide enhanced, personalized features. They may be set by us or by third-party providers whose services we use on our pages.
xeep_theme
Purpose: Remembers whether you prefer light mode, dark mode, or system default theme
Duration: 1 year
Type: First-party
Data Stored: "light", "dark", or "system"
Opt-Out: You can disable this cookie, but theme preference will reset each visit
xeep_dashboard_prefs
Purpose: Remembers your dashboard layout preferences and customizations
Duration: 7 days
Type: First-party
Data Stored: JSON object with dashboard settings (default view, chart type, date range)
Opt-Out: You can disable this cookie, but customizations will be lost
1.3 Analytics and Performance Cookies (With Your Consent)
These cookies help us understand how visitors interact with our website by collecting and reporting information anonymously. This helps us improve how our website works and identify areas that need enhancement. All analytics cookies require your explicit consent before being activated.
xeep_analytics_session
Purpose: Tracks your anonymous session for usage analytics
Duration: 30 days
Type: First-party
Data Stored: Anonymous session UUID (e.g., "550e8400-e29b-41d4-a716-446655440000")
What We Track: Page views, feature usage, navigation patterns, time on page
Privacy: Session ID cannot be linked to your identity or health data
Opt-Out: You can disable this in cookie preferences
1.4 Marketing Cookies (Not Currently Used)
We do NOT currently use any marketing or advertising cookies. We do not engage in targeted advertising, remarketing, or tracking for advertising purposes across other websites or platforms.
We Do NOT Use Marketing Cookies: Xeep does not use any marketing, advertising, or remarketing cookies. We do not track users for advertising purposes.
2. Third-Party Cookies
Some cookies on our website are set by third-party services that we use to provide enhanced functionality and security. These third parties have their own privacy policies and cookie policies.
Firebase Authentication and Services (Google LLC)
Purpose: Provides secure user authentication, database services, and security features
Cookies Set: Various Firebase session management cookies
Opt-Out: Cannot be disabled during payment; required for secure transactions
3. How We Use Cookies
3.1 Authentication and Security
We use cookies to keep you securely logged in to your Xeep account and to protect your account from unauthorized access. When you log in, we set authentication cookies that identify you as a valid user for your session. These cookies are essential for platform security and cannot be disabled.
3.2 Remembering Your Preferences
We use cookies to remember choices you make about how you want to use our website, such as your preferred theme (light or dark mode), dashboard customizations, and display settings. This enhances your user experience by maintaining your preferences across sessions.
3.3 Understanding Usage Patterns
With your consent, we use analytics cookies to understand how users navigate our website, which features are most used, where users encounter difficulties, and how we can improve the user experience. This information is aggregated and anonymized, helping us make data-driven decisions about platform improvements.
3.4 Performance Monitoring
With your consent, we use performance cookies to monitor website loading times, API response speeds, and technical performance. This helps us identify and resolve performance bottlenecks, ensuring our platform runs smoothly for all users.
4. Managing Your Cookie Preferences
4.1 Cookie Consent Banner
When you first visit our website, you will see a cookie consent banner that allows you to choose which types of cookies you wish to accept. You have three options:
Accept All
Accepts all cookies including analytics and performance cookies. This provides the best user experience and helps us improve our services.
Essential Only
Accepts only essential cookies required for website functionality. Analytics and performance cookies will be disabled. You can still use all core features, but we won't be able to collect anonymous usage data to improve the platform.
Customize
Allows you to select specific cookie categories. You can enable or disable analytics and performance cookies individually while keeping essential cookies active.
4.2 Changing Your Preferences
You can change your cookie preferences at any time by:
In addition to cookies, our website may use other browser storage technologies that function similarly to cookies:
5.1 Local Storage
Local storage allows websites to store larger amounts of data on your device compared to cookies. Unlike cookies, local storage data is not sent to the server with every request. We may use local storage for:
Temporarily caching dashboard data for faster loading
Session storage is similar to local storage but is cleared when you close your browser tab or window. We may use session storage for:
Temporary state management during your browsing session
Form data preservation while navigating between pages
Transient user interface settings
6. Mobile Applications
Important Note
This Cookie Policy applies only to our website (xeep.io). Our mobile applications for iOS and Android do NOT use browser cookies because they are native applications, not web browsers.
Mobile App Data Storage:
iOS: Uses UserDefaults for preferences and Keychain for secure authentication
Android: Uses SharedPreferences and EncryptedSharedPreferences
Privacy: Mobile app data storage is covered by our Privacy Policy, not this Cookie Policy
7. Updates to This Cookie Policy
We may update this Cookie Policy from time to time to reflect changes in:
The cookies we use
Cookie regulations or legal requirements
Third-party services we integrate
User feedback and best practices
Material Changes:
Email notification to all registered users
Prominent notice on website
Updated consent required at next visit
30-day notice period before changes take effect
Non-Material Changes:
Updated "Last Updated" date at top of policy
Notification in monthly newsletter
Notice in cookie banner if you haven't accepted updated policy
8. Contact Us
If you have questions about our use of cookies or this Cookie Policy, please contact us:
XEEP PLT Company Registration No. 202504002688 Registered Address: B-01-09 Savanna Lifestyle Retail, Jalan BBL2, Dengkil, Selangor, Malaysia Website: https://xeep.io
9. Legal Compliance
9.1 Malaysia Personal Data Protection Act (PDPA)
This Cookie Policy is designed to comply with the Personal Data Protection Act 2010 of Malaysia. Under the PDPA, we are required to inform you about how we collect and use your personal data, including through cookies and similar technologies.
You have rights under the PDPA including:
The right to know what personal data we collect through cookies
The right to withdraw consent for non-essential cookies
The right to access cookie-related data we hold about you
The right to complain to the Personal Data Protection Commissioner if you believe we have mishandled your data
9.2 GDPR Considerations (For EU Visitors)
While our primary market is Malaysia, we recognize that some visitors to our website may be located in the European Union. For these visitors, our cookie practices align with the General Data Protection Regulation (GDPR) requirements:
We obtain explicit consent before setting non-essential cookies
We provide clear information about cookie purposes and durations
We offer granular consent controls
We allow users to withdraw consent easily at any time
We maintain records of consent
10. Cookie Reference Table
For quick reference, here is a summary table of all cookies we use:
Cookie Name
Category
Essential
Duration
Purpose
Provider
xeep_auth_token
Authentication
Yes
1 day
User session authentication
Xeep (First-party)
xeep_csrf_token
Security
Yes
Session
CSRF protection
Xeep (First-party)
xeep_consent
Essential
Yes
1 year
Cookie consent storage
Xeep (First-party)
xeep_theme
Preference
No
1 year
Theme preference (light/dark)
Xeep (First-party)
xeep_analytics_session
Analytics
No
30 days
Usage analytics tracking
Xeep (First-party)
_GRECAPTCHA
Security
Yes
6 months
Bot protection
Google (Third-party)
Summary Statistics:
Total Active Cookies: 13 (10 first-party + 3 third-party services)
By continuing to use our website after being presented with our cookie consent banner, you acknowledge that you have read and understood this Cookie Policy and consent to our use of cookies in accordance with the preferences you have selected.
You may withdraw or modify your consent at any time by adjusting your cookie preferences through the methods described in Section 4 above.
Last Updated: 24 October 2025 | Effective Date: 24 October 2025 | Version: 1.0
This Cookie Policy is governed by the laws of Malaysia.