Cookie Policy
OpsHero Tools - opshero.tools
Version 1.0 - Effective 20 May 2026
1. Introduction
1.1 This Cookie Policy explains how OpsHero OOD, UIC 202862235, with registered office at Sinanishko ezero 9A str., 1680 Sofia, Bulgaria ("OpsHero", "we", "us", or "our"), uses cookies and similar tracking technologies on the OpsHero Tools platform available at opshero.tools (the "Platform").
1.2 This Cookie Policy is incorporated into and forms part of the OpsHero Tools Privacy Policy and Terms of Service. Capitalised terms used but not defined in this Cookie Policy have the meanings set out in those documents.
1.3 By continuing to use the Platform, you acknowledge that you have read and understood this Cookie Policy. Your use of non-essential cookies requires your prior, explicit, opt-in consent through our cookie consent banner.
2. What are cookies and similar technologies
2.1 Cookies. Cookies are small text files that are placed on your device (computer, tablet, smartphone) when you visit a website. They are widely used to make websites work, to improve user experience, and to provide information to website operators.
2.2 Similar Technologies. In addition to cookies, the Platform may use:
- Local storage and session storage (browser storage mechanisms similar to cookies)
- Pixels (also called web beacons - small invisible images used to track behaviour)
- Scripts (small pieces of code that execute in your browser)
- Software development kits (SDKs) integrated into third-party tools we use
For convenience, this Cookie Policy refers to all of the above collectively as "cookies".
2.3 First-Party vs. Third-Party Cookies.
- First-party cookies are set by OpsHero directly and serve the Platform's own purposes.
- Third-party cookies are set by external services we integrate (such as analytics or marketing tools). The data collected by third-party cookies is processed by those third parties under their own privacy policies.
2.4 Session vs. Persistent Cookies.
- Session cookies are temporary and are deleted when you close your browser.
- Persistent cookies remain on your device for a defined period or until you delete them.
3. Legal basis for using cookies
3.1 Our use of cookies is governed by the EU ePrivacy Directive (Directive 2002/58/EC, as amended), the GDPR, and Bulgarian implementing legislation.
3.2 Cookies that are strictly necessary for the operation of the Platform may be set without your consent, as they are exempt under Article 5(3) of the ePrivacy Directive.
3.3 All other cookies - analytics, session replay, marketing, and any other non-essential cookies - require your prior, explicit, opt-in consent before they are placed on your device.
3.4 Your consent is collected via our cookie consent banner. You can withdraw your consent at any time (see Section 7).
4. Categories of cookies we use
We use the following categories of cookies on the Platform:
Category 1: Strictly Necessary
These cookies are essential for the Platform to function. They cannot be disabled. No consent required.
Category 2: Analytics
These cookies help us understand how visitors interact with the Platform so we can improve it. Consent required (opt-in).
Category 3: Session Replay & User Experience
These cookies allow us to record anonymised user sessions and generate heatmaps to identify usability issues. Consent required (opt-in).
Category 4: Marketing & Advertising
These cookies measure the effectiveness of our advertising campaigns and may be used by third-party advertising platforms to deliver targeted ads. Consent required (opt-in).
5. Detailed list of cookies
The following tables list the specific cookies set on the Platform, together with their provider, purpose, duration, and category.
5.1 Strictly necessary cookies (always active)
| Cookie | Provider | Purpose | Duration | Type |
|---|---|---|---|---|
opshero_session | OpsHero (first-party) | Maintains your session on the Platform (progress through a Tool, form state) | Session (deleted on browser close) | HTTP cookie |
opshero_csrf | OpsHero (first-party) | Protects against cross-site request forgery (CSRF) attacks on form submissions | Session | HTTP cookie |
opshero_legal_accepted | OpsHero (first-party) | Records that you have accepted the NDA, Terms of Service, and Privacy Policy within the current session | Session | HTTP cookie |
opshero_consent | OpsHero (first-party) | Records your cookie consent preferences (which categories you accepted or rejected) | 12 months | HTTP cookie |
__cf_bm | Cloudflare (third-party) | Bot management - distinguishes humans from bots to protect the Platform from abuse | 30 minutes (rolling) | HTTP cookie |
cf_clearance | Cloudflare (third-party) | Confirms your browser passed Cloudflare's security checks | 30 days | HTTP cookie |
5.2 Analytics cookies (consent required)
These cookies load only after you opt in through our cookie consent banner.
| Cookie | Provider | Purpose | Duration | Type |
|---|---|---|---|---|
_ga | Google Analytics 4 (Google Ireland Ltd) | Distinguishes unique users by assigning a randomly generated identifier | 24 months | HTTP cookie |
_ga_<container-id> | Google Analytics 4 (Google Ireland Ltd) | Stores session state for GA4 | 24 months | HTTP cookie |
_gid | Google Analytics (Google Ireland Ltd) | Distinguishes unique users (24-hour identifier) | 24 hours | HTTP cookie |
_gat, _gat_<container-id> | Google Analytics (Google Ireland Ltd) | Rate-limits requests to Google Analytics servers | 1 minute | HTTP cookie |
| Google Tag Manager container script | Google Ireland Ltd | Container that loads tagging scripts (only loads scripts within consented categories) | N/A | Script |
Note on Google Tag Manager (GTM): GTM itself does not set tracking cookies, but it manages the loading of other tags (such as Google Analytics, LinkedIn Insight Tag, and Microsoft Clarity). We have configured GTM to only fire tags that match your consent preferences.
5.3 Session replay & user experience cookies (consent required)
These cookies load only after you opt in through our cookie consent banner.
| Cookie | Provider | Purpose | Duration | Type |
|---|---|---|---|---|
_clck | Microsoft Clarity (Microsoft Corporation) | Persists the Clarity user ID and preferences for that user | 12 months | HTTP cookie |
_clsk | Microsoft Clarity (Microsoft Corporation) | Connects multiple page views by a single user into a single Clarity session recording | 24 hours | HTTP cookie |
CLID | Microsoft Clarity (Microsoft Corporation) | Identifies the first-time Clarity saw a particular user on the Platform | 12 months | HTTP cookie |
MUID | Microsoft (Microsoft Corporation) | Identifies unique web browsers visiting Microsoft sites; used for advertising, analytics, and operational purposes | 12 months | HTTP cookie |
ANONCHK | Microsoft (Microsoft Corporation) | Indicates whether MUID is transferred to ANID, a cookie used for advertising | 10 minutes | HTTP cookie |
SM | Microsoft (Microsoft Corporation) | Used in synchronising the MUID across Microsoft domains | Session | HTTP cookie |
Note on Microsoft Clarity privacy controls: Clarity is configured to mask all form inputs by default, including the name, email, and job role fields on the signup form. Session recordings do not capture the content of form fields or any uploaded configuration data.
5.4 Marketing & advertising cookies (consent required)
These cookies load only after you opt in through our cookie consent banner.
| Cookie | Provider | Purpose | Duration | Type |
|---|---|---|---|---|
li_sugr | LinkedIn (LinkedIn Ireland Unlimited Company) | Used to make a probabilistic match of a user's identity outside the Designated Countries | 90 days | HTTP cookie |
bcookie | LinkedIn (LinkedIn Ireland Unlimited Company) | Browser identifier cookie to uniquely identify devices accessing LinkedIn | 12 months | HTTP cookie |
lidc | LinkedIn (LinkedIn Ireland Unlimited Company) | Facilitates data center selection | 24 hours | HTTP cookie |
UserMatchHistory | LinkedIn (LinkedIn Ireland Unlimited Company) | LinkedIn Ads ID syncs | 30 days | HTTP cookie |
AnalyticsSyncHistory | LinkedIn (LinkedIn Ireland Unlimited Company) | Stores information about the time a sync took place with the lms_analytics cookie | 30 days | HTTP cookie |
lms_analytics | LinkedIn (LinkedIn Ireland Unlimited Company) | Identifies LinkedIn members in the Designated Countries for analytics | 30 days | HTTP cookie |
| LinkedIn Insight Tag script | LinkedIn Ireland Unlimited Company | Loads the LinkedIn Insight Tag for conversion tracking and audience building | N/A | Script |
Cookie durations and names for third-party services may change at the provider's discretion. We review and update this list periodically. The list above reflects the configuration as of the effective date of this Cookie Policy.
6. Third-party data transfers
6.1 Some of the third-party cookies above are operated by providers that process data outside the European Economic Area (EEA), primarily in the United States.
6.2 Where international transfers occur, we and our providers rely on appropriate safeguards under Chapter V GDPR, including:
| Provider | Processing location | Transfer mechanism |
|---|---|---|
| Google (Analytics, Tag Manager) | EU and USA | EU Standard Contractual Clauses (SCCs) + EU-U.S. Data Privacy Framework certification |
| Microsoft (Clarity) | EU and USA | EU Standard Contractual Clauses (SCCs) + EU-U.S. Data Privacy Framework certification |
| EU (Ireland) and USA | EU Standard Contractual Clauses (SCCs) + LinkedIn DPA | |
| Cloudflare | Global edge network | EU Standard Contractual Clauses (SCCs) + EU-U.S. Data Privacy Framework certification |
6.3 Note that no transfer to any of the analytics, session replay, or marketing providers takes place unless you have given consent through our cookie banner.
6.4 You may request more information about transfer safeguards by contacting [email protected].
7. How to manage your cookie preferences
7.1 Cookie consent banner
When you first visit the Platform, a cookie consent banner appears. The banner allows you to:
- Accept all cookies - gives consent to all categories
- Reject all non-essential cookies - only strictly necessary cookies are loaded
- Customise preferences - toggle consent per category (analytics, session replay, marketing)
No non-essential cookies are loaded on your device until you have made a choice.
7.2 Changing your preferences later
You can change your cookie preferences at any time by clicking the "Cookie Settings" link in the Platform footer. This re-opens the cookie banner and allows you to grant or withdraw consent per category.
7.3 Reconsent period
Your cookie consent is valid for twelve (12) months. After this period, we will ask you to renew your choices.
7.4 Browser-level controls
Most browsers allow you to control cookies through browser settings. You can:
- Block all cookies
- Block only third-party cookies
- Delete existing cookies
- Be notified when a cookie is set
Browser-specific instructions:
- Google Chrome: support.google.com/chrome/answer/95647
- Mozilla Firefox: support.mozilla.org/en-US/kb/cookies-information-websites-store-on-your-computer
- Apple Safari: support.apple.com/guide/safari/manage-cookies-sfri11471/mac
- Microsoft Edge: support.microsoft.com/en-us/microsoft-edge/delete-cookies-in-microsoft-edge
Note that disabling strictly necessary cookies through your browser may prevent the Platform from functioning correctly.
7.5 Do Not Track
We respect browser "Do Not Track" (DNT) signals. When DNT is enabled in your browser, we treat it as a request to reject all non-essential cookies, equivalent to rejecting all non-essential cookies in our consent banner.
7.6 Opt-out tools for specific providers
You can also opt out directly through some providers:
- Google Analytics opt-out: tools.google.com/dlpage/gaoptout
- LinkedIn opt-out: linkedin.com/help/linkedin/answer/a1339724 and through LinkedIn's account settings
- Microsoft Clarity opt-out: privacy.microsoft.com/en-us/privacystatement
8. Consequences of rejecting cookies
8.1 Rejecting non-essential cookies will not prevent you from accessing or using the Tools. The Platform's core functionality is provided through strictly necessary cookies.
8.2 However, rejecting non-essential cookies may mean:
- We cannot measure how the Platform is used and may have less insight into how to improve it
- We cannot identify usability problems through session recordings
- You may see less relevant content from OpsHero on third-party platforms (such as LinkedIn)
- Certain personalisation features may not work as designed
9. Children
9.1 The Platform is not intended for users under the age of 18. We do not knowingly collect personal data from individuals under 18, including through cookies.
10. Changes to this Cookie Policy
10.1 We may update this Cookie Policy from time to time to reflect changes in the cookies we use, in technology, or in legal requirements. The current version is identified by version number and effective date at the top of this document.
10.2 Material changes to the cookies we use - particularly the addition of new categories or new providers - will trigger a fresh consent prompt through the cookie banner.
10.3 Previous versions of this Cookie Policy are available upon request to [email protected].
11. Contact us
For questions about this Cookie Policy or our use of cookies:
OpsHero OOD
Sinanishko ezero 9A str.
1680 Sofia, Bulgaria
UIC: 202862235
- Privacy contact: Borislav Borislavov - [email protected]
- General privacy inquiries: [email protected]
- Legal inquiries: [email protected]
You also have the right to lodge a complaint with the Bulgarian Commission for Personal Data Protection (Комисия за защита на личните данни - КЗЛД):
- Address: 2 Prof. Tsvetan Lazarov Blvd., 1592 Sofia, Bulgaria
- Email: [email protected]
- Website: www.cpdp.bg