Cookie Policy

This Cookie Policy explains how Dope Menus, LLC ("Company," "we," "us," or "our") uses cookies, web beacons, pixel tags, and similar tracking technologies (collectively, "Cookies") on our B2B collaborative platform for Michigan's licensed cannabis industry (the "Platform").

BY USING THE PLATFORM, YOU CONSENT TO THE USE OF COOKIES AS DESCRIBED IN THIS POLICY. If you do not agree to our use of Cookies, you should disable them as described in Section 8 below or discontinue use of the Platform. This Cookie Policy supplements our Privacy Policy and Terms of Service.

IMPORTANT NOTICE: By continuing to use the Platform after being notified of our Cookie usage, you consent to the placement of Cookies on your device as described herein.

2.1 Definition and Function

Cookies are small text files placed on your computer, smartphone, tablet, or other device when you visit a website or use an application. Cookies contain information that is transferred to your device's hard drive and allow websites to recognize your device, remember your preferences, and improve your user experience.

2.2 Types of Cookies by Duration

• Session Cookies: Temporary cookies that expire when you close your browser. These enable basic Platform functionality during your browsing session.
• Persistent Cookies: Cookies that remain on your device for a specified period or until manually deleted. These remember your preferences across multiple sessions.

2.3 First-Party vs. Third-Party Cookies

• First-Party Cookies: Set directly by Dope Menus to enable Platform functionality and collect analytics data.
• Third-Party Cookies: Set by external service providers we partner with (e.g., analytics providers, POS integrations, cloud services).

2.4 Similar Tracking Technologies

In addition to cookies, we may use:

• Web Beacons (Pixel Tags): Small graphic images embedded in web pages or emails to track page views and email opens.
• Local Storage: HTML5 and browser storage technologies that allow data to be stored locally on your device.
• SDKs and APIs: Software development kits used for mobile app functionality and third-party integrations.
• Device Fingerprinting: Techniques that collect device and browser configuration data to create a unique identifier.

3.1 Essential/Strictly Necessary Cookies (Required)

These cookies are ESSENTIAL for the Platform to function properly and cannot be disabled in our systems. They enable core functionality such as security, network management, authentication, and accessibility. Without these cookies, the Platform cannot provide requested services.

Examples:

• Authentication cookies that remember your login status
• Security cookies that prevent fraudulent activity and protect user data
• Session management cookies that maintain your active session
• Load balancing cookies that distribute traffic across servers
• User interface customization cookies (language, accessibility settings)
• CSRF (Cross-Site Request Forgery) protection tokens

Duration: Session or up to 30 days | Can be disabled? No - Platform will not function without these cookies

3.2 Functional Cookies (Enhances Experience)

Functional cookies enable enhanced features and personalization. These cookies remember your choices and preferences to provide a more personalized experience. The Platform will still function if you disable these, but some features may be limited.

Examples:

• Preference cookies that remember your dashboard layout and display settings
• User role and permission cookies for customized interface elements
• Recently viewed products and search history
• Notification preferences and alert settings
• Saved filters and sort preferences in inventory views
• Language and regional preference cookies

Duration: Up to 12 months | Can be disabled? Yes - but functionality will be reduced

3.3 Analytics and Performance Cookies

These cookies collect information about how you use the Platform, which pages are visited most often, error messages encountered, and overall Platform performance. All data is aggregated and anonymized. This data helps us improve Platform functionality, diagnose technical issues, and optimize user experience.

Examples:

• Google Analytics or similar analytics service cookies
• Page view tracking and navigation flow analysis
• Load time and performance metrics
• Error tracking and crash reporting
• Feature usage statistics and adoption rates
• A/B testing and experimental feature tracking
• Heatmap and user interaction analysis

Duration: Up to 24 months | Can be disabled? Yes - via browser settings or opt-out mechanisms

3.4 Marketing and Advertising Cookies

Marketing cookies track your activity across websites to build a profile of your interests and deliver relevant advertisements. These cookies may be set by us or third-party advertising partners. We may use marketing cookies to show you information about our Services or relevant industry content.

Examples:

• Retargeting cookies that show Platform ads on other websites
• Email campaign tracking cookies (email opens, link clicks)
• Social media integration cookies (LinkedIn, Twitter/X, industry forums)
• Conversion tracking cookies that measure campaign effectiveness
• Cross-site tracking for advertising purposes

Duration: Up to 12 months | Can be disabled? Yes - you can opt out of marketing cookies

NOTE: We do NOT use cannabis product advertising cookies or track cannabis transactions for advertising purposes. Marketing cookies relate only to our B2B technology platform services and industry educational content.

4.1 Third-Party Services That Set Cookies

We integrate with various third-party services that may set cookies on your device when you use the Platform. These third parties have their own privacy policies and cookie policies governing their use of your data.

4.2 Categories of Third-Party Cookie Providers

• Analytics Providers: Google Analytics, Mixpanel, Amplitude (usage analytics and performance monitoring)
• Cloud Infrastructure: Amazon Web Services (AWS), Google Cloud Platform, Vercel (hosting and data storage)
• POS System Integrations: Flowhub, Treez, BioTrack, LeafLogix (inventory synchronization and transaction data)
• Compliance Systems: Metrc API integration for Michigan seed-to-sale tracking
• Communication Services: Email delivery providers (Resend, SendGrid), notification systems
• Security Providers: Cloudflare (DDoS protection, CDN), cybersecurity monitoring tools
• Payment Processing: Payment processors for Platform subscription fees (NOT for cannabis transactions)
• Customer Support Tools: Help desk and customer support chat systems

4.3 No Control Over Third-Party Cookies

WE DO NOT CONTROL THIRD-PARTY COOKIES. Third-party service providers operate independently and are responsible for their own data collection practices. We encourage you to review the privacy policies and cookie policies of these third parties. We are not responsible for the privacy practices or content of third-party websites or services.

4.4 Third-Party Links to Privacy Policies

Key third-party privacy policies:

• Google Analytics: policies.google.com/privacy
• Cloudflare: cloudflare.com/privacypolicy
• AWS: aws.amazon.com/privacy
• Metrc: metrc.com/privacy-policy

Note: Links are for informational purposes only. Please verify current URLs directly with service providers.

5.1 Cookie Retention Periods

Cookies have varying lifespans depending on their purpose:

• Session Cookies: Expire immediately when you close your browser (typically within minutes to hours)
• Authentication Cookies: 7 to 30 days (for persistent login; can be shorter if you log out manually)
• Functional Cookies: 30 days to 12 months (preference retention)
• Analytics Cookies: 90 days to 24 months (usage pattern analysis)
• Marketing Cookies: 30 days to 12 months (campaign tracking and retargeting)

5.2 Cookie Renewal

Persistent cookies may be renewed each time you visit the Platform, effectively extending their expiration date. This ensures continuous functionality and prevents disruption to your user experience.

5.3 Manual Cookie Deletion

You can manually delete cookies at any time through your browser settings (see Section 8). Deleting cookies will remove stored preferences and may require you to log in again.

6.1 Platform Functionality and Performance

• Authenticate users and maintain secure sessions
• Remember user preferences, settings, and customizations
• Enable core Platform features (inventory management, order coordination, analytics dashboards)
• Detect and prevent security threats, fraud, and abuse
• Load balance traffic and optimize server performance
• Diagnose technical problems and system errors

6.2 Analytics and Platform Improvement

• Analyze Platform usage patterns and user behavior
• Measure feature adoption and engagement rates
• Identify areas for improvement and optimization
• Conduct A/B testing and experimental feature rollouts
• Generate aggregated industry insights and benchmarks
• Monitor Platform performance, uptime, and reliability

6.3 Marketing and Communication

• Deliver relevant information about Platform updates and new features
• Measure effectiveness of marketing campaigns and communications
• Personalize content and recommendations based on usage patterns
• Retarget visitors with information about our Services
• Track email engagement (opens, clicks) for communication optimization

6.4 Compliance and Legal Obligations

• Maintain audit logs for regulatory compliance (Michigan Cannabis Regulatory Agency requirements)
• Detect and investigate suspected violations of Terms of Service
• Respond to legal requests, subpoenas, and law enforcement inquiries
• Enforce intellectual property rights and prevent unauthorized access

7.1 DNT Browser Settings

Some web browsers have a "Do Not Track" (DNT) feature that signals to websites that you do not want your online activities tracked. Currently, there is no universal standard for how websites should respond to DNT signals.

7.2 Our DNT Response

AT THIS TIME, THE PLATFORM DOES NOT RESPOND TO DNT SIGNALS. We do not alter our data collection and use practices when we detect a DNT signal from your browser. However, you can disable cookies as described in Section 8 to limit tracking.

7.3 Future DNT Compliance

If a universally accepted DNT standard is established in the future, we will evaluate compliance and update this policy accordingly. We will notify users of any changes to our DNT response practices.

8.1 Browser-Based Cookie Management

Most web browsers allow you to control cookies through browser settings. You can configure your browser to:

• Block all cookies
• Block only third-party cookies
• Delete cookies after each browsing session
• Receive notifications when cookies are being set
• Manually delete individual cookies

8.2 Browser-Specific Cookie Settings

Access cookie settings in popular browsers:

• Google Chrome: Settings → Privacy and Security → Cookies and other site data
• Mozilla Firefox: Settings → Privacy & Security → Cookies and Site Data
• Safari (macOS): Preferences → Privacy → Manage Website Data
• Microsoft Edge: Settings → Cookies and site permissions → Manage and delete cookies
• Brave: Settings → Shields → Cookies and other site data

Note: Cookie settings menu locations may change with browser updates. Consult your browser's help documentation for current instructions.

8.3 Consequences of Disabling Cookies

IF YOU DISABLE COOKIES, THE PLATFORM MAY NOT FUNCTION PROPERLY. Disabling cookies may result in:

• Inability to log in or maintain authenticated sessions
• Loss of saved preferences and customizations
• Reduced Platform functionality and performance
• Inability to use certain features (e.g., shopping cart, saved filters)
• Need to re-enter information on every visit

IMPORTANT: Essential cookies cannot be disabled without breaking core Platform functionality. You may disable functional, analytics, and marketing cookies, but essential cookies are required for the Platform to operate.

8.4 Opting Out of Third-Party Analytics

You can opt out of specific third-party analytics tracking:

• Google Analytics: Install the Google Analytics Opt-out Browser Add-on (tools.google.com/dlpage/gaoptout)
• General Opt-Out Tools: Network Advertising Initiative (optout.networkadvertising.org) or Digital Advertising Alliance (optout.aboutads.info)

8.5 Mobile Device Settings

For mobile devices, you can limit ad tracking and reset advertising identifiers:

• iOS: Settings → Privacy → Tracking → Disable "Allow Apps to Request to Track"
• Android: Settings → Google → Ads → Opt out of Ads Personalization

9.1 European Union Users (GDPR)

If you are located in the European Union or European Economic Area, you have specific rights under the General Data Protection Regulation (GDPR) regarding cookies and personal data:

• Right to be informed about data collection and cookie usage
• Right to consent to non-essential cookies before they are placed
• Right to withdraw consent at any time
• Right to access data collected through cookies
• Right to deletion of personal data collected via cookies

However, please note: THE PLATFORM IS DESIGNED EXCLUSIVELY FOR MICHIGAN-LICENSED CANNABIS BUSINESSES OPERATING IN THE UNITED STATES. We do not intentionally collect data from EU residents. If you are accessing the Platform from the EU, you do so at your own risk and acknowledge that data may be transferred to and stored in the United States.

9.2 California Users (CCPA)

If you are a California resident, you have rights under the California Consumer Privacy Act (CCPA):

• Right to know what personal information is collected via cookies
• Right to know if personal information is sold or shared (we do not sell personal information)
• Right to opt-out of the sale of personal information (not applicable - we do not sell data)
• Right to deletion of personal information collected through cookies
• Right to non-discrimination for exercising privacy rights

To exercise CCPA rights, contact us at privacy@dopemenus.com.

9.3 Michigan Users

Michigan does not currently have a comprehensive state privacy law equivalent to GDPR or CCPA. However, we respect all users' privacy and provide the same rights and protections to all users regardless of location.

We reserve the right to modify this Cookie Policy at any time to reflect changes in our practices, technologies, legal requirements, or business operations. We will update the "Last Updated" date at the top of this policy when changes are made.

Material changes to this Cookie Policy will be communicated via email notification or prominent Platform notice at least 30 days before the changes take effect. Your continued use of the Platform after changes become effective constitutes acceptance of the modified Cookie Policy.

We encourage you to review this Cookie Policy periodically to stay informed about how we use cookies and protect your information.

For questions, concerns, or requests regarding this Cookie Policy, cookie management, or data privacy, please contact:

Dope Menus, LLC
Privacy Department
Email: privacy@dopemenus.com
B2B Collaborative Platform for Michigan's Cannabis Industry

We will respond to cookie-related inquiries within 30 days of receipt. For immediate assistance with cookie management, please refer to Section 8 above or consult your browser's help documentation.