Legal · Cookies

Cookie Policy

How we use cookies, pixels, SDKs, web beacons, and similar tracking technologies — and how you can control them. Read this alongside our Privacy Policy and Terms of Use.

Effective DD / MM / YYYY
Last updated DD / MM / YYYY

This Cookie Policy (“Policy”) describes how Fynext Labs Pty Ltd (ABN 25 696 584 175), incorporated under the laws of Australia, providing its service via its product / platform called “Vendora Genie”, a B2B eCommerce platform (“Company”, “Platform”, “we”, “our”, or “us”) collects, uses, processes, stores, discloses, transfers, and protects personal information through cookies and similar technologies.

The Company operates globally, including in Australia, the United States, India, Canada, the European Union, New Zealand, and other jurisdictions where the Platform is accessible. Accordingly, this Policy is designed to align with applicable privacy and data protection laws including the Australian Privacy Act 1988 and Australian Privacy Principles, GDPR and ePrivacy requirements, UK GDPR and PECR, CCPA / CPRA, Canada’s PIPEDA, India’s DPDP Act, the New Zealand Privacy Act 2020, and other applicable data protection laws.

01 What Are Cookies?

Cookies are small text files, pixels, tags, SDKs, scripts, or similar technologies stored on your browser, device, or system when you visit or use the Platform.

Cookies may:

Cookies may be:

02 Types of Cookies We Use

2.1 Strictly Necessary Cookies

These cookies are essential for the operation, security, and functionality of the Platform. They may include cookies required for authentication, user login, cart / session management, fraud prevention, network management, security monitoring, payment workflows, and platform stability. They generally cannot be disabled because the Platform may not function properly without them.

Legal Basis:

2.2 Functional Cookies

These cookies help remember language preferences, display settings, vendor / store settings, saved configurations, and user-experience customizations.

2.3 Analytics Cookies

These cookies help us understand Platform performance, traffic sources, user behavior, feature usage, crash diagnostics, and engagement metrics. We may use analytics providers such as Google Analytics, Microsoft Clarity, Mixpanel, Hotjar, or similar services. They may collect IP address, device identifiers, browser information, usage data, and behavioral metrics. Where legally required, analytics cookies will only be activated after obtaining valid consent.

2.4 Advertising and Marketing Cookies

These cookies may track browsing behavior, support remarketing, personalize advertisements, measure campaign effectiveness, and enable integrations with advertising platforms. They may be set by us or by third-party advertising partners. Under EU GDPR and certain US state laws, these cookies generally require prior consent or opt-out rights before activation.

2.5 Third-Party Cookies

Some cookies may be placed by third-party service providers integrated into the Platform, including payment processors, analytics providers, customer support tools, CRM systems, cloud hosting providers, advertising networks, and embedded integrations. We do not control third-party cookies directly and recommend reviewing their respective privacy and cookie policies.

03 Legal Bases for Cookie Processing

Depending on your jurisdiction, we process cookie-related data based on one or more of: consent; contractual necessity; legitimate interests; compliance with legal obligations; operational necessity.

04 Cookie Consent

4.1 European Union / EEA / UK Users

Non-essential cookies will not be activated unless and until consent is provided; users may accept, reject, or customize cookie preferences; consent may be withdrawn at any time; consent records may be maintained for compliance purposes. Strictly necessary cookies may operate without consent where legally permitted.

4.2 United States Users

For certain US states including California, users may have rights to opt out of “sale,” “sharing,” or targeted advertising activities; may request limitation of certain data uses; and browser-based privacy preference signals may be honored where legally required. Residents may exercise applicable rights under CCPA / CPRA and other state privacy laws.

4.3 Canadian Users

Under PIPEDA and applicable provincial privacy laws, meaningful consent may be required for cookies collecting personal information; implied consent may apply for operationally necessary cookies; express consent may be required for tracking or advertising cookies depending on the nature of processing.

4.4 Indian Users

Under the Digital Personal Data Protection Act, 2023, cookies involving personal data processing may require informed and affirmative consent; users may withdraw consent at any time; consent requests must be clear and specific; tracking technologies may only operate in accordance with applicable consent obligations.

4.5 Australian and New Zealand Users

Under the Australian Privacy Act and the New Zealand Privacy Act, organizations must provide transparency regarding personal information collection; consent may be required depending on the sensitivity and purpose of the data collected; reasonable steps must be taken to ensure lawful and fair collection practices.

05 How to Manage Cookies

You may manage or disable cookies through the cookie consent banner or preference center, browser settings, device settings, or third-party opt-out tools.

Please note: disabling certain cookies may affect Platform functionality; some features may become unavailable; security or authentication functions may not operate correctly.

Browser management links may include Google Chrome, Mozilla Firefox, Safari, Microsoft Edge, and Opera browser settings.

06 Retention of Cookie Data

Cookie retention periods vary depending on the type of cookie, operational necessity, legal requirements, and third-party provider configurations. Certain cookies expire automatically after a session, while others may persist for longer periods unless manually deleted.

07 International Data Transfers

Because Vendora Genie operates internationally, cookie-related data may be transferred to and processed in Australia, the United States, India, Canada, EU member states, New Zealand, and other jurisdictions where our infrastructure or service providers operate. Where required by law, we implement safeguards such as Standard Contractual Clauses (SCCs), contractual protections, access controls, encryption measures, and data processing agreements.

08 Children’s Privacy

The Platform is intended for business and commercial users and is not directed toward children. We do not knowingly use cookies to collect personal data from children in violation of applicable law. If we become aware that personal data of a child has been collected unlawfully, we may take steps to delete such information.

09 Changes to this Cookie Policy

We may amend or update this Policy from time to time to reflect legal developments, technological changes, operational requirements, or modifications to Platform functionality. Updated versions will be posted on the Platform with a revised “Last Updated” date. Where required by law, we may seek renewed consent for material changes.

10 Contact Us

Fynext Labs Pty Ltd

ABN25 696 584 175

For privacy-related requests, users may also contact our Data Protection Officer (DPO) where applicable, or our designated privacy representative in relevant jurisdictions.

11 Your Rights

Depending on your jurisdiction, you may have rights including: access to personal data; correction of inaccurate information; deletion rights; withdrawal of consent; objection to processing; restriction of processing; portability rights; and rights relating to targeted advertising or profiling.

Requests may be submitted through the Platform, account settings, the cookie preference center, or the contact details above.

12 Cookie Preference Center

Users may modify cookie preferences at any time through the Platform’s cookie management interface or consent banner. Where legally required, the Platform shall: maintain records of consent; provide granular cookie controls; permit withdrawal of consent; and honor applicable opt-out preferences.