Last updated: April 2026 · Effective Date: 30 April 2026
This Cookie Policy (“Policy”) explains how CareHive Pte Ltd (“CareHive,” “we,” “our,” or “us”) uses cookies and similar tracking technologies when you visit our website at carehive.ai or interact with our web-based platforms (together, the “Site”). It is a companion document to the CareHive Privacy Policy, which describes how we handle personal data more broadly. Where this Policy uses a term defined in the Privacy Policy, that term has the same meaning here unless we say otherwise.
Our intent in publishing this Policy is to be transparent about a part of the web that is often opaque to users. Cookies are not, in themselves, a privacy violation — most websites cannot operate without them — but the way they are used, and the parties to whom they reveal information, matter. The sections below set out what we use, why, and how you can control it.
Cookies are small text files that a website places on your device — your computer, phone, or tablet — when you visit it. They allow the website to remember your actions and preferences (such as login state, language, or font size) over time, so that you don’t have to re-enter them every time you return or move between pages. Cookies are widely used because, without them, even basic web features such as staying logged in would not work.
Beyond traditional cookies, websites and applications can use a range of similar technologies that achieve comparable purposes. Where this Policy refers to “cookies,” it should be read as covering the following technologies as well:
We group the cookies set on the Site into four categories, distinguished by what they do and the level of consent that applies to them. The specific cookies in each category, including their names, purposes, durations, and providers, are listed in Annex A.
These cookies are essential to the operation of the Site. They include the cookies that keep you logged in to your account, that maintain the integrity of a secure session, and that allow core platform functions to work as you move between pages. Because the Site cannot deliver its basic service without them, these cookies are set without a separate consent step — you give your consent by choosing to use the Site itself. They cannot be disabled through our cookie banner, although your browser settings may allow you to block them, in which case parts of the Site may stop working.
These cookies allow us to understand how the Site is being used in aggregate — which pages are visited most often, where users encounter difficulty, and how the Site performs across devices and networks. The information is used to improve the Site, not to identify individual users for marketing or other personalised purposes. These cookies are only set after you give consent through our cookie banner, and you can change your mind at any time through the same mechanism.
These cookies remember choices you have made in the past, such as your preferred language, region, or display preferences, so that the Site can present itself in the way you have set it up. Like analytics cookies, they are only set with your consent through the cookie banner, and the consent can be withdrawn through the same mechanism.
These cookies, if used, would record information about your visit to inform advertising or marketing activity. As of the effective date of this Policy, CareHive does not set targeting or marketing cookies on the Site, and Annex A reflects that position. We are including this category in the Policy so that the framework is in place if our marketing approach changes; if we begin to set targeting cookies in the future, we will update Annex A, give visible notice through the cookie banner, and require explicit opt-in consent before any such cookie is set.
Our position on consent is straightforward: cookies that are not strictly necessary to operate the Site are set only after you have given consent for them. We rely on an explicit opt-in model rather than implied consent, on the basis that this is the standard most consistent with the direction of travel under the Singapore Personal Data Protection Act and with global expectations under frameworks such as the GDPR.
Consent is obtained through the cookie banner that appears on your first visit to the Site, and that you can re-open at any time through a link in the Site footer. The banner offers:
Some of the cookies on the Site are set not by CareHive directly but by third-party services we use to operate, secure, or improve the Site. The use of these services is necessary to deliver the experience users expect, and we hold each third party we engage to data protection standards consistent with our internal Data Processing Agreement framework. The relationship is, however, a contractual one: we do not control the technical behaviour of third-party cookies once they are set, and the third party’s own cookie and privacy policies apply alongside ours. The third parties whose cookies may appear on the Site are:
A complete and current list of third-party cookies, with the specific cookie names and durations, is provided in Annex A. We review the third-party cookie inventory at each governance review cycle and whenever we add or change a third-party service that may set cookies.
Cookies fall broadly into two lifetimes: session cookies, which are deleted automatically when you close your browser, and persistent cookies, which remain on your device for a defined period. We apply the following lifespan principles to limit the duration that cookies remain on a user’s device beyond what is necessary for their stated purpose:
The specific lifespan of every cookie set on the Site is recorded in the Duration column of Annex A. Where a third-party service sets a cookie with a longer default lifespan than our policy permits, we configure the integration to override that default where possible, or document the limitation in Annex A where it is not.
You have several layers of control over cookies. The most direct is the CareHive cookie banner described in Section 4, which lets you change your preferences at any time. Beyond that, your web browser provides settings to manage cookies more broadly:
Disabling or refusing cookies has consequences for the Site experience. Strictly necessary cookies cannot be disabled without breaking parts of the Site. Disabling functional cookies will remove personalisation. Disabling analytics cookies has no user-visible effect on the Site itself; it simply prevents us from measuring usage. To learn more about cookies generally, including how to inspect what cookies have been set on your device, the resources at www.aboutcookies.org and www.allaboutcookies.org are useful starting points.
Cookies are a web concept, and our native mobile applications (the iOS and Android versions of HiveLink, HiveOS, HiveVoice, and HiveStory) do not use cookies in the technical sense. They do, however, use comparable technologies for purposes that overlap with the categories described in Section 3. Specifically:
The mobile applications honour the operating system’s privacy and tracking controls. On iOS, this includes App Tracking Transparency; on Android, the Advertising ID controls and the Privacy Sandbox preferences as they become available. Users who have set their device to refuse tracking will not be tracked by the CareHive applications, and we do not seek to circumvent these controls.
Some browsers offer a “Do Not Track” (DNT) signal, which is a header that the browser sends to websites expressing a preference not to be tracked. There is currently no settled legal requirement in Singapore that obliges websites to respond to DNT signals in a specific way, and the technical interpretation of the signal varies between browsers.
Our position is to treat a DNT signal as a strong indication of user preference and to apply it as follows: where a DNT signal is detected, we will not set Performance & Analytics, Functional, or Targeting & Marketing cookies regardless of any prior banner consent, until the signal is no longer present. Strictly necessary cookies will continue to be set, since the Site cannot operate without them. We do not sell or share user-level data with third parties for advertising purposes regardless of the DNT signal.
We review this Cookie Policy at least annually and revisit it whenever a material change to our use of cookies, our third-party services, or applicable law makes it necessary. When we make a material change — for example, adding a new category of cookie, engaging a new analytics provider, or changing the way consent is obtained — we will:
Non-material changes — such as clarifications of wording, corrections of typographical errors, or technical updates that do not affect what we collect or with whom we share it — are reflected in the published version without separate notice.
Questions about this Cookie Policy, requests for further information about a specific cookie or third-party service, or concerns about how cookies are used on the Site should be directed to our Data Protection Officer using the contact details below. The general user rights described in the CareHive Privacy Policy, including the right to lodge a complaint with the Personal Data Protection Commission, apply to cookie-related matters where personal data is involved.
| Channel | Details |
|---|---|
| Data Protection Officer | Acting DPO, pending formal appointment of dedicated DPO in 2026 |
| privacy@carehive.ai | |
| Postal address | CareHive Pte Ltd, Attention: Data Protection Officer, Singapore |
| Regulator | Personal Data Protection Commission (PDPC), Singapore — www.pdpc.gov.sg |
This Annex sets out the specific cookies and similar technologies set on the Site as of the effective date of this Policy. The inventory is reviewed at each governance cycle and whenever a third-party service that sets cookies is added, removed, or changed. Where a third-party service updates the technical name or purpose of a cookie, the change is reflected in the next published version of this Policy.
| Cookie Name | Purpose | Duration | Provider |
|---|---|---|---|
carehive_session | Maintains an authenticated user session across page loads | Session | CareHive (first-party) |
carehive_csrf | Cross-site request forgery protection token for form submissions and authenticated actions | Session | CareHive (first-party) |
carehive_cookie_consent | Records the user’s cookie consent preferences so that the banner is not shown on every visit | 12 months | CareHive (first-party) |
__vercel_* | Routing, load balancing, and security cookies set by our hosting provider | Session to 1 year | Vercel (third-party) |
aws-elb-* | Session affinity for AWS load balancing, ensuring requests in a session reach the same backend | Session | Amazon Web Services (third-party) |
| Cookie Name | Purpose | Duration | Provider |
|---|---|---|---|
_ga | Distinguishes unique users for aggregate analytics, with IP anonymisation enabled | 13 months | Google Analytics (third-party) |
_ga_* | Used by Google Analytics to persist session state for aggregate analytics | 13 months | Google Analytics (third-party) |
_gid | Distinguishes users for short-window analytics within a 24-hour period | 24 hours | Google Analytics (third-party) |
| Cookie Name | Purpose | Duration | Provider |
|---|---|---|---|
carehive_lang | Remembers the user’s preferred display language across visits | 13 months | CareHive (first-party) |
carehive_ui_prefs | Stores non-sensitive UI preferences such as display density and theme | 13 months | CareHive (first-party) |
As of the effective date of this Policy, CareHive does not set any targeting or marketing cookies. This Annex section will be populated if and when targeting cookies are introduced, and the change will be subject to the consent and notification mechanism described in Sections 4 and 10.
See also our Privacy Policy and Terms of Service.