Cookie Policy
Updated: May 18, 2026
1. General
This Cookie Policy describes the use of cookies and equivalent local-storage means (localStorage, sessionStorage) on the Bioly service (the Service) at https://bioly.app and its sub-domains.
It supplements the Privacy Policy and the Terms of Service.
2. Operator
Mikhail Andreevich Mogilnikov
INN 890603192936
Tax on professional income payer (self-employed)
E-mail: legal@bioly.app
3. What counts as a cookie
Cookies are small text files saved by the browser. “Equivalent technologies” include localStorage and sessionStorage — they serve the same purpose (remember small pieces of state between page loads) but are not technically cookies. For the purposes of this Policy, “cookies” covers all of the above.
4. Classification
Cookies and equivalent technologies used on the Service are classified into four categories:
4.1. Strictly necessary
Required for the Service to operate. No separate consent is required (Roskomnadzor Letter of 17.07.2017). Disabling them breaks the Service.
access_token— access token (JWT) for the active session. Lifetime: up to seven (7) days, rolling. Secure, SameSite=Lax. Set on the client after sign-in.refresh_token— long-lived refresh credential used to renew the session. Lifetime: per server settings (typically up to seven (7) days). HttpOnly, Secure, SameSite=Lax. Set by the server on sign-in.
4.2. Functional
Remember user preferences. The Service works without them, just less conveniently. Consent is implied by continued use of the Service.
interface_locale— interface language (ru/en). Lifetime: up to one (1) year. Secure, SameSite=Lax.
4.3. Analytics
Not used. The Operator does not set Google Analytics, Yandex Metrica, Facebook Pixel, Hotjar, Mixpanel, Amplitude, PostHog or any other third-party counter. Any future link-click statistics on a User’s Public Profile would be processed server-side and would not set a cookie in the Visitor’s browser.
4.4. Advertising
Not used. The Operator does not display third-party ads and does not share Visitor data with ad networks.
5. Third-party cookies
5.1. Map tiles (OpenStreetMap / MapLibre). Used in map blocks on Public Profiles. Tile providers may set cookies or similar identifiers on their own domains; their use is governed by the providers’ policies.
5.2. External links. Public Profiles may contain links to third-party sites (social networks, messengers, media platforms, etc.). When a Visitor follows such a link, cookies may be set by the destination site outside the Operator’s control.
No other third-party cookies are set by the Service itself.
6. Cookie management
6.1. Browser controls. Use the standard privacy settings of your browser (Safari → Settings → Privacy; Chrome → Settings → Privacy and security; etc.). Clearing cookies for our domain logs you out and resets your language preference.
6.2. Do Not Track / Global Privacy Control. The Operator does not deploy advertising or analytics trackers; no cross-context tracking occurs. DNT and GPC are honoured operationally but have no additional effect because there is nothing to opt out of.
7. Subject rights
Since cookie identifiers associated with an Account are recognised as personal data under Roskomnadzor practice, all rights set out in arts. 14, 20, 21 of 152-FZ apply (see section 10 of the Privacy Policy).
8. Changes
The Operator may amend this Policy. The new version is published at https://bioly.app/legal/cookies. Material changes are also shown to Users on the next sign-in.
9. Language versions
This Policy is published in Russian and English. The Russian version is the legally authoritative one for users in the Russian Federation.
Last revised: 18 May 2026.