TREZOR Website Cookie Policy Last updated: 1 March 2022 (“Cookie Policy”) Who are you and why am I here? We are a commercial company called Trezor Company s.r.o., incorporated and existing under the laws of the Czech Republic, Id. No. 024 40 032, with registered office at Kundratka 2359/17a, Libeň, 180 00 Prague 8, Czech Republic, registered in the commercial register kept by the Metropolitan Court in Prague under file No. C 219483. We operate the website https://trezor.io/ (and any subdomains thereof). Since we use cookies on our website to analyze traffic and to personalize content and ads, we prepared this Cookie Policy to help you understand what cookies are and how we use them (and also to comply with applicable law). If you do not like anything you read in this Cookie Policy, we must ask you not to use our website, to delete any cookies already stored therefrom, and/or to change settings of your web browser to disable storing any cookies from our website. For further information on how we collect, process, store and keep secure your personal data, please, refer to privacy policies available on our website. What are cookies? Cookies are small text files that are downloaded to your device by websites you visit. They allow websites to recognize your device and store some information, for example about your location and past actions. There are different types of cookies. Some cookies may be stored on your device till their expiry date, unless you delete them earlier (“persistent cookies”), and some may expire at the end of your browsing session, when your web browser is closed (“session cookies”). Some cookies may come directly from the web server of our website (“first-party cookie”) and some are stored by a different domain (“third-party cookies”). You can find more information about cookies at www.allaboutcookies.org. What cookies do you use? The cookies we use cannot grant us any access to your computer. These cookies are not viruses or spyware and are not built to damage your device. We use both persistent and session cookies and both first-party and third-party cookies on our website. We have listed the cookies that we use on our Website, what each cookie is used for and how long it is retained in a table at the end of this Cookie Policy. What choices do I have? If you do not agree with this Cookie Policy, you may at any time easily manage stored cookies in your web browser settings (that means you can delete them) and you can also disable or limit storing of any new cookies. The exact procedure to manage the cookies depends on your web browser. You can find more information at https://www.aboutcookies.org/how-to-delete-cookies /. You may choose to disable storing cookies in general or only for some web servers. Please, be aware that in the event you decide to disable the cookies (in general or partially) or to delete stored cookies that we use, you may not be able to enjoy all the features of our website and our services. How can I contact you? If you have any questions about cookies and this Cookie Policy, please, contact our support team at support@satoshilabs.com. Changes to the Cookie Policy We reserve the right to amend and/or change this Cookie Policy from time to time. Therefore, please, check this Cookie Policy regularly. Page 1 of 4 Essential Cookies Name Purpose Expiration trezor-affil Code (ID) is used to detect the referral visitor. 29 days _GRECAPTCHA This cookie is used to distinguish between humans and bots. 179 days CONSENT Used to detect whether the visitor has accepted the marketing category in the cookie banner. This cookie is necessary for the GDPR compliance of the Website. 2 years cart Identifies Cart session ID. Session cookie __cartItems Number of cart items. Session cookie bulk_order Used to limit orders to MAX_QUANTITY. 30 days cartRedirToken Used to redirect from the cart. Session cookie _cart Identify the Users cart by ID. 1 day csrftoken See CSFR. 1 year sessionid Session cookie hasoffers_tracking Affiliate data with affiliate_id and offer_id used to detect the affiliate partner and its offer. 30 days referral_code Code (ID) is used to detect the referral visitor. 30 days Statistics Cookies (to help us understand how visitors interact with our Website by collecting anonymous information). Third party Name Purpose Expiration Google Analytics _ga Used to distinguish users. 2 years Google Analytics _gid Used to distinguish users. 1 day Google Analytics _gat_# Used to throttle request rate. 1 minute Google Analytics _ga_ Used to persist session rate. 2 years Google Analytics collect Used to send data to Google Analytics about the visitor's device and behavior. Tracks the Session cookie 2 visitor across devices and marketing channels. Marketing (to display ads that are relevant for visitors). Third party Name Purpose Expiration Adform C Detects if the user has cookies allowed. 29 days Adform uid Registers a unique user ID that recognises the user’s browser when visiting websites that use the same ad network. The purpose is to optimize display of ads based on the user’s movements and various ad providers bids for displaying user ads. 2 months Twitter personalization_id Used to distinguish users. 2 years Twitter muc_ads 2 years Facebook fr Used by Facebook to deliver a series of advertisement products such as real time bidding from third party advertisers. 3 months Facebook _fbp Used by Facebook to deliver a series of advertisement products such as real time bidding from third party advertisers. 3 months Google Ads Ads/Ga-Audiences Used by Google to store information for remarketing purposes. Session cookie Facebook i/jot Sets a unique ID for the visitor that allows third party advertisers to target the visitor with relevant advertisement. Session cookie Facebook tr Used by Facebook to deliver a series of Session cookie 3 advertisement products such as real time bidding from third party advertisers. Youtube VISITOR_INFO1_LIVE Tries to estimate the users’ bandwidth on pages with integrated YouTube videos. Youtube YSC Registers a unique ID to keep statistics of what videos from YouTube the user has seen. Session cookie Youtube yt-remote-cast-available Stores the user’s video player preferences using embedded YouTube video. Session cookie Youtube yt-remote-cast-installed Stores the user’s video player preferences using embedded YouTube video. Session cookie Youtube yt-remote-connected-devi ces Stores the user’s video player preferences using embedded YouTube video. Persistent Youtube yt-remote-device-id Stores the user’s video player preferences using embedded YouTube video. Persistent Youtube yt-remote-fast-check-peri od Stores the user’s video player preferences using embedded YouTube video. Session cookie Youtube yt-remote-session-app Stores the user’s video player preferences using embedded YouTube video. Session cookie Youtube yt-remote-session-name Stores the user’s video player preferences using embedded YouTube video. Session cookie 4