Cookie Policy

Last updated: 27 May 2026

Effective Date: 27th May 2026
Company: Kratos Systems
Website: www.kratosystems.africa

This Cookie Policy is published by Kratos Systems, a company incorporated in Kenya and the data controller for this website. It explains what cookies are, which cookies we use, why we use them, and how you can control them. We are committed to being transparent about our use of cookies in line with the Kenya Data Protection Act, 2019 (DPA 2019) and guidance issued by the Office of the Data Protection Commissioner (ODPC).

Please read this policy alongside our Privacy Policy, which provides broader information about how we handle your personal data.

Introduction

When you visit www.kratosystems.africa (our Website), we may place small files called cookies or use similar technologies on your device. This policy tells you exactly what we place, why we place it, and what choices you have.

Under the DPA 2019, cookies and similar tracking technologies that can identify you (or contribute to your identification when combined with other data) are treated as personal data. We take that seriously.

When you first visit our Website, a cookie consent banner will appear. For cookies that are not strictly necessary to make the Website work, we will ask for your opt-in consent before setting them. You can accept all, choose specific categories, or reject non-essential cookies—the choice is entirely yours.

You can change or withdraw your consent at any time by using Cookie settings in the footer of every page (or by managing your browser settings as described below).

What Are Cookies

A cookie is a small text file that a website places on your computer, phone, or other device when you visit. When you return to the site, the server can read that file to recognise your browser and remember certain information.

Cookies cannot harm your device. They are not programs and cannot carry viruses or malware.

We also use similar technologies that work in a comparable way:

Local storage — a browser feature that stores data on your device (we use this for your cookie consent record);
Web beacons / pixels — tiny invisible images embedded in web pages or emails that can tell us whether a page was loaded or an email was opened;
Session tokens — short-lived server-side identifiers used for security and load balancing.

Throughout this policy, when we say “cookies” we mean all of the above technologies unless we say otherwise.

Why We Use Cookies

We use cookies for the following purposes:

Making the Website function — some cookies are essential. Without them, parts of the Website simply will not work (for example, keeping you securely logged in during a session).
Remembering your preferences — so you do not have to reset your language or display preferences every time you visit.
Analysing website traffic and performance — understanding which pages are popular and how visitors move through the site helps us improve it.
Supporting cybersecurity and fraud prevention — detecting suspicious activity, blocking bots, and protecting the integrity of our systems.
Improving your experience — using aggregated insights to make the Website faster, easier to navigate, and more relevant.

Types of Cookies We Use

The table below summarises the categories of cookies we use (or may activate), their purposes, the legal basis under the DPA 2019 on which we rely, and how long each cookie remains on your device.

Cookie Category	Purpose	Legal Basis (DPA 2019)	Retention Period
Strictly Necessary	Session management, security tokens (e.g. CSRF protection), load balancing, and storing your cookie consent decision	Legitimate interests; essential to deliver a secure, functioning website and do not require your consent	Session / up to 1 year (consent memory token)
Functional / Preference	Remembering your language selection, accessibility settings, and UI preferences	Consent; we will ask before setting these	12 months
Analytics & Performance	Measuring website traffic and user behaviour (e.g. Google Analytics) to understand what works and improve the site	Consent; we will ask before setting these; you can opt out at any time	Up to 24 months
Security & Fraud Prevention	Monitoring for suspicious activity, detecting bots, and protecting against abuse	Legitimate interests in preventing fraud and protecting users	Session to 30 days
Marketing / Advertising	Kratos Systems does not currently use marketing or advertising cookies. If we introduce them in future, we will update this policy, notify you via a website notice, and ask for your explicit consent before setting them	Explicit consent (if and when introduced)	Not applicable currently

Strictly Necessary cookies are not subject to your consent because they are essential to the basic operation and security of the Website. Refusing them is not possible without disabling the Website entirely.

Functional / Preference cookies are only set after you give us your consent via the cookie banner. If you decline, the Website will still work fully—you may just need to re-set certain preferences on each visit.

Analytics & Performance cookies help us understand how visitors use our Website so we can improve it. We currently use Google Analytics (operated by Google LLC) for this purpose. These cookies are only activated after you give consent. You can opt out at any time by adjusting your preferences via Cookie settings in the footer, or by using the Google Analytics Opt-out Browser Add-on.

Security & Fraud Prevention cookies help us detect bots, block malicious traffic, and protect both the Website and our users. We rely on our legitimate interests in maintaining a secure website for this category.

Marketing / Advertising cookies: Kratos Systems does not currently use marketing or advertising cookies. This policy will be updated if that changes, and we will seek your explicit consent before any such cookies are set.

Third-Party Cookies

Some cookies on our Website are set not by us, but by third-party service providers who help us operate the site. These include:

Google Analytics (Google LLC) — for website traffic and performance analysis. Google’s privacy policy is available at policies.google.com/privacy.

We do not control how third-party providers set or use their cookies. Third-party cookies are governed by each provider’s own privacy and cookie policy, not ours.

Some third-party providers may use cookies to track your activity across multiple websites, not just ours. We recommend reviewing the privacy policies of any third-party providers whose cookies operate on this Website.

We will always tell you which third-party providers we activate and will only activate them after obtaining your consent (where required).

Under the DPA 2019, you have the right to decide whether to accept non-essential cookies. We operate a strict opt-in approach—we will never set non-essential cookies without your prior consent.

When you first visit the Website, a cookie consent banner will appear. It gives you three clear options:

Accept all cookies — you consent to all cookie categories (except strictly necessary, which are always active);
Choose by category — you can switch individual categories on or off using granular toggles, giving you precise control (where we implement category controls in the banner);
Reject non-essential cookies — only strictly necessary cookies will be set; the Website remains fully usable.

Strictly necessary cookies do not require your consent and are always active. All other categories require your affirmative opt-in before they are activated.

Changing your mind: You can update or withdraw your consent at any time using Cookie settings in the footer of any page on our Website. Withdrawing consent is just as easy as giving it.

Effect of withdrawal: Withdrawing your consent does not affect the lawfulness of any cookie processing that took place before you withdrew it.

Rejecting analytics cookies will not affect your ability to use any part of the Website. No features are gated behind analytics consent.

We keep a record of your consent (including the date, time, and the choices you made) in line with our accountability obligations under DPA 2019. Your consent record is stored locally using our strictly necessary consent token and is retained for up to 12 months, after which you will be asked again.

How to Control Cookies Through Your Browser

In addition to the options on our Website, you can control cookies directly through your web browser settings. Most browsers allow you to:

view which cookies are stored on your device and delete them individually or in bulk;
block all cookies from being set;
block cookies from specific websites; or
configure your browser to alert you each time a new cookie is being set.

Instructions for the most common browsers:

Google Chrome: Settings → Privacy and security → Cookies and other site data;
Mozilla Firefox: Settings → Privacy & Security → Cookies and Site Data;
Apple Safari: Preferences → Privacy → Manage Website Data;
Microsoft Edge: Settings → Cookies and site permissions → Manage and delete cookies and site data.

Please note: blocking all cookies at the browser level, including strictly necessary cookies, may affect how our Website works and could prevent certain features from functioning correctly.

For further guidance on managing cookies across all browsers, visit aboutcookies.org.

We retain cookies only for as long as is necessary for their stated purpose, as described in the table in the Types of Cookies We Use section above. Specific retention periods vary by category:

Session cookies expire automatically when you close your browser;
Persistent cookies remain on your device until their expiry date is reached or until you delete them; and
Expired cookies are automatically deleted by your browser when their retention period ends.

We review the cookies we use periodically to ensure that retention periods remain appropriate and that we are not holding data for longer than necessary, in line with DPA 2019 Section 25(e).

Updates to This Policy

We review this Cookie Policy periodically to keep it accurate and up to date. We may update it to reflect:

changes to the cookies or technologies we use;
new legal or regulatory requirements under Kenyan law; or
guidance issued by the ODPC.

When we make material changes—for example, introducing a new category of cookies or a new third-party provider—we will notify you via a prominent notice on our Website before the change takes effect.

The Effective Date at the top of this page always shows when this policy was last updated. We encourage you to check back periodically. If you have previously given consent and we introduce material changes, we may ask for your consent again.

Contact Us

If you have any questions about this Cookie Policy or want to exercise your consent rights, please contact us:

Kratos Systems
Email: info@kratosystems.africa
Website: www.kratosystems.africa
Registered Address: Golf Course phase 2, Nairobi, Kenya

For broader data protection concerns, including requests to access, correct, or delete your personal data, please refer to our Privacy Policy or contact us at the email address above.

If you are not satisfied with our response, you have the right to raise a complaint with Kenya’s data protection supervisory authority:

Office of the Data Protection Commissioner (ODPC)
Website: odpc.go.ke

We will cooperate fully with any ODPC inquiry or investigation.

This Cookie Policy is governed by the laws of Kenya. It should be read alongside our Privacy Policy and Terms of Service. Kratos Systems recommends that this policy be reviewed by a qualified Kenyan advocate before public deployment.

Cookie Policy — Kratos Systems | Version 1.0 | Effective Date: 27th May 2026