plain English in · a ready-to-use contract out · ⌘↵ to run

Free forever · no signup · no credit card · unlimited contracts

Live sample · Mutual NDA — type above to make your own

Mutual Non-Disclosure Agreement

This Mutual Non-Disclosure Agreement (the "Agreement") is entered into as of [DATE] by and between [Party A] and [Party B] (each a "Party").

1. Purpose

The Parties wish to explore a potential business relationship and may disclose Confidential Information to one another.

2. Confidential Information

"Confidential Information" means any non-public information disclosed by one Party to the other, whether oral, written, or electronic.

3. Obligations

Each Party shall (a) keep the other's Confidential Information strictly confidential, and (b) use it solely for the Purpose described above.

4. Term

This Agreement remains in effect for two (2) years from the Effective Date.

5. Governing Law

This Agreement is governed by the laws of [STATE / COUNTRY].

Signatures

[Party A] ______________________ Date: __________

[Party B] ______________________ Date: __________

This is an AI-generated template, not legal advice.

A cookie policy is a legal disclosure document that explains to your website visitors what cookies your site uses, what data those cookies collect, how long they persist, and how users can control or opt out of them. If your website collects any data from visitors through cookies — and virtually every modern website does — you need a cookie policy. It is legally required under GDPR for websites with EU visitors, and expected under CCPA for California-based businesses. Beyond compliance, a clear cookie policy builds trust with users by being transparent about how their data is used. FreeContract lets you describe your website and its cookies in plain English and generates a customized, editable cookie policy template you can download as a Word document — free, no account needed.

How to generate a cookie policy in 3 steps

Describe your website and cookies
Enter your website name, the types of cookies you use (essential, analytics, marketing, preference), the third-party services that set them, and the geographic scope of your users.
Generate your cookie policy instantly
FreeContract drafts a complete, readable cookie policy tailored to your site's specific cookies and applicable privacy laws.
Download, review, and publish on your website
Download the .docx file, review the content, copy it to your website's cookie policy page, and link to it from your cookie consent banner and footer.

What every website's cookie policy should cover

A cookie policy (sometimes called a cookie consent policy) is a standalone document or section of your privacy policy that explains how your website uses cookies and similar tracking technologies. Here is what a complete, compliant cookie policy should address.

**What are cookies?** A brief, plain-English explanation of what cookies are — small text files stored in a user's browser that allow websites to remember information about their visit — helps users who are not technically sophisticated understand why the policy exists.

**Types of cookies.** Cookies are typically categorized into four types: (1) Essential/strictly necessary cookies, which are required for the website to function (login sessions, shopping cart, security). These cannot be opted out of without breaking the site. (2) Analytics/performance cookies, which collect aggregate data about how visitors use the site (Google Analytics, Mixpanel, Plausible). (3) Marketing/advertising cookies, which track users across websites for ad targeting (Facebook Pixel, Google Ads, LinkedIn Insight Tag). (4) Preference/functional cookies, which remember user settings like language, currency, or theme.

**Third-party cookies.** List the specific third-party services that set cookies on your site, what data they collect, and link to their own privacy policies. Common third parties include Google Analytics, Google Ads, Facebook Pixel, HubSpot, Intercom, Stripe, and Hotjar.

**Cookie duration.** Specify whether each cookie category is a session cookie (deleted when the browser is closed) or a persistent cookie (remains for a defined period, e.g., 30 days, 1 year, 2 years).

**Legal basis and consent.** Under GDPR, you need a legal basis for each category of cookie. Essential cookies are covered by legitimate interest. Analytics and marketing cookies typically require the user's consent. Your policy should explain this and describe how consent is obtained (e.g., via a cookie consent banner).

**How users can manage or opt out.** Explain how users can withdraw consent — through your cookie banner, browser settings, or opt-out tools like the Google Analytics opt-out browser add-on. For CCPA compliance, include information about how California residents can opt out of the sale of personal data.

**Updates to the policy.** State that the cookie policy may be updated as the site adds new cookies or services, and that you will notify users of material changes.

**GDPR specifics.** Under GDPR, websites serving EU visitors must: obtain prior consent for non-essential cookies, make it as easy to withdraw consent as to give it, not use pre-ticked consent boxes, and keep records of consent. A cookie banner that only has an 'Accept All' button without an equally prominent 'Reject Non-Essential' option is not GDPR-compliant.

**CCPA specifics.** Under the California Consumer Privacy Act, businesses must disclose what personal information is collected through cookies and give California residents the right to opt out of the 'sale' of their personal information (which can include sharing data with ad networks).

**Common mistakes.** Listing cookies that are no longer on your site. Failing to update the policy when you add a new analytics or marketing tool. Using vague descriptions that do not actually explain what each cookie does. Not linking the cookie policy from the consent banner. Treating the cookie policy as the same document as the privacy policy (they can be combined, but cookie-specific disclosures must be present).

**When to involve a lawyer.** For enterprise websites, websites in highly regulated industries (healthcare, finance), or websites with users in multiple jurisdictions with different privacy laws, have a licensed privacy attorney review your cookie policy. FreeContract generates an editable template — it is not a substitute for legal advice on privacy compliance.

Frequently asked questions

Do I legally need a cookie policy?

If your website has visitors from the EU, you are required to have one under GDPR. CCPA applies to California-based businesses meeting certain thresholds. Even if you are not legally required, a cookie policy is a best practice that builds user trust.

What is the difference between a cookie policy and a privacy policy?

A privacy policy covers all personal data your business collects. A cookie policy specifically covers cookies and similar tracking technologies. They can be separate documents or combined — many sites include a cookie section within their broader privacy policy.

Does a cookie policy generated by FreeContract ensure GDPR compliance?

The template covers GDPR disclosure requirements as a starting point, but full GDPR compliance also requires implementing a proper consent mechanism (cookie banner), keeping consent records, and ensuring your actual cookie usage matches the policy. For enterprise or regulated-industry sites, have a privacy attorney review your compliance setup.

How often should I update my cookie policy?

Whenever you add, remove, or change cookies or third-party services on your site. Review your cookie policy at least annually and after any significant changes to your tech stack.

Is FreeContract's cookie policy generator free?

Yes — completely free, no account required, unlimited uses. Describe your site, generate, and download a Word file you can publish immediately.

Free Cookie Policy Generator — Create Your Cookie Policy Instantly