1. What cookies are
Cookies are small text files stored on your device when you visit a website. They are used to make sites work, to remember preferences, and to measure performance.
2. Types of cookies we use
- Strictly necessary — required for sign-in, security, and payments. Always on.
- Analytics — help us understand how the product is used so we can improve it. Set only with your consent.
- Marketing / advertising — used to measure campaigns and personalise offers. Set only with your consent.
- Preferences — remember small UI choices such as your A/B variant. Set only with your consent.
3. Third-party cookies
Some cookies and similar storage are set by trusted third parties such as our payment provider and analytics tools. They act as data processors under our instructions.
4. How to manage cookies
You can change your choices at any time using the button below or via the "Cookie settings" link in the footer. You can also block or delete cookies in your browser settings.
5. How to withdraw consent
To withdraw consent for non-essential cookies, open cookie preferences and toggle the categories off. Withdrawal takes effect immediately for future page loads.
6. Cookie table
| Name | Category | Provider | Purpose | Duration |
|---|---|---|---|---|
| cyan:cookie_consent | strictly_necessary | Cyan (first-party, localStorage) | Stores your cookie consent choices so we don't ask again. | 12 months |
| cyan:session | analytics | Cyan (first-party, localStorage) | Anonymous session identifier used to stitch funnel analytics. | 12 months |
| cyan:variant:* | preferences | Cyan (first-party, localStorage) | Holds the A/B variant you were assigned so experiences stay consistent. | 12 months |
| cyan:utm | marketing | Cyan (first-party, localStorage) | Stores marketing attribution (UTM parameters) for the current visit. | 30 days |
| sb-<project>-auth-token | strictly_necessary | Supabase (first-party, localStorage) | Authentication session for signed-in users. | Until sign-out |
| __stripe_* | strictly_necessary | Stripe (third-party) | Fraud prevention and payment processing during checkout. | Up to 1 year |