Cookie Policy
What cookies we use, why, and how to control them.
2026-05-13
Your current preferences
Change which cookie categories you allow. Strictly-necessary cookies are always on; functional and analytics are off by default until you accept them.
1. What Are Cookies?
Cookies are small files stored by your browser. They let a site remember information across requests like sessions, preferences, or analytics signals.
2. Categories We Use
- Strictly necessary. Required for sign-in, CSRF protection, and rate limiting. These cannot be disabled while using the Service.
- Functional. Remember your preferences (e.g. last login provider) so the UI adapts on return visits.
- Security. Detect and mitigate abuse, including impersonation.
3. Specific Cookies
better-auth.session_token: your authenticated session. HttpOnly, secure, expires when your session does.better-auth.last_used_login_method: which sign-in method you used last so we can highlight it. JS-readable; expires after 30 days.better-auth.csrf_token: protects sensitive form submissions.
4. Third-Party Cookies
OAuth sign-in (Google, GitHub) and payments (Creem) may set their own cookies on their domains. Refer to their respective policies.
5. Managing Cookies
Use the Your current preferences panel at the top of this page to allow or reject the functional and analytics categories. Your choice is stored in a cookie_consent cookie (13-month expiry) so we remember it across visits; clear that cookie or use the panel again to change your mind. You can also manage cookies through your browser settings. Blocking strictly-necessary cookies will break sign-in.
6. Do Not Track
We do not currently respond to Do Not Track signals because there is no consensus on how to interpret them. We do honour deletion requests per our Privacy Policy.
7. Contact
Questions about cookies? [email protected].