src/content/legal/config.ts and have a licensed attorney review this page (and the rest of src/app/(legal)/) for your business and jurisdictions before launch. See docs/legal.md. Remove this notice once reviewed.Cookie Policy
Version 1.0 · Effective July 5, 2026 · Last updated July 5, 2026
1. What we use today
As shipped, this Service only sets strictly necessary cookies: a signed session cookie (set by better-auth) used to keep you signed in, and — if you use Google or Apple sign-in — a short-lived state cookie used to complete that OAuth flow. We don't use the AI-assist feature's per-visitor usage limit to set a cookie; that limit is tracked server-side by IP address (see AI Disclosure), not by anything stored in your browser. Under GDPR/ePrivacy and similar laws, strictly necessary cookies don't require consent, only clear disclosure — which is what this page and the cookie notice banner provide.
2. If we add analytics, ads, or other tracking
This Service does not ship analytics, advertising, or other non-essential cookies/trackers today. If we add one (e.g. product analytics, ad pixels, session replay), we must: list it here with its purpose and duration, and — for EU/UK visitors and California's opt-out-of-sale/sharing rules — upgrade src/components/cookie-banner.tsx from a notice into a real accept/reject consent control before it loads. Non-essential trackers should not fire before consent.
3. Managing cookies
Most browsers let you block or delete cookies in their settings. Blocking the session cookie will sign you out and may prevent you from using features that require an account, such as saved evaluation reports.
4. Contact
Questions about our cookie use: ajkaiserauer@gmail.com.