Cookie Notice
Effective: May 2, 2026 · Version 1.0-DRAFT
1. What are cookies?
Cookies are small text files placed on your device when you visit a website. They help the site remember your actions and preferences (such as login status) over time. Similar technologies include local storage and session storage.
2. Cookies we use
TrustVault uses cookies in two categories only:
Strictly necessary cookies
These are required for the Service to function and cannot be disabled. They include:
- Authentication cookies — keep you signed in between page loads (set by Supabase Auth)
- Session security tokens — protect against cross-site request forgery
- Inactivity timer — local storage value tracking the 15-minute session timeout
Functional cookies
Optional cookies used to remember preferences such as “Remember me” on the sign-in screen. You can clear these at any time by signing out or clearing your browser cookies.
3. Cookies we do not use
We do not use:
- Advertising or marketing cookies
- Cross-site tracking cookies
- Third-party analytics that profile individual users
4. Third-party services
The following third-party services may set their own cookies when you interact with the Service:
- Supabase — authentication and database access (essential)
- Stripe (Subscribers only, when on a paid plan) — payment processing
Each third party has its own privacy and cookie practices. We recommend reviewing their notices if you want details.
5. Managing cookies
You can control cookies through your browser settings, including blocking or deleting cookies. If you block strictly necessary cookies, the Service will not work — you will not be able to sign in.
Browser-specific instructions:
6. Changes to this notice
We may update this Cookie Notice when our cookie practices change. The “Effective” date at the top reflects the latest version.
7. Contact
Questions about cookies can be sent to privacy@thetrustvault.app.
