Cookie Policy

Last updated: March 13, 2026

On this page

This Cookie Policy explains how [PLACEHOLDER_APP_NAME] (the "Service"), operated by [PLACEHOLDER_COMPANY_NAME], uses cookies and similar technologies. We believe in transparency about how we use technology to provide our Service.

Summary: We use only essential cookies that are strictly necessary for the Service to function. We do not use analytics, advertising, or tracking cookies.

What Are Cookies

Cookies are small text files stored on your device (computer, tablet, or phone) by your web browser when you visit a website. They are widely used to make websites work efficiently, provide security features, and give website operators information about how the site is being used.

Cookies We Use

We use a single category of cookies: strictly necessary cookies. These are essential for the Service to function and cannot be disabled.

Session Authentication Cookie

PropertyDetails
Nameinvoice_app_* (prefix-based)
PurposeAuthenticates your session and keeps you signed in
TypeFirst-party, essential
Duration7 days from creation
RefreshSession is refreshed every 30 minutes of active use
Secure flagEnabled in production (cookie is only sent over HTTPS)
Set by[PLACEHOLDER_APP_DOMAIN]

This cookie stores an encrypted session token that identifies you as a signed-in user. Without this cookie, you would need to sign in on every page visit. The cookie is created when you sign in via magic link or Google OAuth and is deleted when you sign out or when it expires.

Session Cookie Cache

To reduce the number of database lookups required to validate your session, we use a 5-minute in-memory cache. This is not a separate cookie — it is a server-side optimization that affects how frequently your session cookie is verified against the database. Your session cookie is checked against the database at most once every 5 minutes, with the result cached in memory during that window.

Cookies We Do NOT Use

We want to be completely transparent: the following types of cookies are not used on our Service:

  • Analytics cookies — We do not use Google Analytics, Plausible, Fathom, or any other analytics tracking
  • Advertising cookies — We do not run ads or use any advertising network cookies
  • Third-party tracking cookies — No third-party tracking pixels, social media trackers, or cross-site tracking
  • Preference cookies — Your preferences (such as language) are stored in your account settings on our server, not in cookies
  • Marketing cookies — We do not track you for marketing or retargeting purposes

Third-Party Cookies

Under the ePrivacy Directive (Directive 2002/58/EC, Article 5(3)), cookies that are "strictly necessary" for providing a service explicitly requested by the user are exempt from the consent requirement. Since our only cookie is the session authentication cookie — which is essential for the Service to function — no cookie consent banner or opt-out mechanism is required.

If we add non-essential cookies in the future (such as analytics), we will update this policy and implement a cookie consent mechanism before deploying them.

Managing Cookies

Even though our cookies are essential, you always have control over cookies through your browser settings. You can:

  • View cookies: Check your browser's cookie storage for cookies from [PLACEHOLDER_APP_DOMAIN]
  • Delete cookies: Clear cookies from your browser settings. Note that deleting our session cookie will sign you out and you will need to sign in again.
  • Block cookies: Configure your browser to block cookies from our domain. Note that blocking our essential cookie will prevent you from using the Service, as authentication will not function.

Common browser cookie management guides:

  • Chrome: Settings → Privacy and security → Cookies
  • Firefox: Settings → Privacy & Security → Cookies
  • Safari: Preferences → Privacy → Cookies
  • Edge: Settings → Cookies and site permissions

Changes to This Policy

If we introduce non-essential cookies (such as analytics or performance monitoring) in the future, we will:

  1. Update this Cookie Policy to describe the new cookies
  2. Implement a cookie consent banner compliant with GDPR and the ePrivacy Directive
  3. Ensure non-essential cookies are only set after you provide explicit consent
  4. Provide clear opt-out mechanisms

Contact Us

If you have any questions about our use of cookies, please contact us:

[PLACEHOLDER_COMPANY_NAME]
[PLACEHOLDER_ADDRESS]
Email: [PLACEHOLDER_PRIVACY_EMAIL]

Back to top