Cookie Policy

Effective date: 2026-06-11.

1. What we set

• ho_session — first-party, HttpOnly. Required to keep you logged in.
• ho_csrf — first-party, strictly necessary. CSRF-protection token; readable by the app for double-submit validation.
• ho_dismissed_promo_banners — first-party, localStorage. Remembers which marketing banners you closed.
• _ga / _gid — Google Analytics, set only after you accept analytics cookies in the consent banner.
• NEXT_LOCALE — first-party, functional. Remembers your interface language for up to one year.
• private_access — first-party, functional. Set only when you unlock a password-protected status page.
• cookie_consent / cookie_consent_detail — localStorage. Stores your cookie-consent choice.

2. Consent banner

The consent banner asks for permission before any analytics cookie is set. You can change your choice at any time by clearing the banner state in your browser.

3. Third-party cookies

Stripe Checkout sets its own session cookies when you reach a payment page. Those are scoped to checkout.stripe.com.

4. Contact

Cookie questions: [email protected].