Last updated: 7 June 2026
We split everything that could be considered a cookie or tracker into four categories. Only the first is on by default; the other three are opt-in. Update your preferences below at any time — changes apply immediately.
Necessary
Authentication (Supabase session), CSRF, language preference, the cookie that records your consent itself. Without these the site can't work; they are not configurable.
Analytics
Aggregate product usage — which pages get viewed, which buttons get clicked. Today this is PostHog (EU-hosted); we plan to migrate to a self-hosted Umami instance during the Phase 5L OSS swap. No personally identifying information is captured; we hash IPs at the edge before they reach the analytics store.
Performance (RUM)
Real-user-monitoring — page-load timings, JavaScript errors. Today this is Sentry (EU-hosted). Unhandled errors are always captured for forensic safety (no PII), but heavyweight RUM features — trace sampling + session replay — stay off until you opt in here.
Marketing
Attribution + retargeting (TikTok pixel, Meta pixel, etc.) for paid acquisition campaigns. Off until we run any paid campaigns, and only activates if you opt in. Never used to share data with third-party data brokers.
Your preferences
How we never track you
We do not embed Facebook Pixel, Google Analytics, or any third-party data broker on the public site. We do not fingerprint your device. We never share cookies with third-party advertising networks. Aggregate licensed data goes to buyers under our Data Buyer Licence; never your personal data.