⚠ DRAFT — not legal advice. Replace with counsel-reviewed text before launch.
Cookie Policy
Last updated: April 23, 2026
We keep our cookie use minimal. No advertising cookies, no third-party trackers. Here's the full list.
Strictly necessary (cannot be disabled)
- rs_session — HTTP-only cookie holding your signed session JWT. Set after Google sign-in, required to access the dashboard. 1 hour TTL, refreshed silently.
- rs_imp_session — HTTP-only cookie set only if a RoseStorie administrator impersonates your tenant for a support case. You'll see a red banner on the dashboard whenever this cookie is active. 15 minute TTL.
- rs_oauth_app — Short-lived cookie that remembers which app you started sign-in from (the tenant dashboard vs. the admin panel). Cleared immediately after sign-in completes.
Functional (stored locally, not sent to our servers)
The dashboard uses localStorage to remember your preferences between visits: theme (light/dark), last selected home, layout choices. This data stays on your device — we never read it from the server.
What we don't use
- No Google Analytics, Meta Pixel, or other third-party analytics
- No advertising or retargeting cookies
- No session replay (FullStory, Hotjar, etc.)
- No fingerprinting
Managing cookies
You can clear site cookies from your browser at any time. Doing so will sign you out; you'll need to sign in again to use the dashboard.
Contact
Questions: [email protected]
