Legal

Cookie policy

A short, honest list of every cookie we set and why. We do not use advertising cookies. We do not sell browser data.

Last updated · 2026-05-02

Template notice. This page is a working template intended to be replaced by counsel-reviewed copy before any commercial launch. Section headings, scope, and definitions are reasonable defaults - the substantive language must be adapted to the operating jurisdiction(s), customer profile, and applicable processor relationships.

1. What is a cookie

A cookie is a small text file a website asks your browser to store. Cookies let a site recognise you between page loads, keep you signed in, and remember preferences. Some sites also use cookies for advertising or cross-site tracking - we do not.

2. Categories we use

The cookie banner you may see on first visit categorises cookies as follows. We only set the categories marked "always on."

Category	Purpose	Status
Strictly necessary	Authentication, session continuity, CSRF protection.	Always on (required to operate the Service).
Functional	UI preferences such as theme and locale.	Always on; no personal identifiers stored.
Analytics	Aggregate, privacy-preserving product usage metrics.	Off by default; opt-in only.
Advertising	Cross-site targeting and remarketing.	Not used.

3. Specific cookies we set

The list below covers cookies set by CentralbrAIn directly. Some are set by Supabase, our authentication provider, on our behalf.

Cookie	Purpose	Lifetime	Type
`sb-access-token`	Short-lived auth access token.	1 hour	Strictly necessary
`sb-refresh-token`	Refreshes your session without re-authenticating.	30 days	Strictly necessary
`sb-locale`	Remembers your selected interface language.	1 year	Functional

4. Third-party cookies

When you sign in with a third-party identity provider (such as Google), that provider may set its own cookies in its own domain. Those cookies are governed by the provider's policy, not ours.

5. Controlling cookies

You can clear or block cookies in your browser settings at any time. Note that blocking strictly-necessary cookies will prevent you from signing in or staying signed in to CentralbrAIn.

Where you live in a region requiring opt-in for non-essential cookies, you'll see a consent banner on your first visit. Your choice is remembered for 12 months; you may change it at any time from the cookie-preferences link in the footer (coming soon).

6. Do Not Track

Browsers may send a "Do Not Track" signal. Because the only categories of cookie we set are strictly necessary or functional and never used for cross-site tracking, the DNT signal does not change our behaviour.

7. Related

For the broader picture, see our Privacy policy and GDPR page.