Cookie Policy
Effective date: 1 April 2025 · Last updated: 26 April 2026
1. What Are Cookies?
Cookies are small text files placed on your device when you visit a website. They allow the site to remember information about your visit — such as whether you are logged in — to make your experience smoother and more secure.
We also use similar technologies such as local storage and session tokens, which function in an analogous way to cookies. Specifically, CertVault may set the following items in browser local storage:
certvault_cookie_notice_dismissed— remembers that you have closed the cookie notice (so it does not reappear on every visit).certvault_help_nudge_dismissed— remembers that you have dismissed the contextual help bubble.
These items contain no personal information and are set only on your device. You can clear them at any time via your browser settings (Privacy / Site Data / Local Storage).
2. How CertVault Uses Cookies
CertVault uses cookies strictly to operate the platform. We do not use cookies for advertising, retargeting, or to track you across third-party websites.
2.1 Strictly Necessary Cookies
These cookies are essential for you to use the platform. They cannot be disabled without breaking core functionality.
| Cookie name | Type | Purpose | Expiry |
|---|---|---|---|
| sb-*-auth-token | Session | Supabase authentication token — keeps you logged in. | Session |
| sb-*-auth-token-code-verifier | Session | PKCE code verifier used during OAuth sign-in flows. | Session |
2.2 Functional Cookies
These cookies remember your preferences to improve your experience.
| Cookie name | Type | Purpose | Expiry |
|---|---|---|---|
| certvault-theme | Persistent | Remembers your display preference (currently dark mode only). | 1 year |
2.3 Analytics Cookies
We do not currently use any third-party analytics cookies (e.g. Google Analytics). If this changes, this policy will be updated and you will be notified before any analytics cookies are set.
2.4 Advertising Cookies
We do not use advertising cookies. CertVault products are ad-free.
3. Third-Party Cookies
Our infrastructure providers (Supabase, Vercel) may set their own technical cookies as part of delivering the platform. These are limited to what is necessary for authentication and secure content delivery. We do not permit third parties to set advertising or tracking cookies through our platform.
4. Managing Your Cookie Preferences
Because we only use strictly necessary and minimal functional cookies, there is no cookie consent banner on CertVault — consent banners are required when using non-essential cookies, which we do not set.
You can still control cookies through your browser settings at any time:
- Chrome: Settings → Privacy and security → Cookies and other site data.
- Firefox: Settings → Privacy & Security → Cookies and Site Data.
- Safari: Preferences → Privacy → Manage Website Data.
- Edge: Settings → Cookies and site permissions.
Note: blocking strictly necessary cookies will prevent you from logging into CertVault.
5. Changes to This Policy
If we begin using new types of cookies — particularly any non-essential or analytics cookies — we will update this policy and notify registered users by email before those changes take effect, and will seek your consent where required by law.
6. Contact Us
For questions about our use of cookies:
CertVault (Australian sole trader)
ABN: 51 371 573 935
2 Tandang Sora Street
Labason, Zamboanga Del Norte
Philippines 7117
Email: legal@certvaultapp.com