Cookie Policy

Effective date: 1 April 2025 · Last updated: 1 April 2025

This Cookie Policy explains how CertVault uses cookies and similar technologies when you use our platform. It should be read alongside our Privacy Policy.

1. What Are Cookies?

Cookies are small text files placed on your device when you visit a website. They allow the site to remember information about your visit — such as whether you are logged in — to make your experience smoother and more secure.

We also use similar technologies such as local storage and session tokens, which function in an analogous way to cookies.

2. How CertVault Uses Cookies

CertVault uses cookies strictly to operate the platform. We do not use cookies for advertising, retargeting, or to track you across third-party websites.

2.1 Strictly Necessary Cookies

These cookies are essential for you to use the platform. They cannot be disabled without breaking core functionality.

Cookie name	Type	Purpose	Expiry
sb-*-auth-token	Session	Supabase authentication token — keeps you logged in.	Session
sb-*-auth-token-code-verifier	Session	PKCE code verifier used during OAuth sign-in flows.	Session

2.2 Functional Cookies

These cookies remember your preferences to improve your experience.

Cookie name	Type	Purpose	Expiry
certvault-theme	Persistent	Remembers your display preference (currently dark mode only).	1 year

2.3 Analytics Cookies

We do not currently use any third-party analytics cookies (e.g. Google Analytics). If this changes, this policy will be updated and you will be notified before any analytics cookies are set.

2.4 Advertising Cookies

We do not use advertising cookies. CertVault products are ad-free.

3. Third-Party Cookies

Our infrastructure providers (Supabase, Vercel) may set their own technical cookies as part of delivering the platform. These are limited to what is necessary for authentication and secure content delivery. We do not permit third parties to set advertising or tracking cookies through our platform.

4. Managing Your Cookie Preferences

Because we only use strictly necessary and minimal functional cookies, there is no cookie consent banner on CertVault — consent banners are required when using non-essential cookies, which we do not set.

You can still control cookies through your browser settings at any time:

Chrome: Settings → Privacy and security → Cookies and other site data.
Firefox: Settings → Privacy & Security → Cookies and Site Data.
Safari: Preferences → Privacy → Manage Website Data.
Edge: Settings → Cookies and site permissions.

Note: blocking strictly necessary cookies will prevent you from logging into CertVault.

5. Changes to This Policy

If we begin using new types of cookies — particularly any non-essential or analytics cookies — we will update this policy and notify registered users by email before those changes take effect, and will seek your consent where required by law.

6. Contact Us

For questions about our use of cookies:

CertVault Pty Ltd
Email: legal@certvaultapp.com