Cookie Policy

Cookies are small text files that are stored on your device (computer, tablet, or phone) when you visit a website. They are widely used to make websites function correctly, provide security features, and improve the user experience.

Supatimer uses only strictly necessary cookies that are essential for the web dashboard to function. We do not use any advertising, marketing, or tracking cookies.

Our cookies are set by Supabase (our authentication provider) to maintain your login session, by our internationalisation framework to remember your language preference, and by the application itself to handle login redirects.

We use PostHog for product analytics (page views, session recordings, and heatmaps). PostHog operates in cookieless mode - it does not set any cookies or persistent identifiers on your device. All analytics data is stored in memory only for the duration of your browser session and is not retained on your device after you close the tab.

The following table lists the cookies used on supatimer.com:

Security attributes per cookie:

• sb-*-auth-token cookies: HttpOnly, Secure, SameSite=Lax - set server-side by Supabase. Not accessible to JavaScript, only transmitted over HTTPS, with cross-site request forgery protection.
• NEXT_LOCALE: SameSite=Lax - set server-side by our internationalisation framework. Provides cross-site request forgery protection.
• post_login_redirect: SameSite=Lax - set client-side with a short 5-minute expiry and cleared immediately after use. Contains only a URL path (e.g. "/en/servers"), not personal data.

Our cookies are classified as strictly necessary under the ePrivacy Directive (Article 5(3)) and the Swedish Electronic Communications Act (LEK). Strictly necessary cookies are exempt from the consent requirement because they are essential to provide the service you have specifically requested (logging in to the dashboard).

Under the GDPR, the processing of personal data associated with these cookies is based on contract performance (Article 6(1)(b)) - maintaining your authentication session is necessary to provide the dashboard service.

We do not use any third-party cookies. While we use PostHog for product analytics, it operates in cookieless mode and does not set any cookies on your device. No advertising networks, social media pixels, or tracking cookies are used on supatimer.com.

If this changes in the future, we will update this policy, add a cookie consent mechanism, and obtain your consent before setting any non-essential cookies.

You can control and delete cookies through your browser settings. Most browsers allow you to:

• View which cookies are stored on your device
• Delete individual cookies or all cookies
• Block cookies from specific or all websites
• Set your browser to notify you when a cookie is set

Please note that blocking or deleting our authentication cookies will prevent you from staying signed in to the Supatimer dashboard. You will need to sign in again with Discord each time you visit.

For instructions on managing cookies in your browser, visit your browser's help pages:

• Google Chrome
• Mozilla Firefox
• Safari
• Microsoft Edge

If we introduce non-essential cookies in the future (such as analytics or preference cookies), we will:

• Update this Cookie Policy with full details of each new cookie
• Implement a cookie consent banner that allows you to accept or reject non-essential cookies by category
• Ensure consent is obtained before any non-essential cookies are set
• Provide an easy way to withdraw consent at any time

We will update the "Last updated" date at the top of this page whenever changes are made.

For more information about how we handle your personal data, please see our Privacy Policy. For questions about this Cookie Policy, contact us through our Discord server.