Cookie Policy
Effective: April 23, 2026 · Version 1.0
1. What is a cookie?
A cookie is a small text file stored by your browser when you visit a website. Cookies set by us are “first-party.” Cookies set by third-party services loaded in the page are “third-party.” We also use localStorage and sessionStorage, which are related browser-storage mechanisms treated the same way in this Policy.
2. Categories of cookies we use
Strictly necessary (always on)
Required for the Service to function. You cannot opt out of these while remaining signed in because they are the signed-in session itself.
| Name | Set by | Purpose | Lifetime |
|---|---|---|---|
| __session | Clerk (first-party) | Short-lived session JWT used for server-side rendering and API authentication | 1 hour (refreshed automatically) |
| __client | Clerk (first-party) | Identifies the client across tabs and enables session refresh | 1 year |
| __clerk_db_jwt | Clerk (first-party) | Development-only JWT used by Clerk over http in local development | Session |
Analytics
Loaded only when analytics is configured on the current environment. Disable by refusing them via the consent prompt (when shown), by enabling the “Do Not Track” signal in your browser, or by emailing us at referral@lightinthedarkanalytics.com to opt out. Refusing does not affect core functionality.
| Name | Set by | Purpose | Lifetime |
|---|---|---|---|
| ph_* | PostHog (third-party) | Pageview and event tracking, anonymous user identification, feature flags | Up to 1 year |
| PostHog localStorage entries | PostHog (third-party) | Event queue, feature-flag cache, distinct ID | Until cleared |
Error monitoring and session replay
Loaded only when error monitoring is configured and triggered when an error occurs. Session replay masks input fields, text, and media by default. No advertising or profiling.
| Name | Set by | Purpose | Lifetime |
|---|---|---|---|
| Sentry sessionStorage entries | Sentry (third-party) | Buffer a short masked session replay sent only when an error occurs | Session |
Advertising cookies
We do not use advertising, cross-site tracking, or profiling cookies.
3. Manage your preferences
Use the buttons below to allow, reject, or reset your analytics-cookie choice at any time. Your choice is stored in your browser.
4. How to control cookies
- Strictly necessary cookies cannot be disabled while signed in, because they are the session itself. Signing out clears them
- Analytics and session-replaycookies can be refused via your browser’s Do Not Track setting (which PostHog honors by default), by rejecting the cookie-consent prompt where shown, or by emailing referral@lightinthedarkanalytics.com to opt out
- All major browsers let you clear cookies, block third-party cookies, or browse in private mode. See aboutcookies.org for browser-specific steps
5. Changes to this Policy
If we add or remove tracking technologies, we will update this page and bump the version number above. Material changes will also be announced in-app.
6. Contact
Questions about cookies or tracking: referral@lightinthedarkanalytics.com. See our Privacy Policy for the broader picture.
Plain-English FAQ
Summary only. The Policy above controls where they conflict.
Do you use cookies?
Only the ones listed. Clerk login cookies always on. Analytics (PostHog) and error replays (Sentry) only when configured, and you can opt out.
Do you track me across other sites?
No. No ad cookies, no cross-site tracking, no profiling.
How do I opt out of analytics?
Enable Do Not Track in your browser, reject the consent prompt where shown, or email referral@lightinthedarkanalytics.com.
Can I delete the cookies you set?
Yes. Clear cookies in your browser settings; you will be signed out. Using private mode also works.