Cookie Policy
This policy explains how SovereignAudit.io uses cookies and similar technologies.
Our approach to cookies
We believe in minimal data collection. SovereignAudit does not use advertising cookies, tracking pixels, or third-party analytics that profile your browsing behaviour. We use only the cookies strictly necessary to operate the platform securely.
Cookies we use
session_tokenJWT access token for authenticated API requests. Expires automatically. Required for platform operation.
First-party only — not shared with third parties
refresh_tokenSecure refresh token to issue new access tokens without requiring re-login. Rotated on every use.
First-party only — not shared with third parties
csrf_tokenCross-site request forgery protection. Tied to your session and validated on all state-changing requests.
First-party only — not shared with third parties
sso_relay_stateStores the SAML relay state during SSO authentication flow. Deleted immediately after login completes.
First-party only — not shared with third parties
cookie_consentRemembers that you have acknowledged our cookie policy. No tracking data is stored.
First-party only — not shared with third parties
What we do NOT use
- No Google Analytics or similar behavioural analytics
- No Facebook Pixel or advertising network cookies
- No third-party tracking or fingerprinting
- No session recording tools (Hotjar, FullStory, etc.)
- No A/B testing cookies beyond first-party feature flags
- No persistent advertising identifiers
Managing cookies
Because we only use strictly necessary cookies, disabling them will prevent the platform from functioning correctly. You can manage cookies through your browser settings:
- Chrome: Settings → Privacy & Security → Cookies
- Firefox: Settings → Privacy & Security → Cookies and Site Data
- Safari: Preferences → Privacy → Manage Website Data
- Edge: Settings → Cookies and site permissions
Contact
Questions about our cookie use: info@sovereignaudit.io