Cookie Policy
Small files, big honesty.
We use a short list of cookies and similar technologies. No third-party advertising trackers. Ever.
Effective date: June 7, 2026 · Last updated: June 7, 2026
What we use
| Name | Type | Purpose | Lifetime |
|---|---|---|---|
session | Strictly necessary | Flask session for CSRF and form state. Secure, HttpOnly, SameSite=Lax. | Session |
token (localStorage) | Strictly necessary | Bearer token after sign-in. Kept in localStorage rather than a cookie so it isn't sent on cross-site form posts. | 30 days, renewed on use |
__cf_bm, cf_clearance | Strictly necessary (Cloudflare) | Bot challenge and edge security. | 30 minutes – 1 year (Cloudflare's defaults) |
theme (localStorage) | Functional | Remembers your dark/light preference. | Persistent until cleared |
walk_step (localStorage) | Functional | Tracks where you left off in the onboarding walkthrough. | Persistent until cleared |
What we don't use
- No third-party advertising or analytics trackers — no Google Analytics, no Meta pixel, no anything-pixel.
- No cross-site tracking.
- No fingerprinting beyond a coarse hash for rate-limiting the demo path (cleared when you sign up).
Managing cookies
Your browser lets you delete or block cookies. You can also clear Felarity's localStorage entries from your browser's site settings — you'll just need to sign in again and re-take the walkthrough.
Changes
We'll update this page if we add or remove cookies.