Cookies at StoryVox — In Plain English
A short, friendly version of our Cookie Policy. Legal one wins if anything conflicts.
The whole thing in one paragraph
We use only the cookies that are absolutely required to run StoryVox — the one that keeps you logged in, a security cookie that protects against attacks, and a small one that remembers UI preferences. No analytics cookies. No advertising pixels. No tracking. That's why we don't have a "we use cookies" banner — there's nothing to consent to.
What we set
| Thing | What it does |
|---|---|
| Auth session cookie | Keeps you logged in. Required. |
| CSRF token | Stops a specific kind of attack on logged-in sessions. Required. |
| UI preferences | Remembers your theme, last-used voice, etc. So you don't have to re-set them. |
| Local / session storage | Short-lived in-app data the page needs. Cleared when you log out. |
What we don't set
- Google Analytics
- Meta / Facebook Pixel
- TikTok Pixel
- Google Ads tag
- Any other ad pixel
- Cookies that share data across websites
- Cookies that follow you around the internet
"Do Not Track" and "Global Privacy Control"
- Do Not Track: we ignore it, because we don't track you across sites anyway — there's nothing to opt out of.
- Global Privacy Control: we honor it. Practically a no-op since we don't sell or share data, but we respect the signal.
If we ever change this
If we add an analytics tool or anything that requires consent under EU/UK/California rules, we'll update this page and put up a banner before turning it on. Until then, no banner = no tracking.
Manage cookies in your browser
Browsers let you block or delete cookies. If you block our auth cookies, you can't log in. (That's the trade.)
Server-side logs
We log basic request info (your IP, the page you hit, when) for 30 days for security. Not cookies — server logs. See the Privacy Policy for full details.
Read the full Cookie Policy if you want the legalese.