Cookie Policy
Repping.AI uses a small number of cookies and equivalent browser-storage technologies. We default to the minimum required to keep you logged in and to keep the service safe. Anything else is opt-in.
What is a cookie?
A cookie is a small piece of data a website asks your browser to store and send back on future requests. We use this term loosely to also include localStorage and sessionStorage, which work similarly but stay on your device.
Cookie categories we use
- Strictly necessary— these are required to keep you signed in, maintain your session, prevent CSRF, and remember your cookie-consent choice. They cannot be turned off.
- Analytics— PostHog page-view and product-event tracking. Off by default; loaded only after you consent. We never use these for cross-site advertising.
- Marketing— reserved for future use. We do not currently set any marketing or advertising cookies.
Specific cookies and storage
| Name | Purpose | Category | Lifetime |
|---|---|---|---|
| token | Signed JWT session | Strictly necessary | 7 days |
| cookieConsent.v1 | Stores your consent choices | Strictly necessary | 12 months (localStorage) |
| ph_* | PostHog distinct ID and feature flags | Analytics | 12 months |
| posthog session storage | Session replay buffer (only if enabled) | Analytics | Tab session |
How we obtain consent
On your first visit (and any time you clear our cookies) we show a cookie banner at the bottom of the page. You can Accept all, Reject non-essential, or Manage preferences to fine-tune by category. We persist your choice in localStorage under the key cookieConsent.v1so we don’t ask again, and we only initialize PostHog after consent.
How you can control cookies
- Use the “Cookie preferences” link in the footer to change your choice at any time.
- Most browsers let you block or delete cookies via Settings → Privacy.
- To wipe our analytics ID, log out, then clear cookies for
repping.aiin your browser.
Blocking strictly necessary cookies will sign you out and break parts of the service.
Do-Not-Track and Global Privacy Control
If your browser sends a DNT: 1 header or has Global Privacy Control (GPC) enabled, we treat it as a signal to default analytics to off. You can still opt in via the cookie banner if you want to.
Changes to this policy
If we add a new cookie or sub-processor, we will update this page and re-prompt for consent if a new category becomes relevant.