Last updated: March 2025
Cookie Policy
SlateInvoice uses a minimal number of cookies โ just what's needed to keep you signed in. No tracking, no ads, no surprises.
1. What Are Cookies?
Cookies are small text files stored on your device by your browser when you visit a website. They help websites remember information about your visit โ like whether you're signed in โ so you don't have to log in again on every page load.
2. Cookies We Use
We keep it minimal. Here's exactly what we set:
Session Cookie
Set by NextAuth.js to maintain your authenticated session. Without this cookie, you'd be signed out on every page navigation.
- Name: next-auth.session-token
- Type: HTTP-only, Secure
- Expires: When you sign out, or after 30 days of inactivity
CSRF Token Cookie
A security cookie that protects your account against cross-site request forgery (CSRF) attacks. It ensures that form submissions originate from your authenticated session.
- Name: next-auth.csrf-token
- Type: HTTP-only, Secure
- Expires: Session
3. What We Don't Use
We want to be transparent. SlateInvoice does not use:
4. Why These Cookies Are Necessary
The cookies we set are strictly necessary to operate the Service. Without the session cookie, you cannot stay signed in. Without the CSRF token, your account would be vulnerable to certain types of attacks. These cookies cannot be opted out of while using SlateInvoice โ they are a functional requirement, not a choice.
5. How to Manage or Disable Cookies
You can control and delete cookies through your browser settings. Here's how to do it in popular browsers:
Note: Disabling cookies will sign you out of SlateInvoice and you will not be able to stay logged in without enabling session cookies.
6. Changes to This Policy
If we ever add new cookies or change how we use them, we'll update this page and the "Last updated" date. We're committed to keeping our cookie use minimal and transparent.
7. Questions?
If you have any questions about our cookie usage, contact us: