Cookies are small text files stored on your device by a website or web application. They are used to remember information about your session, preferences, or actions. Similar technologies include localStorage and sessionStorage, which store data locally in your browser rather than as cookies.
Cookies can be:
| Cookie / Storage key | Type | Purpose | Duration | Category |
|---|---|---|---|---|
sb-[project]-auth-token |
localStorage | Stores your Supabase authentication session so you remain logged in to your AURA account | Until logout or session expiry (typically 7 days) | Strictly necessary |
sb-[project]-auth-token-code-verifier |
localStorage | PKCE code verifier used during the OAuth/magic-link login flow — deleted immediately after use | Session (deleted post-login) | Strictly necessary |
Stripe cookies (e.g., __stripe_mid, __stripe_sid) |
Third-party cookie (Stripe) | Fraud prevention and security for payment processing at checkout. Set by Stripe, not by AURA. See Stripe's Privacy Policy. | Varies (Stripe-managed) | Strictly necessary |
Under UK PECR, cookies that are strictly necessary to deliver a service you have explicitly requested do not require consent. All cookies listed above fall into this category.
Because AURA uses only strictly necessary cookies, we do not display a cookie consent banner. If we introduce any non-essential cookies in the future (e.g., analytics), we will update this policy and implement a consent mechanism before setting those cookies.
AURA does not use:
You can control and manage cookies through your browser settings. Most browsers allow you to:
Browser guides:
We will update this Cookie Policy if we introduce new cookies or change our approach. The "Last updated" date at the top of this page will reflect any changes. For material changes, we will notify registered practitioners by email.
For questions about our use of cookies: